Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/YkCNZ_Ev27atnCXw8ng51kqRivc.roa
File: YkCNZ_Ev27atnCXw8ng51kqRivc.roa (raw, json)
Hash identifier: zw3zs6440doLyearjIkZlvc3s7gNKFS99OzsCm4Z4QI=
Subject key identifier: 62:40:8D:67:F1:2F:DB:B6:AD:9C:25:F0:F2:78:39:D6:4A:91:8A:F7
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189D913C3D9A5F255AA6072B3432886F2B7
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/YkCNZ_Ev27atnCXw8ng51kqRivc.roa
Signing time: Wed 09 Aug 2023 06:54:58 +0000
ROA not before: Wed 09 Aug 2023 06:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a0f:cc87::/36 maxlen: 36
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:af01::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Wed 09 Aug 2023 18:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d9:13:c3:d9:a5:f2:55:aa:60:72:b3:43:28:86:f2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Aug 9 06:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62408d67f12fdbb6ad9c25f0f27839d64a918af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5d:a3:57:92:77:a9:38:c0:88:3e:26:29:6f:
2d:a7:04:fd:5d:49:f9:b4:6a:93:2c:01:98:66:de:
38:5b:cb:d9:e7:3b:80:0a:41:17:30:17:a6:38:c0:
d4:64:1f:52:e8:56:51:41:39:6b:c1:23:81:6e:1e:
9b:af:21:73:1f:c4:07:c0:a9:ee:de:80:de:06:05:
69:23:87:5e:37:67:af:52:a7:5c:5f:78:21:23:ba:
72:82:43:a7:62:1d:e7:8e:80:1f:b5:11:69:3f:9e:
55:e7:08:10:e4:99:fc:4e:e6:74:3f:d4:76:9c:e9:
23:76:b2:f3:82:cc:f4:f9:a6:d0:3c:62:d3:11:7f:
3f:b3:2e:27:38:f6:a4:f8:3c:6d:29:45:09:02:a0:
32:c7:9b:80:f2:e1:7c:09:e5:43:48:f4:fc:00:08:
5c:81:d2:94:b6:94:24:15:7e:35:96:d8:37:ad:23:
ed:e7:92:fe:5a:d5:04:8e:c9:b9:70:53:d4:ca:f9:
0d:01:03:75:da:82:0d:ab:bb:12:54:7f:c9:a3:9b:
13:48:3a:04:fa:a2:cf:78:8f:a9:52:a0:66:7b:ec:
fb:d0:a5:99:a0:c9:c2:65:02:83:dd:de:79:7c:80:
e9:36:7f:f5:36:44:be:fc:0a:2f:a2:48:26:7c:5a:
a8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:40:8D:67:F1:2F:DB:B6:AD:9C:25:F0:F2:78:39:D6:4A:91:8A:F7
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/YkCNZ_Ev27atnCXw8ng51kqRivc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3b00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::/36
2a0c:e8c0::/29
2a0d:5ec5::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:e82::/32
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
9b:50:2e:f1:38:c7:04:9a:3c:86:7c:3c:02:c1:14:dc:89:6a:
1b:69:29:a6:67:ba:b8:37:f1:d0:a8:ba:f1:f3:fc:17:41:b9:
28:1c:7e:63:73:8f:29:64:90:95:2a:48:cd:a5:1b:1d:e7:e8:
8f:79:38:53:13:7b:24:06:d8:c9:c5:73:84:1d:d6:76:37:79:
75:f9:01:d6:e8:40:c0:54:e6:89:91:31:6d:98:4f:d2:6b:04:
b8:81:3d:bd:9e:31:41:91:20:9c:ec:9e:1e:ef:34:c6:aa:93:
f5:ef:1c:a9:e6:af:87:b2:0e:86:5e:fa:42:2d:7b:53:7d:13:
4a:17:9f:80:8a:03:c5:c8:bb:88:b7:5d:ed:5c:74:99:ec:c3:
89:b9:3b:db:4d:00:ba:0b:cd:7a:15:6f:84:7c:33:c7:0a:36:
54:44:d8:92:02:0b:ac:58:03:71:74:42:9a:bd:eb:bb:7c:b9:
e3:b1:50:43:9b:7e:f2:1d:44:39:97:6a:e4:5a:53:50:e4:da:
3b:47:06:6c:b2:83:eb:f3:e8:a0:38:36:5c:10:3d:2c:8e:cd:
38:b1:3c:51:57:b8:e1:50:15:d7:33:0b:df:ea:51:cf:16:e0:
78:51:5a:2e:de:b8:9c:20:e3:3c:86:3a:08:a2:b3:9b:c5:3a:
3b:16:f4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org