Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/YY8DjPz9mwWGnm6UYKiThsT5Cu0.roa
File: YY8DjPz9mwWGnm6UYKiThsT5Cu0.roa (raw, json)
Hash identifier: 6tQX/UE3/qrHaR4jCH08vShnrVDtn6W7ExXFlUympJ4=
Subject key identifier: 61:8F:03:8C:FC:FD:9B:05:86:9E:6E:94:60:A8:93:86:C4:F9:0A:ED
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 018CC7273E463C59EF5A2CA655ADABD4EFF5
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/YY8DjPz9mwWGnm6UYKiThsT5Cu0.roa
Signing time: Mon 01 Jan 2024 22:31:27 +0000
ROA not before: Mon 01 Jan 2024 22:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 91.204.76.0/24 maxlen: 24
91.204.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 10:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:3e:46:3c:59:ef:5a:2c:a6:55:ad:ab:d4:ef:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Jan 1 22:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=618f038cfcfd9b05869e6e9460a89386c4f90aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:02:52:c6:b7:c1:07:4a:c8:eb:f8:85:db:60:
1f:88:61:fe:dd:da:e3:c7:98:18:2a:15:05:c0:84:
7f:a1:85:67:4c:b3:03:a0:65:15:a8:d3:8f:78:4e:
8b:16:cb:0c:de:2c:66:5d:db:91:7b:5b:c3:c7:30:
74:a9:ab:e9:5f:02:7e:87:19:46:b2:e0:de:b5:81:
d6:93:e7:75:0f:51:e5:ed:58:e9:7e:a6:8f:a3:3e:
d2:8b:32:61:22:c6:cc:b8:1f:c8:b1:13:af:1c:69:
df:95:ff:14:6b:27:4d:52:f2:f6:d7:4b:6e:36:c8:
11:c3:1c:00:93:c4:eb:e7:55:55:fb:68:5e:a6:a2:
02:95:8a:80:bb:61:1a:db:e4:50:2a:c7:5a:88:e7:
da:5b:e4:b1:d6:82:d1:e3:18:3e:00:b6:38:e9:1e:
11:48:a5:2b:d6:db:2e:d3:b9:77:29:11:dc:8c:b9:
04:89:a0:39:54:b6:50:9f:49:0f:10:61:bf:08:06:
4e:ec:d2:85:cf:2d:fd:4f:55:f2:a8:30:81:27:ee:
cc:e2:86:f3:89:a7:8f:b3:2e:b7:ed:9a:34:61:af:
59:ff:58:96:6b:f6:fd:66:6a:90:3d:61:dc:2c:4c:
4a:80:bc:cb:85:b6:51:3c:76:45:28:a4:d6:4b:dc:
51:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8F:03:8C:FC:FD:9B:05:86:9E:6E:94:60:A8:93:86:C4:F9:0A:ED
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/YY8DjPz9mwWGnm6UYKiThsT5Cu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.76.0/24
91.204.78.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:ee:b5:c9:5d:3f:d7:5c:ca:79:8f:bc:2c:27:7b:db:a1:30:
5e:85:9c:da:6d:ac:b2:90:ba:29:a2:0e:29:e8:e3:4b:4f:fb:
0d:94:31:db:52:64:93:85:42:6d:e0:88:6e:f9:09:41:c4:1b:
da:46:cc:88:59:b9:8b:ce:77:43:a6:1b:ac:72:e0:35:97:88:
43:0a:e7:e8:e2:c1:37:e7:8b:40:91:15:f1:68:a4:6a:53:ab:
76:9a:bc:fa:a1:46:81:51:f3:5b:ef:dc:46:fe:b8:2f:51:50:
6f:88:df:9f:68:9b:3d:c9:fe:14:db:51:6f:92:5d:6f:a0:2b:
75:c9:19:aa:b4:f4:ab:ee:e7:04:e4:2f:0a:3d:81:59:51:7d:
43:e8:2f:80:57:54:b0:70:9d:1d:ab:4d:6b:bd:4e:65:fd:5c:
72:ce:4c:0b:df:0f:0a:43:f5:1d:9f:3f:15:37:5d:20:f3:8c:
dd:1f:d0:5c:20:d8:8a:35:c3:38:f1:ed:7e:17:5c:ee:7b:9b:
6b:7d:7b:18:6f:da:81:7f:43:ab:e7:23:61:f0:69:95:20:fc:
0f:38:b2:91:22:eb:7c:a0:6f:66:b5:79:71:50:47:bd:a4:75:
5e:12:01:d0:8a:fc:fe:5c:c7:8f:c9:ee:1a:2b:96:ac:59:1c:
7e:6a:50:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:38 2024 by rpki-client on console-ams.rpki-client.org