Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YpjRYdnb2TgAoNoZpBcEvKD2-hg.roa
File: YpjRYdnb2TgAoNoZpBcEvKD2-hg.roa (raw, json)
Hash identifier: 6EoTtW6nQN2hVgBvb711h0eYiyjN9zrCJC3wb3oH7rg=
Subject key identifier: 62:98:D1:61:D9:DB:D9:38:00:A0:DA:19:A4:17:04:BC:A0:F6:FA:18
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018AA6CBAF5C21A9CB15F1D4890670E8E6CA
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YpjRYdnb2TgAoNoZpBcEvKD2-hg.roa
Signing time: Mon 18 Sep 2023 05:38:01 +0000
ROA not before: Mon 18 Sep 2023 05:38:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198652
IP address blocks: 80.71.228.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a6:cb:af:5c:21:a9:cb:15:f1:d4:89:06:70:e8:e6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Sep 18 05:38:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6298d161d9dbd93800a0da19a41704bca0f6fa18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a8:7d:dd:27:f3:c8:c3:9f:dd:19:05:98:45:
f7:5c:e3:f7:ec:95:38:bc:72:f7:7c:c8:fd:3e:ca:
d9:bc:72:7e:37:be:be:1e:b1:e4:ed:61:1d:d4:e2:
a2:e7:70:c3:d6:1a:8c:19:fa:39:35:dc:5c:83:e1:
fb:e9:3d:47:2b:3f:2f:8e:fc:47:81:b3:15:67:4b:
2b:65:f6:b0:ac:56:8d:4e:48:3e:cf:a5:25:77:48:
79:27:81:ff:a1:7a:50:6c:77:1c:60:21:ff:b3:f5:
f3:13:a1:97:c2:90:c6:16:1c:a0:f1:5c:77:22:e0:
ca:2f:ff:75:90:4b:39:1b:36:45:ba:09:61:80:d6:
61:15:f0:c9:28:8b:01:ca:7d:6b:f0:dc:54:66:e1:
95:ae:bf:17:d2:05:41:e9:eb:03:5d:2d:a2:d9:05:
0a:df:d7:d4:35:f8:fc:71:fa:c5:9a:b5:21:b2:32:
63:da:91:34:29:cb:4c:ea:cb:d3:cb:dc:88:ba:de:
50:59:49:51:c3:f5:47:35:fe:32:56:3d:f3:ec:c9:
d1:0b:84:8c:25:df:47:6f:20:77:e9:83:f5:e1:71:
c0:48:1d:2c:25:3b:82:ef:70:c5:d7:7b:cd:f9:34:
05:31:7c:9a:43:d2:36:da:78:ed:6b:00:28:bd:a8:
63:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:98:D1:61:D9:DB:D9:38:00:A0:DA:19:A4:17:04:BC:A0:F6:FA:18
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YpjRYdnb2TgAoNoZpBcEvKD2-hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.228.0/24
Signature Algorithm: sha256WithRSAEncryption
65:f9:d4:31:96:1a:ef:e4:7f:83:82:6d:49:50:d9:db:27:8c:
ca:1e:f5:ed:a4:86:06:2a:51:e0:48:ad:42:0f:33:ec:33:15:
77:51:c4:db:51:74:77:fb:1d:94:3d:32:eb:46:d2:7e:d6:03:
99:06:b6:af:4e:56:66:1d:75:66:90:66:8e:e8:ae:16:b9:96:
1b:37:25:9d:af:ab:83:3e:ac:b4:c3:25:f5:3c:ac:64:d9:cb:
72:12:63:0f:ac:b0:4d:4c:8a:2b:ed:8d:cd:d9:76:fe:c4:11:
89:f3:12:59:10:fc:d9:10:13:1a:3b:5b:49:bb:c3:79:84:cb:
ca:cd:e4:1b:43:c1:a0:52:12:df:32:e1:89:cb:11:68:33:39:
7a:50:08:3c:04:a0:a4:6b:38:59:46:ab:b7:45:df:c2:9e:18:
16:ce:62:d6:94:e5:8e:bd:22:ac:44:b8:18:6a:41:12:54:82:
88:c2:d2:5d:73:62:86:00:48:41:42:60:8b:5e:2c:bc:8a:cf:
9e:14:68:11:52:3a:bb:d9:4a:eb:65:92:3c:c1:48:91:1d:f0:
3d:83:09:17:24:7e:2f:ea:b3:69:09:f1:d5:5d:f3:22:c2:b1:
36:33:7b:74:1b:36:ba:30:08:01:55:87:69:d3:83:f4:d6:69:
22:6c:43:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 16 16:49:43 2023 by rpki-client on console-fra.rpki-client.org