Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/yDWF8R65-QDnJaWHzNZAthItCkw.roa
File: yDWF8R65-QDnJaWHzNZAthItCkw.roa (raw, json)
Hash identifier: +z2vTqMTAVbZ+UiTPlNd6BUZI33cVsboZvrWzkFqXd8=
Subject key identifier: C8:35:85:F1:1E:B9:F9:00:E7:25:A5:87:CC:D6:40:B6:12:2D:0A:4C
Certificate issuer: /CN=5c5d86974a7b624192ec8d834cf2906e1302e431
Certificate serial: 01856B00B7EA657CFAEDC8678C66F509E6A6
Authority key identifier: 5C:5D:86:97:4A:7B:62:41:92:EC:8D:83:4C:F2:90:6E:13:02:E4:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XF2Gl0p7YkGS7I2DTPKQbhMC5DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/yDWF8R65-QDnJaWHzNZAthItCkw.roa
Signing time: Sun 01 Jan 2023 01:44:47 +0000
ROA not before: Sun 01 Jan 2023 01:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24971
IP address blocks: 176.227.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:00:b7:ea:65:7c:fa:ed:c8:67:8c:66:f5:09:e6:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c5d86974a7b624192ec8d834cf2906e1302e431
Validity
Not Before: Jan 1 01:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c83585f11eb9f900e725a587ccd640b6122d0a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:83:cc:bd:c4:d8:b4:79:38:7b:44:da:24:da:
fb:44:12:8f:5f:d6:6b:f5:8a:1c:8c:71:41:01:20:
d4:ea:f6:07:6e:a5:75:8c:7f:9e:a0:f2:b9:17:21:
02:28:89:82:45:a9:29:2d:17:1b:29:8b:c3:c6:a0:
db:0d:36:f7:67:92:8d:f6:84:3f:7d:ae:ae:55:27:
e9:bb:be:fa:20:ef:bb:76:f8:1c:97:20:36:42:f6:
9b:d5:23:59:c9:97:fe:f5:b0:7b:54:8f:e8:93:10:
21:45:f9:01:81:87:bf:2e:2c:57:5d:58:5b:5c:49:
29:06:57:b8:26:3c:b6:0c:48:c4:e0:2f:a2:ba:e7:
d7:82:89:50:4a:b0:f2:c9:f4:6e:1c:91:67:b8:db:
12:0b:1f:e3:34:73:86:a9:de:e2:52:a4:d5:a1:dd:
02:88:e8:d8:f5:fc:19:d6:a7:5f:11:f1:77:b2:6d:
13:1d:8c:16:64:85:0c:89:21:bd:33:66:76:c0:4b:
c5:8f:3f:ee:62:81:2e:d4:50:f4:ce:8c:57:72:4d:
9b:26:f2:4f:e2:7e:5e:a8:a4:cc:ef:5d:aa:ba:ae:
c4:43:d5:88:f4:35:58:08:aa:1e:b7:25:5b:60:ff:
49:3d:91:3e:82:ae:6f:4c:7d:c4:64:79:62:06:e2:
a2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:35:85:F1:1E:B9:F9:00:E7:25:A5:87:CC:D6:40:B6:12:2D:0A:4C
X509v3 Authority Key Identifier:
keyid:5C:5D:86:97:4A:7B:62:41:92:EC:8D:83:4C:F2:90:6E:13:02:E4:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XF2Gl0p7YkGS7I2DTPKQbhMC5DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/yDWF8R65-QDnJaWHzNZAthItCkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/XF2Gl0p7YkGS7I2DTPKQbhMC5DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.227.168.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:f9:48:b2:22:8c:19:23:c3:4a:a3:d8:ba:3f:cc:09:85:c5:
e3:3a:5a:63:fa:bc:c8:22:1b:5b:72:af:89:18:70:d1:3b:04:
8a:64:18:69:ec:80:7a:9d:3d:d4:7b:3f:db:58:9b:77:f6:4f:
c4:43:99:9f:46:38:47:3a:33:a0:c4:06:77:00:32:08:1e:7a:
06:d9:40:d3:c4:29:5d:2f:a9:69:05:dc:58:b4:9b:e7:c0:0c:
f9:8a:01:66:b4:40:6f:af:09:97:61:b7:a8:7d:e0:4a:85:d9:
da:43:c4:be:c1:4d:b6:75:87:70:20:2a:5f:54:d1:f8:d9:9d:
7b:cc:34:f9:ce:01:c1:ec:a6:1e:8e:b5:bc:10:c8:47:30:7e:
1b:f8:57:e7:e5:e0:af:be:1e:05:3d:ce:a1:b3:17:da:eb:47:
7d:5c:77:d0:a1:f6:0f:18:ba:3b:15:38:5a:36:4c:d0:48:06:
18:61:84:13:a6:a4:50:0a:fb:bd:86:13:bc:2a:96:d2:c1:1b:
7b:bf:90:cd:57:6b:80:6d:82:d1:1c:a1:03:a0:f6:96:ea:91:
0f:ca:76:80:74:89:5b:d5:a4:59:7b:e6:4a:11:87:ec:e5:37:
bf:48:ef:65:bd:cc:f3:4b:d3:77:3b:40:ce:a3:80:f9:de:aa:
e5:4d:98:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org