Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/YBvSrtjk2CIPXCyPLB23j3dK4u4.roa
File: YBvSrtjk2CIPXCyPLB23j3dK4u4.roa (raw, json)
Hash identifier: 2+3pyklyTnO+vWKO45d1onalTVudvczmiPPhpqMdKlA=
Subject key identifier: 60:1B:D2:AE:D8:E4:D8:22:0F:5C:2C:8F:2C:1D:B7:8F:77:4A:E2:EE
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 018ADBF9792C0B315EDBA7DC689344376BEA
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/YBvSrtjk2CIPXCyPLB23j3dK4u4.roa
Signing time: Thu 28 Sep 2023 13:27:54 +0000
ROA not before: Thu 28 Sep 2023 13:27:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205257
IP address blocks: 185.80.33.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:f9:79:2c:0b:31:5e:db:a7:dc:68:93:44:37:6b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Sep 28 13:27:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=601bd2aed8e4d8220f5c2c8f2c1db78f774ae2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:86:ca:cb:46:e3:75:8e:0a:b4:07:94:ef:68:
58:1a:17:29:35:f7:6d:a8:08:eb:a3:58:17:4d:be:
99:5c:7d:38:22:6f:5d:de:72:01:31:24:cc:f4:9b:
75:d0:1c:20:32:d3:d8:72:5f:81:2d:8c:98:8a:9c:
51:81:1f:83:48:0d:ed:99:a3:37:15:06:64:af:79:
4b:bf:53:f7:1a:dd:36:ef:02:50:aa:6f:3f:ab:0c:
2c:59:cf:b3:a2:44:88:c8:3c:10:4d:f9:24:9e:f5:
f8:7e:ff:df:1a:df:83:4e:ce:65:e3:85:e6:bd:03:
8a:a9:92:99:4b:9c:ec:db:c6:8c:09:7c:b4:a4:30:
8d:d4:3f:13:fd:4d:ab:78:0b:9c:02:b2:59:67:37:
72:64:a8:85:ef:91:84:d8:d4:57:c5:19:4f:ca:3b:
02:be:2e:ba:72:22:02:6b:07:6c:f9:1f:9c:81:12:
0b:c4:21:2c:98:72:c3:c5:15:ad:bc:7a:2c:65:1c:
69:ab:d8:fc:f3:39:11:12:86:2e:21:3b:6b:45:3a:
0f:44:5e:13:2c:49:04:e8:8e:95:d9:ae:37:d4:de:
c3:eb:87:ee:c7:2d:d4:d9:04:9d:18:04:42:72:82:
59:e3:df:0c:1e:9a:15:05:c1:10:29:c6:e0:a4:77:
ba:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:1B:D2:AE:D8:E4:D8:22:0F:5C:2C:8F:2C:1D:B7:8F:77:4A:E2:EE
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/YBvSrtjk2CIPXCyPLB23j3dK4u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.33.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e5:9f:cf:3e:42:7a:4c:18:5f:86:e5:2b:e7:40:76:b5:f4:
e7:ff:31:9c:bf:5e:5a:dd:5c:2a:10:1f:e8:3c:7b:38:bc:d8:
29:45:54:05:02:88:58:9b:36:6e:79:5f:4b:9a:97:95:f3:13:
75:e8:55:42:3c:5b:c3:4e:41:08:89:d1:6f:24:b4:3a:6f:08:
59:be:3a:a9:58:3d:d2:a0:40:57:62:93:a3:dd:bb:f5:82:29:
37:da:58:d5:2c:69:bb:a8:2a:60:35:fa:49:6f:c2:5a:84:51:
22:7b:c4:de:8d:f4:33:fc:86:60:8d:33:7b:de:6b:ad:8b:c9:
20:d7:cf:2d:90:c5:d9:da:29:2e:1b:4d:76:3d:17:8e:76:0e:
6b:16:a5:65:c6:08:01:81:8f:5f:46:fc:ac:92:12:07:13:9c:
12:15:fb:59:85:31:47:e3:c4:12:50:74:52:53:ae:88:b8:39:
e8:bd:27:b2:d8:f8:c7:8b:ff:77:c5:3b:3b:d1:6d:85:e3:55:
c0:a0:83:13:b3:53:c3:65:0d:69:1c:22:b3:bb:18:5d:dd:ac:
c8:01:d7:15:ce:02:16:bf:56:45:91:b7:d6:fc:ea:3d:c1:af:
e2:a9:89:b9:43:c5:b4:30:64:1f:81:2e:7f:ef:da:fc:b2:6e:
88:3d:2c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:28 2024 by rpki-client on console-fra.rpki-client.org