Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Ry_-sydearWGZ68ZXHx1pU6EUsY.roa
File: Ry_-sydearWGZ68ZXHx1pU6EUsY.roa (raw, json)
Hash identifier: fgPkfqZ0Ir9IXsgBjh1lkuvugDMrLeoE2+16P9CPDpM=
Subject key identifier: 47:2F:FE:B3:27:5E:6A:B5:86:67:AF:19:5C:7C:75:A5:4E:84:52:C6
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A27BE09121DF6BD3039B277CBA49A
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Ry_-sydearWGZ68ZXHx1pU6EUsY.roa
Signing time: Sun 01 Jan 2023 03:04:59 +0000
ROA not before: Sun 01 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43289
IP address blocks: 141.101.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jan 2023 15:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:27:be:09:12:1d:f6:bd:30:39:b2:77:cb:a4:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=472ffeb3275e6ab58667af195c7c75a54e8452c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ff:e8:42:2d:38:3f:be:c0:61:76:46:26:9d:
39:27:bf:a9:51:ce:f3:52:f4:4d:42:22:50:99:01:
8d:8c:48:ab:d9:43:af:c8:aa:78:af:75:32:47:65:
aa:6a:6d:6e:35:a2:de:99:ee:e5:c6:98:28:b8:4b:
9a:00:8d:a6:51:f9:96:a5:98:d6:2b:01:21:70:df:
24:28:3e:d8:0d:ae:34:7d:a6:6e:61:4b:33:88:7a:
90:5a:76:67:65:6b:a8:f5:cc:3d:8a:90:e1:ad:a0:
8a:58:58:d4:fe:71:67:e3:90:27:d4:4f:99:8a:6f:
23:7f:13:aa:a3:7b:ca:19:20:c6:e6:24:fe:dd:a0:
a2:bb:e8:8a:3b:b0:fa:f1:42:ad:e4:c3:03:9c:d8:
ee:16:49:dc:2b:62:d6:b7:d0:b2:34:0a:08:c9:9b:
6e:4d:74:35:f1:a4:29:46:37:8b:3b:03:b4:e7:db:
ca:5c:d6:c8:a6:b5:2f:5f:bb:d9:2d:4b:3e:e6:b0:
f9:10:7b:e7:cd:4f:c6:37:41:d8:84:31:a4:fe:06:
9f:0c:01:e6:c4:a2:0d:db:98:8b:10:1e:e4:bd:71:
bc:f7:aa:4c:c1:8c:8c:e9:ce:71:7c:96:bb:6e:cf:
2b:8a:21:dc:b4:c5:9f:d2:4e:c6:5d:0f:3c:08:4a:
dc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2F:FE:B3:27:5E:6A:B5:86:67:AF:19:5C:7C:75:A5:4E:84:52:C6
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Ry_-sydearWGZ68ZXHx1pU6EUsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.172.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:c7:15:e7:0f:4c:8b:e9:fb:63:1e:14:5c:b0:84:02:3f:06:
71:d9:31:4a:47:e3:d9:d6:c6:5f:9e:cc:0c:e9:28:d8:77:42:
7d:8e:fe:7e:b3:10:8e:9b:5b:65:66:de:5d:93:bf:f6:b4:e7:
6e:b6:7d:6d:e6:6b:07:85:89:11:6c:e6:a1:4b:5a:f1:26:4d:
93:92:22:c6:d0:3b:03:81:f5:7a:8b:86:b6:8c:a5:3f:36:a3:
bc:55:28:cf:60:be:b0:99:f3:f0:d4:1e:09:d2:31:48:06:1f:
cc:6f:98:6c:9d:8d:d6:f0:3e:5e:7c:a2:ec:68:29:8e:39:2d:
1a:e5:84:ea:58:9d:8a:2a:02:5d:7f:d1:29:1d:1e:e6:86:57:
1b:5e:4c:f3:99:eb:69:15:fa:d0:6f:b5:f8:53:95:99:94:38:
44:d5:fa:65:cb:a9:66:93:94:8f:14:07:5f:24:01:0f:e3:9f:
52:e4:87:03:18:db:1e:b9:3b:d2:7a:92:14:6e:3f:9c:0c:f5:
9d:3f:17:20:71:74:01:cd:b9:45:b9:31:4c:9f:34:cc:25:2f:
cd:8b:ab:6c:fc:bc:e5:60:7a:c1:b9:ef:84:58:16:3e:13:be:
9a:8c:bb:b2:d8:43:3e:73:59:f7:53:30:d5:88:86:5f:c0:07:
75:7b:4c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org