Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/YMB1NL4LQoFAC0QggPuaL4PcBr0.roa
File: YMB1NL4LQoFAC0QggPuaL4PcBr0.roa (raw, json)
Hash identifier: s6HnI/sBnkJEp7M+uktP+q+ye8C3F7fwcxPtzrHO2ww=
Subject key identifier: 60:C0:75:34:BE:0B:42:81:40:0B:44:20:80:FB:9A:2F:83:DC:06:BD
Certificate issuer: /CN=50980fb6ade858f2652e736993126c85759f06d9
Certificate serial: 0186CD1A3995A66943A272896CD902D15E42
Authority key identifier: 50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/YMB1NL4LQoFAC0QggPuaL4PcBr0.roa
Signing time: Fri 10 Mar 2023 19:58:12 +0000
ROA not before: Fri 10 Mar 2023 19:58:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 91.204.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 13:24:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:1a:39:95:a6:69:43:a2:72:89:6c:d9:02:d1:5e:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50980fb6ade858f2652e736993126c85759f06d9
Validity
Not Before: Mar 10 19:58:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60c07534be0b4281400b442080fb9a2f83dc06bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:04:90:f5:ac:1a:39:36:1e:d0:39:70:35:a5:
9c:04:7d:31:5d:76:a0:2a:00:cd:da:5a:05:3b:db:
3a:6f:85:ef:dd:84:2b:eb:67:aa:35:7a:2b:9f:25:
9a:9a:47:6c:6c:a6:4d:97:cf:af:bc:64:3f:d1:25:
12:c8:5f:4b:fa:bf:a7:73:de:db:ef:23:12:6d:e1:
e1:db:7a:66:4e:43:05:01:2b:23:15:c6:33:7a:c2:
ac:11:bb:52:03:b4:14:f5:97:31:6b:62:d1:5a:21:
15:46:0a:2c:b2:e5:2c:a4:dd:68:4f:fc:20:c4:0e:
28:e3:32:9a:ed:1c:b4:10:f6:d5:cf:60:07:e4:1e:
15:eb:52:e6:e2:b0:61:66:35:54:83:d8:8f:31:6b:
20:74:2b:16:df:f2:1b:f2:85:b7:df:f0:d6:bd:9d:
0d:bc:f2:8a:e9:ff:b0:5f:bf:d7:6a:86:b5:13:39:
89:70:58:79:e5:f0:60:97:eb:c2:60:45:2d:9d:27:
3b:eb:41:f0:73:d2:00:93:01:8d:04:4c:8a:6e:83:
84:5f:34:d2:da:ba:a3:3d:20:20:a7:e5:ab:87:69:
7e:7b:21:c5:3b:59:ee:6e:97:3f:38:f3:be:29:52:
f3:cb:d9:81:ff:a2:72:25:90:33:76:73:ad:8a:01:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C0:75:34:BE:0B:42:81:40:0B:44:20:80:FB:9A:2F:83:DC:06:BD
X509v3 Authority Key Identifier:
keyid:50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/YMB1NL4LQoFAC0QggPuaL4PcBr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/UJgPtq3oWPJlLnNpkxJshXWfBtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.181.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e3:cb:29:3d:36:0e:d8:73:0a:9c:55:41:a9:24:cd:fe:a7:
fe:ea:d5:52:c7:d7:bc:a7:87:a4:8a:cd:8b:e7:21:62:06:ba:
27:cc:b1:67:c5:94:0d:2c:d4:3a:31:7a:3e:29:a1:70:36:ce:
b0:7a:af:00:fd:02:69:ee:89:d4:ce:63:3a:65:42:69:62:f7:
54:fa:96:4d:e2:2f:8f:4e:31:e8:d5:d8:58:c2:26:4d:0f:fe:
54:72:02:e5:59:8d:b5:4b:20:5a:c5:91:cb:40:fe:9c:76:05:
8b:3f:54:9d:83:39:3e:bc:0b:39:ad:be:28:7a:2c:5b:1a:1a:
0c:3d:de:cd:40:49:34:50:bd:05:5e:93:1e:05:1b:f1:d2:bc:
7f:fd:1b:e0:5c:7b:8a:a7:27:72:21:d2:ce:44:94:e2:fa:b8:
b1:45:2f:1c:9c:7c:89:c2:2c:4c:7e:7b:5a:40:d7:7e:90:80:
1e:25:dc:51:f3:6c:e8:1d:39:d7:81:2b:06:52:c9:ad:1f:e9:
b0:94:10:fa:60:3b:14:e7:7e:5e:06:6d:eb:13:2f:db:37:50:
40:89:28:25:c2:b5:97:b0:ff:d1:d0:b2:6b:d9:b9:ed:79:15:
fa:7f:be:08:11:53:e1:fc:2a:9b:2e:b5:61:ca:c1:8d:72:fd:
8a:84:c4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org