Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/yjs_7yiH__-qih0Huc_tS420rAI.roa
File: yjs_7yiH__-qih0Huc_tS420rAI.roa (raw, json)
Hash identifier: Yobi0ZLmbsz08F0fmcAs8z6Hwchl63flDeOQtYNAc7w=
Subject key identifier: CA:3B:3F:EF:28:87:FF:FF:AA:8A:1D:07:B9:CF:ED:4B:8D:B4:AC:02
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 01878209EDAF5B5FC5758C7B53BFC318BC2F
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/yjs_7yiH__-qih0Huc_tS420rAI.roa
Signing time: Fri 14 Apr 2023 23:11:41 +0000
ROA not before: Fri 14 Apr 2023 23:11:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211826
IP address blocks: 195.182.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:82:09:ed:af:5b:5f:c5:75:8c:7b:53:bf:c3:18:bc:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Apr 14 23:11:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca3b3fef2887ffffaa8a1d07b9cfed4b8db4ac02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:41:e0:c6:36:fa:ed:fd:1b:1c:f5:ef:c3:dd:
29:7d:31:57:55:1b:16:f8:b0:3e:60:de:9c:cb:37:
f2:a3:bc:06:c3:91:8d:5b:e4:6a:9e:66:27:cf:c9:
cb:d4:c5:ff:f4:f1:9e:7c:91:20:41:a9:72:65:22:
19:45:b4:da:55:a6:57:8b:0d:a4:22:66:c3:d2:7c:
e5:9f:5a:cb:ee:cb:a7:63:81:be:89:4f:d4:87:fa:
66:c4:a3:6c:19:46:c3:63:b2:7a:b0:27:65:b0:bb:
d6:33:e9:5f:96:18:40:81:a7:28:95:f2:a5:86:71:
83:d2:2d:eb:a5:57:86:a4:64:be:90:c0:46:a4:66:
02:dc:64:03:d6:44:e2:9c:37:b2:79:2c:57:6e:8f:
72:4c:26:75:92:00:80:e1:62:42:55:41:20:fe:e5:
fa:f3:bf:b5:88:a9:0b:2d:4a:b3:d5:29:db:28:db:
00:02:13:e0:4b:54:f0:94:05:cd:84:b8:e2:ad:79:
5b:be:b8:f5:6f:89:14:11:a7:35:a5:63:f8:61:a7:
ce:30:03:37:bb:ff:bf:46:54:a6:2b:12:bb:47:1e:
f3:e7:30:da:c9:29:71:a5:cf:90:19:00:ae:cd:45:
fd:3d:45:53:c8:6d:71:c7:2f:95:40:d6:ab:23:05:
31:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:3B:3F:EF:28:87:FF:FF:AA:8A:1D:07:B9:CF:ED:4B:8D:B4:AC:02
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/yjs_7yiH__-qih0Huc_tS420rAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.199.0/24
Signature Algorithm: sha256WithRSAEncryption
42:ef:9b:1c:35:41:a7:8f:3e:9d:6e:95:7a:70:a8:0a:d1:67:
8a:2e:83:6a:29:be:75:21:c2:5b:02:83:24:0b:78:3b:e2:fc:
38:40:98:62:1e:dd:54:20:b6:32:b6:0a:44:c6:4c:d8:48:d3:
5f:5f:cc:1c:1d:42:d2:51:a5:23:91:93:21:5a:90:3d:b3:f9:
d4:e9:37:e3:2a:1e:c5:9b:c6:f0:86:ee:5a:29:17:6a:58:d5:
21:7a:b1:0b:39:a4:c5:1d:52:7e:ef:21:63:76:f4:47:e9:97:
ac:d3:6e:f5:d9:7c:db:fe:80:08:f8:95:3a:aa:db:44:f8:e9:
01:e4:26:c8:69:b8:bf:e5:d2:e1:23:4b:c9:ba:8f:1a:b5:27:
76:5d:1f:ef:92:4b:5f:d3:ce:91:66:77:90:95:c4:53:cf:aa:
53:31:9b:65:6c:97:4e:61:0f:dc:39:1e:43:04:24:ae:5d:e9:
1a:0f:c8:d3:ad:88:45:bb:f4:d7:59:3a:94:2b:e1:d3:7d:a5:
bc:e9:cd:7b:5f:a4:92:4e:a6:17:6c:0e:e1:44:61:2d:70:55:
6e:bf:61:c7:35:2c:d6:e8:ca:7c:ba:2b:f1:90:35:5a:ea:8a:
9d:a4:f6:e3:1d:0c:95:b8:a9:8d:e2:50:ef:1e:c1:a1:d1:b7:
12:f0:19:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:40 2024 by rpki-client on console-fra.rpki-client.org