Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/yETH8BGG2sW2HllK2OWSiKYio0M.roa
File: yETH8BGG2sW2HllK2OWSiKYio0M.roa (raw, json)
Hash identifier: PQMIVHnbA1JAQjrYALwCM9eO7xDfLxXu5cIaJxql1og=
Subject key identifier: C8:44:C7:F0:11:86:DA:C5:B6:1E:59:4A:D8:E5:92:88:A6:22:A3:43
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 01856D81ACA51AA35C53951ED4B0738DDFA4
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/yETH8BGG2sW2HllK2OWSiKYio0M.roa
Signing time: Sun 01 Jan 2023 13:24:52 +0000
ROA not before: Sun 01 Jan 2023 13:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199619
IP address blocks: 185.5.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:ac:a5:1a:a3:5c:53:95:1e:d4:b0:73:8d:df:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Jan 1 13:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c844c7f01186dac5b61e594ad8e59288a622a343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e4:2f:71:81:08:6e:96:be:f6:0d:fc:b4:5d:
83:c5:15:e1:0b:c4:ed:37:45:3d:fe:ec:d6:82:d5:
62:ce:48:05:3d:41:79:80:4d:6c:47:36:9c:e7:3f:
86:f6:84:73:10:60:33:44:c9:02:5c:7e:58:5e:17:
b2:85:94:32:b7:bf:4b:65:8b:41:66:64:78:cc:91:
c5:06:3a:ec:3c:e3:94:57:71:46:f1:b6:0e:e4:45:
0f:df:ba:a9:70:df:8e:d4:4d:36:32:c3:e0:af:bc:
a8:e5:f0:e3:8d:6e:25:97:17:6d:35:f3:ea:e0:05:
a7:b4:af:34:fb:71:85:80:ba:a5:4d:8d:39:f7:b9:
36:48:30:7c:cd:c0:53:6c:95:ae:c4:da:05:52:fc:
8b:c3:dc:99:41:9f:78:5e:68:61:26:af:de:56:46:
f2:02:e0:ef:15:fe:65:b9:20:6f:e1:57:87:dd:fe:
99:43:5d:02:6f:54:09:0c:8d:b1:73:e7:0a:a0:a1:
b0:24:33:d4:05:b2:2a:1e:b3:3e:13:8b:93:b5:01:
0f:3a:4e:8d:0c:89:9f:4a:18:6b:35:99:93:8d:42:
e5:a1:68:7c:90:48:04:37:30:5d:61:95:ca:9e:04:
b1:f8:15:19:91:eb:8c:f5:9d:c1:15:d6:df:d0:64:
1d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:44:C7:F0:11:86:DA:C5:B6:1E:59:4A:D8:E5:92:88:A6:22:A3:43
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/yETH8BGG2sW2HllK2OWSiKYio0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.143.0/24
Signature Algorithm: sha256WithRSAEncryption
71:9d:81:14:bc:2c:1a:3f:60:44:89:2c:60:be:1d:a7:fa:a9:
81:bc:9b:b5:ea:c8:eb:d5:04:12:cb:f4:e3:1a:64:2e:6b:9d:
5f:1d:a7:e9:80:62:7e:97:11:3f:fe:29:bd:e5:de:86:18:25:
58:09:ae:6e:e5:2d:9f:7f:c8:ca:b6:24:80:34:fa:44:72:30:
15:87:97:3d:06:2d:37:58:14:bb:20:7a:4e:a9:0b:54:a9:04:
56:61:7e:97:56:c9:17:a1:d6:41:78:53:33:32:2a:41:ce:24:
d8:66:6a:ba:27:9f:9c:cb:f4:bf:1f:76:e3:3f:f4:bf:67:8c:
27:e8:a1:98:ca:98:64:9a:24:ad:4c:ad:f0:e5:84:ec:c0:9b:
4f:ce:c1:a7:74:43:25:e0:10:fd:d8:e4:41:73:7b:5c:be:b9:
32:e7:3e:a9:11:c6:6d:52:90:79:be:f4:b4:c3:3e:44:07:6b:
40:d3:38:56:15:94:3c:83:0a:d5:4d:45:77:fa:b3:43:26:f1:
3f:dd:3b:4a:8a:3d:bc:24:50:2d:33:e9:b2:4a:4f:2b:d1:0c:
e4:75:9c:65:41:0c:82:2b:85:14:8c:6a:d9:db:67:0a:49:46:
94:06:f5:1f:d9:be:3d:cc:e2:74:0e:fd:8e:55:4e:ea:c2:c0:
61:71:b5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org