Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/bd22ce-772c-4f1e-b4aa-85c0d01f9de2/1/YcV1PQvf6mG6RoKvZ9y9EZelzT0.roa
File: YcV1PQvf6mG6RoKvZ9y9EZelzT0.roa (raw, json)
Hash identifier: Ejnl9oD4LHScoX8L0vuw6x1AMTUhUZKLhqJymo00on0=
Subject key identifier: 61:C5:75:3D:0B:DF:EA:61:BA:46:82:AF:67:DC:BD:11:97:A5:CD:3D
Certificate issuer: /CN=d2491770ce9b663002a794542d9886d1a2ce63ab
Certificate serial: 01884D893F4DC9D86D4C2DC086E4567471F0
Authority key identifier: D2:49:17:70:CE:9B:66:30:02:A7:94:54:2D:98:86:D1:A2:CE:63:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kkXcM6bZjACp5RULZiG0aLOY6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/bd22ce-772c-4f1e-b4aa-85c0d01f9de2/1/YcV1PQvf6mG6RoKvZ9y9EZelzT0.roa
Signing time: Wed 24 May 2023 11:33:40 +0000
ROA not before: Wed 24 May 2023 11:33:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198958
IP address blocks: 193.107.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:89:3f:4d:c9:d8:6d:4c:2d:c0:86:e4:56:74:71:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2491770ce9b663002a794542d9886d1a2ce63ab
Validity
Not Before: May 24 11:33:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61c5753d0bdfea61ba4682af67dcbd1197a5cd3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:a0:00:a0:f3:40:55:08:69:60:89:3c:b3:
ea:1c:3a:cd:85:ae:6d:a3:51:d2:dc:49:88:e7:73:
8f:9b:57:99:85:a0:d4:72:3c:0a:77:83:7f:14:89:
f8:64:1e:60:7a:de:7b:75:0a:1c:22:0a:59:e5:53:
b3:58:64:88:88:50:f0:86:1a:d4:a9:b4:15:37:f0:
0d:9f:be:19:a2:06:92:ad:d5:a0:a4:d6:7d:ce:68:
2e:64:81:de:14:16:df:bb:2b:49:35:e2:a3:22:a2:
e2:d8:77:50:89:34:de:d1:a1:ad:af:b9:0a:0b:1e:
81:6d:46:6a:2f:87:d4:f6:3b:7f:27:e7:46:34:21:
01:55:42:60:70:5f:0b:b8:c1:3b:f2:77:bf:1a:81:
c7:d4:a0:e0:ad:82:9d:71:e8:fa:90:f9:3c:a6:5f:
06:9a:cd:30:83:11:f5:87:cf:a8:7b:22:c4:84:ce:
6c:42:d1:39:e0:9d:ec:7d:f1:da:6b:5e:d2:99:8b:
39:2e:14:1f:04:74:59:8a:9c:73:92:c0:b1:00:43:
7d:ab:4e:2d:ac:a4:db:52:38:c6:31:73:72:85:95:
c4:d5:e4:ce:c1:0c:92:9e:b7:c6:9d:0d:58:53:b0:
f2:96:1d:db:67:98:e0:34:5f:2e:75:4d:47:5f:70:
d5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:C5:75:3D:0B:DF:EA:61:BA:46:82:AF:67:DC:BD:11:97:A5:CD:3D
X509v3 Authority Key Identifier:
keyid:D2:49:17:70:CE:9B:66:30:02:A7:94:54:2D:98:86:D1:A2:CE:63:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kkXcM6bZjACp5RULZiG0aLOY6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bd22ce-772c-4f1e-b4aa-85c0d01f9de2/1/YcV1PQvf6mG6RoKvZ9y9EZelzT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bd22ce-772c-4f1e-b4aa-85c0d01f9de2/1/0kkXcM6bZjACp5RULZiG0aLOY6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.111.0/24
Signature Algorithm: sha256WithRSAEncryption
56:fe:0d:e0:0d:dd:62:e4:af:a1:fc:62:91:68:8c:f4:90:b4:
e6:16:c2:54:39:ef:e9:8c:bd:6e:34:38:0b:7a:1b:30:5f:36:
d2:82:a9:71:ee:78:76:c7:54:cf:c1:35:62:6f:60:8d:3f:47:
32:92:75:87:ee:f5:02:9d:c5:be:be:98:49:08:ca:1d:48:f7:
4b:bf:8b:8e:ab:d7:e8:e0:1c:dd:f5:cd:9a:4e:10:9d:c4:72:
d2:4a:a4:7f:4b:75:76:de:10:26:ab:67:a2:0d:e8:69:12:a8:
5e:14:9a:b1:4f:12:0f:cf:6d:2f:e5:4c:fa:cf:62:06:bd:94:
4b:3f:5c:e2:30:2c:67:59:25:32:74:58:92:db:f3:c6:cf:54:
84:47:a6:8b:2b:6c:79:9e:f4:0a:5c:b5:f9:42:06:27:28:ac:
c2:c5:b9:25:dd:2a:23:b9:f7:a6:6a:5e:c6:47:92:b3:4d:88:
91:b6:5a:78:55:e3:a5:61:0c:f8:7e:48:84:11:97:04:00:b8:
46:f2:37:a9:c9:e9:0d:3d:13:db:ab:22:c8:a4:8d:64:6e:45:
d5:ae:f8:7f:17:a6:8e:5c:b1:91:7a:f8:f8:53:50:20:fa:24:
da:82:62:dd:ee:3b:51:bf:bc:38:ed:58:7d:f0:a2:0c:19:17:
8c:df:ef:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:57 2024 by rpki-client on console-fra.rpki-client.org