Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ynZNUe0tsrb5NObfjtO7WOM6cEw.roa
File: ynZNUe0tsrb5NObfjtO7WOM6cEw.roa (raw, json)
Hash identifier: HuwAffwIXHnXQSoXBCkwOglchgWIOOvcef82J/M9hcM=
Subject key identifier: CA:76:4D:51:ED:2D:B2:B6:F9:34:E6:DF:8E:D3:BB:58:E3:3A:70:4C
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018712CAB3787836E16CC87F6CE69F3A3505
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ynZNUe0tsrb5NObfjtO7WOM6cEw.roa
Signing time: Fri 24 Mar 2023 08:44:46 +0000
ROA not before: Fri 24 Mar 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:202::/32 maxlen: 32
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 08 May 2023 17:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:12:ca:b3:78:78:36:e1:6c:c8:7f:6c:e6:9f:3a:35:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Mar 24 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca764d51ed2db2b6f934e6df8ed3bb58e33a704c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fe:24:13:90:46:09:40:ca:60:02:9e:77:86:
7d:22:78:94:a3:75:cc:2b:d7:0e:b8:2e:9f:a0:dc:
d6:be:42:a9:70:65:08:07:c1:b6:c1:83:79:53:1c:
7f:40:ad:47:a6:67:57:73:fa:d9:86:cf:b0:91:60:
b5:8a:b0:45:db:8f:94:e3:96:75:34:28:0a:6b:98:
0c:b6:f3:83:4e:73:cb:94:d5:87:50:0c:49:f0:9d:
f1:ff:c6:25:23:4f:4f:38:09:51:7b:31:e3:5f:e0:
96:07:9f:79:68:6f:01:dc:d8:8d:08:e9:3d:18:b2:
90:af:77:18:ab:f3:14:3c:90:c6:5e:e5:14:ee:01:
b6:3e:cb:2d:78:5a:83:ed:a3:a8:04:57:e7:4c:83:
77:31:aa:c8:53:45:23:ea:fe:e9:0d:49:7b:fb:8b:
55:fb:01:f7:c4:c9:aa:dd:bb:ac:f6:e3:66:b9:2b:
ad:b5:c3:e1:19:63:b1:df:cb:dc:5c:70:40:0b:5b:
61:a8:d6:b6:3d:9a:ba:36:63:81:e1:12:27:4c:c8:
21:c9:3b:b9:38:a0:2f:6e:0c:8a:1c:c5:f7:77:1a:
f0:4f:08:c7:14:62:f6:77:5a:af:2e:f8:0d:78:88:
99:9c:2b:ab:ef:28:89:89:84:7a:ef:cb:f2:63:7c:
7d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:76:4D:51:ED:2D:B2:B6:F9:34:E6:DF:8E:D3:BB:58:E3:3A:70:4C
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ynZNUe0tsrb5NObfjtO7WOM6cEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a7:9f:ee:6e:7e:a6:35:18:72:58:45:2b:b9:18:53:92:84:ac:
b5:21:e4:6a:97:2e:e3:36:6c:da:4a:c6:b7:bf:77:36:26:83:
e3:36:24:83:39:39:3e:09:5b:15:25:08:7d:01:c5:5a:12:30:
6d:70:5c:26:52:48:d0:3c:4f:d1:4b:8b:d3:1d:15:de:22:75:
df:e8:92:19:e3:33:0b:ac:d9:6c:8c:bb:f3:56:60:af:16:b2:
7b:01:71:9e:e7:94:b2:ca:70:10:38:ed:4b:f9:e0:0b:9a:1d:
a2:51:ce:92:61:13:56:2d:55:49:6e:23:97:9d:af:d4:d3:f3:
6f:99:3e:d2:af:5d:7f:e5:32:06:d5:2a:d1:79:91:58:3e:ed:
22:a4:4d:1a:f0:65:31:19:51:09:1c:15:cf:62:37:33:12:ed:
39:e3:21:69:bf:5d:b8:78:c1:b5:8b:8f:c6:1d:f1:18:ed:bf:
58:dd:24:79:94:bc:b5:21:f7:fc:f3:53:1c:b3:5a:3a:46:01:
df:f6:ef:17:d7:33:34:75:53:f2:20:f7:d6:4c:1c:f6:cd:1e:
ed:53:10:a8:e1:c1:2f:57:69:47:2e:56:c8:08:66:c2:ab:10:
5c:53:2b:15:62:fa:38:03:d3:58:11:8a:45:98:55:5f:6a:66:
10:dd:33:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:59 2024 by rpki-client on console-ams.rpki-client.org