Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Yi5YYlUADs-cPSYI2YkoHFVUCEg.roa
File: Yi5YYlUADs-cPSYI2YkoHFVUCEg.roa (raw, json)
Hash identifier: v/AJbIZW3gCRwvav65/w9qjUeJdSO9YFlEbU365oghs=
Subject key identifier: 62:2E:58:62:55:00:0E:CF:9C:3D:26:08:D9:89:28:1C:55:54:08:48
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0186ED142BBD8968DE3228554BC22BEE1537
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Yi5YYlUADs-cPSYI2YkoHFVUCEg.roa
Signing time: Fri 17 Mar 2023 00:59:27 +0000
ROA not before: Fri 17 Mar 2023 00:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41717
IP address blocks: 80.66.199.0/24 maxlen: 24
5.183.117.0/24 maxlen: 24
5.183.116.0/23 maxlen: 23
5.183.116.0/24 maxlen: 24
5.183.118.0/24 maxlen: 24
5.183.119.0/24 maxlen: 24
5.183.121.0/24 maxlen: 24
5.183.123.0/24 maxlen: 24
5.183.120.0/23 maxlen: 23
5.183.120.0/24 maxlen: 24
5.183.122.0/24 maxlen: 24
45.139.194.0/24 maxlen: 24
45.141.44.0/22 maxlen: 24
45.8.35.0/24 maxlen: 24
45.8.32.0/24 maxlen: 24
45.8.34.0/24 maxlen: 24
2.58.245.0/24 maxlen: 24
2.58.244.0/24 maxlen: 24
2.58.246.0/24 maxlen: 24
2.58.247.0/24 maxlen: 24
2.58.249.0/24 maxlen: 24
2.58.251.0/24 maxlen: 24
2.58.248.0/24 maxlen: 24
2.58.250.0/24 maxlen: 24
194.104.144.0/24 maxlen: 24
95.214.166.0/24 maxlen: 24
95.214.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ed:14:2b:bd:89:68:de:32:28:55:4b:c2:2b:ee:15:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Mar 17 00:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=622e586255000ecf9c3d2608d989281c55540848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d6:6f:65:e5:b3:52:d4:7b:77:69:44:c2:04:
bb:22:ba:7d:c6:1a:ee:6e:67:b7:ff:6e:8b:96:46:
6c:45:4d:83:44:df:23:c0:3b:25:9d:c1:ad:f1:47:
b3:3c:ab:39:06:e3:df:ff:03:c6:02:48:85:d0:14:
5e:bc:38:da:9f:37:3f:a6:28:41:5b:e4:14:f3:fe:
0b:7a:ab:9a:57:70:50:a2:70:51:cb:66:c1:1e:08:
12:ac:b4:65:ac:68:27:fe:94:ae:1b:7c:df:6d:6b:
f2:4f:9e:f4:a9:03:5c:72:f3:bf:d0:c8:d7:97:6e:
7d:39:45:fd:a5:92:82:55:4f:96:90:ff:f8:5d:84:
e1:71:b3:9d:f0:91:97:ed:d6:e3:47:2b:47:77:bc:
6e:e1:a0:95:69:bc:6f:40:15:59:80:d5:2d:44:a9:
67:8b:87:78:85:69:2a:25:cd:59:d1:a7:22:6e:87:
17:ff:e3:21:41:4e:ff:59:82:27:ff:6b:86:cf:6a:
dc:07:89:13:7b:6f:d2:0d:88:31:58:69:01:cf:16:
6d:0b:41:cb:d1:ca:74:4f:79:38:98:15:52:ef:b8:
d1:65:00:f7:30:7e:1e:0f:59:5a:7d:bb:35:94:4b:
eb:93:a2:48:f0:83:90:cc:ad:98:d8:60:75:c7:52:
e4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2E:58:62:55:00:0E:CF:9C:3D:26:08:D9:89:28:1C:55:54:08:48
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Yi5YYlUADs-cPSYI2YkoHFVUCEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.244.0-2.58.251.255
5.183.116.0-5.183.123.255
45.8.32.0/24
45.8.34.0/23
45.139.194.0/24
45.141.44.0/22
80.66.199.0/24
95.214.166.0/23
194.104.144.0/24
Signature Algorithm: sha256WithRSAEncryption
64:fa:29:c3:70:03:31:5d:54:88:9f:66:9c:2f:17:35:73:06:
79:f4:b9:2d:0e:28:1c:2d:83:8d:e5:a7:7f:a6:fa:85:57:f2:
5e:de:12:95:24:fb:10:64:91:16:1c:5c:ba:1c:74:77:db:83:
b5:59:56:ea:f0:4d:6d:9a:68:8c:1e:bf:ed:98:87:5e:55:9c:
0c:3f:21:f5:1f:2a:02:0d:53:e7:e1:ae:1a:ec:a3:ce:66:ca:
89:71:f4:e3:9f:73:94:b3:24:e5:a8:85:fc:a3:77:b3:ad:ee:
53:93:6d:71:35:c6:47:81:c6:c5:eb:32:96:f6:2d:7b:5d:bd:
21:21:5f:27:6c:e3:b6:63:e5:26:af:86:1f:10:84:1d:96:39:
4e:00:e7:84:92:e8:bf:81:63:34:c9:a4:42:da:60:10:aa:30:
7a:77:c7:81:1a:44:6d:fb:49:75:6b:fd:48:30:d6:b8:9d:96:
19:38:6f:b7:1b:7b:6d:32:5e:56:37:ec:37:34:75:fd:af:3a:
1f:0a:b0:5c:33:60:72:e7:44:95:c6:33:0b:e1:7c:27:33:a8:
7b:a3:b3:2e:ae:24:9a:9c:2d:2b:f6:f3:48:af:a9:f9:e9:d1:
32:38:b3:a2:1e:e7:39:a3:20:9d:f0:f9:e5:61:e2:a2:d7:3e:
56:9f:0e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org