Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0a8b1f-ca72-4eda-a717-482c86db2040/1/YQCMmCEVgbtDHIDzh8Baf6aM5X4.roa
File: YQCMmCEVgbtDHIDzh8Baf6aM5X4.roa (raw, json)
Hash identifier: YA1Cmimr+Y/zsN70ZTpzRs80LUKGVPmEN0iyf03V2cQ=
Subject key identifier: 61:00:8C:98:21:15:81:BB:43:1C:80:F3:87:C0:5A:7F:A6:8C:E5:7E
Certificate issuer: /CN=cd0932bdb61085c76dd645c1e76eb71117547b93
Certificate serial: 0185712796CC2723640292D52391E78CC4CC
Authority key identifier: CD:09:32:BD:B6:10:85:C7:6D:D6:45:C1:E7:6E:B7:11:17:54:7B:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQkyvbYQhcdt1kXB5263ERdUe5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0a8b1f-ca72-4eda-a717-482c86db2040/1/YQCMmCEVgbtDHIDzh8Baf6aM5X4.roa
Signing time: Mon 02 Jan 2023 06:24:58 +0000
ROA not before: Mon 02 Jan 2023 06:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30779
IP address blocks: 88.135.224.0/19 maxlen: 19
193.19.74.0/23 maxlen: 23
193.34.20.0/22 maxlen: 22
176.100.160.0/19 maxlen: 19
2001:67c:203c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:96:cc:27:23:64:02:92:d5:23:91:e7:8c:c4:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0932bdb61085c76dd645c1e76eb71117547b93
Validity
Not Before: Jan 2 06:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61008c98211581bb431c80f387c05a7fa68ce57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8d:83:eb:9f:87:f0:50:92:bf:68:2f:bb:eb:
1b:fd:72:40:76:66:0c:0e:84:de:b8:3a:90:d7:18:
88:f9:a0:b3:86:d6:01:50:1e:a4:99:29:ae:c8:02:
8e:cf:a2:bb:77:d8:ef:cc:9a:a0:fa:97:fa:9d:2f:
45:31:71:9f:6e:32:d4:16:a1:d5:79:cf:4b:bb:61:
93:f5:2f:99:a3:95:d7:ee:4c:d3:27:e1:a8:27:5b:
32:31:c3:5b:35:a5:96:67:04:5d:77:2c:f0:33:55:
aa:75:66:d5:ad:fb:a0:b7:c4:f6:ca:bf:25:9b:09:
9f:85:9c:1e:dd:50:01:40:24:d2:3b:22:56:35:fc:
f3:5d:d5:54:37:b8:1b:91:e2:f5:d5:a4:f0:07:d3:
6b:53:da:20:3a:f9:f7:fe:fd:1c:36:06:da:d9:e9:
c7:5b:e2:eb:8c:fb:f0:75:f8:21:10:30:0e:63:d0:
ba:54:7e:1d:fa:8c:5e:56:2a:b3:ce:85:48:dd:c2:
ab:79:af:1e:96:e5:f9:0b:df:ca:71:d6:c5:30:bc:
9f:c7:58:7a:4d:56:9f:3c:70:b5:3c:d3:b6:19:72:
b8:d8:74:15:c9:ae:d3:44:64:8c:48:65:46:9b:e5:
68:e9:b7:b8:2f:4a:17:d0:1b:27:9a:8a:5e:c2:9b:
71:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:00:8C:98:21:15:81:BB:43:1C:80:F3:87:C0:5A:7F:A6:8C:E5:7E
X509v3 Authority Key Identifier:
keyid:CD:09:32:BD:B6:10:85:C7:6D:D6:45:C1:E7:6E:B7:11:17:54:7B:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQkyvbYQhcdt1kXB5263ERdUe5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0a8b1f-ca72-4eda-a717-482c86db2040/1/YQCMmCEVgbtDHIDzh8Baf6aM5X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0a8b1f-ca72-4eda-a717-482c86db2040/1/zQkyvbYQhcdt1kXB5263ERdUe5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.224.0/19
176.100.160.0/19
193.19.74.0/23
193.34.20.0/22
IPv6:
2001:67c:203c::/48
Signature Algorithm: sha256WithRSAEncryption
41:e5:b2:b5:da:7e:37:14:20:2c:38:5c:55:2f:24:df:d9:36:
73:f2:fc:52:09:c9:5a:ad:a4:24:c0:bb:49:6e:15:c3:c4:7b:
e4:f6:2d:a2:69:52:1d:ec:21:c8:93:a7:54:34:c3:9a:6f:e4:
12:99:1f:c2:c2:c9:af:58:64:93:9f:04:e5:c8:12:87:b6:d5:
b5:2b:c1:57:ea:83:dc:2e:99:0f:55:b2:7b:94:25:84:66:6d:
eb:0a:2e:48:29:91:8f:6e:ee:64:31:0f:eb:f3:44:af:7e:06:
22:fc:d6:e3:cf:60:31:13:9b:dc:37:22:b5:e2:09:f1:f3:4b:
e4:90:79:95:45:43:34:14:5b:74:c2:1c:10:f0:1c:df:c2:51:
4c:11:f9:00:0c:12:74:7a:72:47:cd:8a:7a:2e:b3:28:b6:f3:
b3:a0:23:f9:24:1c:3b:ec:65:99:b3:74:02:cd:2f:d0:e2:34:
1f:97:b5:51:26:8b:c7:36:84:d4:f6:d0:36:7d:58:8c:36:32:
6a:58:3f:ae:b3:4d:85:4a:27:a4:fd:b6:7b:86:79:9b:68:88:
dd:4e:e7:30:35:cf:4b:24:62:73:45:d5:b8:30:04:10:73:69:
8c:d4:8e:65:1e:7a:14:41:f1:6d:8c:83:9b:85:56:65:a3:28:
9a:80:21:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:20 2024 by rpki-client on console-fra.rpki-client.org