Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f601d3-23d4-4feb-96fa-f1451ba884b8/1/pYR0Q2_73ccEGvs5r0NnQk3LA7o.roa
File: pYR0Q2_73ccEGvs5r0NnQk3LA7o.roa (raw, json)
Hash identifier: H7jA0IhFMIxGhIeT4WrocIGhBDm7Yo9J/8RZLFRIjeI=
Subject key identifier: A5:84:74:43:6F:FB:DD:C7:04:1A:FB:39:AF:43:67:42:4D:CB:03:BA
Certificate issuer: /CN=449d812bdf4c5fb08ed6120dcd0619abf3530520
Certificate serial: 0188952BBE96C64458A42AE3C4080D70ACF9
Authority key identifier: 44:9D:81:2B:DF:4C:5F:B0:8E:D6:12:0D:CD:06:19:AB:F3:53:05:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RJ2BK99MX7CO1hINzQYZq_NTBSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f601d3-23d4-4feb-96fa-f1451ba884b8/1/pYR0Q2_73ccEGvs5r0NnQk3LA7o.roa
Signing time: Wed 07 Jun 2023 09:24:11 +0000
ROA not before: Wed 07 Jun 2023 09:24:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50135
IP address blocks: 92.42.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:2b:be:96:c6:44:58:a4:2a:e3:c4:08:0d:70:ac:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=449d812bdf4c5fb08ed6120dcd0619abf3530520
Validity
Not Before: Jun 7 09:24:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a58474436ffbddc7041afb39af4367424dcb03ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1c:b3:38:5a:04:41:a0:ab:33:34:b7:ce:41:
58:20:95:45:2b:02:88:b3:19:14:41:25:49:56:75:
e1:d0:a4:92:05:39:2f:fb:c4:24:9a:e8:5a:1e:7c:
c0:d0:a5:b4:a0:78:b3:f7:96:c6:54:4b:b6:f0:65:
2f:fe:89:db:5d:23:db:71:9c:21:29:73:37:15:80:
18:19:56:4e:6c:61:2c:b4:1e:54:c8:02:79:83:7c:
e2:48:f2:43:b7:b2:e1:a1:c0:b1:7a:43:d0:4a:14:
85:30:69:65:7b:4f:bd:3f:bd:cd:de:ea:23:fa:35:
3c:b8:01:a8:a8:d0:d9:db:1f:ca:f7:04:bd:e6:22:
67:63:d1:6c:a4:6f:01:22:c3:aa:f9:80:7f:0d:8a:
2e:9c:ee:4e:53:ef:30:bd:d0:99:4c:72:90:a5:b1:
52:6d:f4:b6:fb:42:e8:f1:45:a0:8a:27:25:1a:ce:
87:bc:c6:a4:1d:9c:97:3f:fc:d0:4d:39:26:f3:f7:
48:e4:49:26:70:96:b3:f3:ca:75:5a:81:23:d1:30:
1a:3b:8b:7a:f9:96:b3:17:be:18:31:2b:fc:4a:d0:
88:0d:d2:da:fa:16:17:32:a2:03:ab:11:9a:22:a5:
75:ee:44:3a:bd:5d:60:83:63:3c:c9:3a:37:56:a0:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:84:74:43:6F:FB:DD:C7:04:1A:FB:39:AF:43:67:42:4D:CB:03:BA
X509v3 Authority Key Identifier:
keyid:44:9D:81:2B:DF:4C:5F:B0:8E:D6:12:0D:CD:06:19:AB:F3:53:05:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RJ2BK99MX7CO1hINzQYZq_NTBSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f601d3-23d4-4feb-96fa-f1451ba884b8/1/pYR0Q2_73ccEGvs5r0NnQk3LA7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f601d3-23d4-4feb-96fa-f1451ba884b8/1/RJ2BK99MX7CO1hINzQYZq_NTBSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.42.4.0/24
Signature Algorithm: sha256WithRSAEncryption
93:db:3d:5e:cd:35:b8:b5:5f:a9:dd:57:86:9c:d7:92:ef:7d:
00:d5:e1:58:4a:68:7a:62:35:38:0f:1f:f3:e7:dc:b9:b5:18:
a5:ca:4d:47:60:3f:21:9f:8f:18:be:e9:0c:2e:9a:52:ba:df:
28:1b:e9:42:a7:d3:25:4e:90:72:38:27:2c:a6:95:5d:46:c7:
89:e8:bf:0c:75:13:5b:a3:fe:f8:3c:ac:12:37:dd:a1:87:c7:
77:7a:95:e6:bb:ef:50:63:6f:20:a4:2b:76:39:5e:07:90:be:
89:2c:6f:48:d8:63:2d:7b:01:2b:5c:46:d1:33:e7:9a:90:b4:
2f:d9:84:bb:38:c4:0f:37:8a:8c:0a:62:14:02:ab:a2:bb:ed:
e9:36:7c:e6:68:1e:0c:02:38:1e:59:85:87:d5:50:35:56:8f:
f8:4f:bd:c6:67:a6:06:27:08:cb:f1:e5:60:83:31:09:c5:a5:
a8:da:89:83:40:ba:bb:ce:02:7b:37:7e:fe:03:67:b2:e1:4a:
69:e7:bc:69:90:2f:d4:d5:59:59:58:3d:8e:e1:37:74:2a:0f:
39:bc:c1:43:49:b8:11:aa:a1:36:06:ae:27:bd:51:cc:ba:b3:
30:f3:8e:08:89:bc:38:fd:65:e1:7d:86:52:cf:bb:25:bb:60:
1c:7b:0e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:52 2024 by rpki-client on console-fra.rpki-client.org