Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/yJyMU1-9oECWBoxTvkI1-hVja2w.roa
File: yJyMU1-9oECWBoxTvkI1-hVja2w.roa (raw, json)
Hash identifier: lbtoFo72Au2RP8djpwppzFgzG8VBek278GcEgUQYbWo=
Subject key identifier: C8:9C:8C:53:5F:BD:A0:40:96:06:8C:53:BE:42:35:FA:15:63:6B:6C
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 0185704298B33E6A9691842B8F3CA562706C
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/yJyMU1-9oECWBoxTvkI1-hVja2w.roa
Signing time: Mon 02 Jan 2023 02:14:50 +0000
ROA not before: Mon 02 Jan 2023 02:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 37.221.65.0/24 maxlen: 24
37.221.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 22 Sep 2023 06:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:98:b3:3e:6a:96:91:84:2b:8f:3c:a5:62:70:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Jan 2 02:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c89c8c535fbda04096068c53be4235fa15636b6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:af:88:b9:86:f3:62:20:a8:4e:ae:49:f0:61:
91:8d:4f:ac:a1:f9:58:9a:fc:a7:74:6e:8d:25:17:
91:89:9d:dd:f1:c9:2b:74:b2:7b:ce:a5:f4:0a:f4:
63:7f:1e:17:e7:93:f8:2d:5d:1a:37:96:35:dd:0b:
49:9b:29:94:14:70:63:6b:86:1a:2a:10:b1:7c:26:
86:77:39:2f:ab:e7:ce:52:91:ab:2a:0e:6e:80:a9:
c5:84:89:ec:37:21:70:46:a6:ef:20:89:c6:cd:af:
1b:ab:2a:73:20:d0:0b:ca:54:f5:de:4c:1a:c2:e4:
e9:29:b1:86:c1:20:47:40:be:a2:a5:f4:2c:04:2c:
d1:0f:53:ca:5c:6d:7a:33:26:48:40:9e:85:ef:8b:
67:80:10:b3:e3:54:0b:13:f0:2c:6f:9c:76:76:6e:
5c:24:8b:8b:c6:78:be:b0:e0:a2:50:02:fd:01:a9:
32:2c:6e:57:77:fc:0d:29:2b:9d:fd:21:49:2a:27:
d8:ba:a0:60:3c:76:1e:5e:2f:18:14:fa:16:ec:68:
d5:f6:75:b0:bf:08:4b:e8:37:20:e8:66:89:d8:7b:
02:68:ec:b3:a4:ea:6a:7a:bc:68:08:3e:c4:03:6a:
41:43:f7:73:6c:21:1f:e9:57:9a:5f:00:85:82:b7:
2a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9C:8C:53:5F:BD:A0:40:96:06:8C:53:BE:42:35:FA:15:63:6B:6C
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/yJyMU1-9oECWBoxTvkI1-hVja2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.64.0/22
Signature Algorithm: sha256WithRSAEncryption
72:e0:23:a3:25:50:8b:67:d4:b5:5d:e0:3d:79:91:02:c0:3b:
2b:73:23:40:1c:9d:04:9d:8d:54:0b:48:2f:17:6a:15:0f:cb:
05:0f:c2:38:83:74:c9:d1:57:a7:a0:10:9f:1f:79:d8:69:d8:
a9:35:be:ee:e4:d2:42:15:d8:ae:9a:ee:92:25:01:31:41:4a:
f4:7a:ad:89:7d:4e:48:f6:ce:5e:64:b5:ad:07:04:c2:2f:d7:
eb:a9:fa:d7:96:72:34:f8:73:6b:ba:d6:ed:1c:22:85:98:1e:
1a:00:71:04:75:62:10:a6:28:46:4b:94:7b:ad:30:56:52:09:
9e:32:6b:d8:8d:69:2e:17:48:ab:28:2f:f7:f8:02:02:b0:96:
1b:61:17:76:5a:69:4a:6c:e8:e8:d9:46:14:fd:00:ea:48:53:
ee:4c:1c:c2:07:6d:b7:3f:81:06:db:9c:a3:50:16:a4:c6:e5:
fb:be:5a:ec:5e:54:26:46:94:e5:3c:17:5c:53:ec:73:6c:37:
87:da:12:9b:83:84:5e:bd:4e:b8:9a:55:c2:e2:3d:1c:f5:02:
0c:1d:6b:34:f5:3f:b0:6e:d5:c7:c6:6f:53:f9:73:e5:a2:0e:
54:bf:18:36:ac:21:36:89:34:55:26:26:6a:00:11:25:e7:a5:
37:94:82:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org