Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/414b46-db5e-4440-a1e4-3c54d11f872c/1/ybo8wi2reVcZE70ugpk3g3N1KDI.roa
File: ybo8wi2reVcZE70ugpk3g3N1KDI.roa (raw, json)
Hash identifier: altWA1oYKeIROQFOkzgnFDZSbSdr0WdaNqcuCwjqktA=
Subject key identifier: C9:BA:3C:C2:2D:AB:79:57:19:13:BD:2E:82:99:37:83:73:75:28:32
Certificate issuer: /CN=c2807081d6fc22bdff80d2bd7eca8fec0fc5fef6
Certificate serial: 0185712779BBDBA41DFA703CC9B051A2B32C
Authority key identifier: C2:80:70:81:D6:FC:22:BD:FF:80:D2:BD:7E:CA:8F:EC:0F:C5:FE:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/woBwgdb8Ir3_gNK9fsqP7A_F_vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/414b46-db5e-4440-a1e4-3c54d11f872c/1/ybo8wi2reVcZE70ugpk3g3N1KDI.roa
Signing time: Mon 02 Jan 2023 06:24:50 +0000
ROA not before: Mon 02 Jan 2023 06:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29014
IP address blocks: 194.59.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:79:bb:db:a4:1d:fa:70:3c:c9:b0:51:a2:b3:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2807081d6fc22bdff80d2bd7eca8fec0fc5fef6
Validity
Not Before: Jan 2 06:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9ba3cc22dab79571913bd2e8299378373752832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:52:cc:dc:d5:c5:7e:ce:24:4b:b4:e9:a6:a9:
16:33:83:65:c2:37:3d:55:00:de:39:db:ea:b1:f9:
e6:60:29:b5:3d:41:36:06:34:7b:63:03:97:62:df:
04:30:c8:fc:0f:a7:91:66:ad:f6:f2:2b:77:db:72:
5a:d3:0b:9f:60:1a:b4:39:86:6c:42:bc:ea:d4:6f:
62:ff:ac:29:14:98:9c:a0:0d:0b:e8:bb:fc:41:cf:
fe:7c:6d:f1:f0:8d:6a:6f:e8:49:eb:d3:3b:87:37:
68:a2:fd:02:36:4a:21:f7:19:e0:36:5b:9e:d3:f4:
75:a8:b8:c0:2b:a6:01:da:2c:37:a2:d2:d4:a4:7f:
07:68:ed:0d:bb:42:e6:f2:f5:e9:bb:c5:3d:c5:6a:
30:b6:d9:06:df:11:58:e3:fb:8d:4b:b3:04:9f:f3:
95:3d:86:25:fc:97:08:f0:96:87:33:ed:15:8c:21:
3b:c2:39:cd:46:99:76:78:69:e6:e2:99:6a:fa:1e:
77:be:ab:8f:45:06:92:2d:03:f7:b9:02:ad:96:51:
31:d8:bf:65:b2:8c:f1:eb:0d:17:1a:23:a4:10:ff:
ff:2a:80:c0:b0:90:7f:42:3f:d6:f4:8d:3c:1d:7f:
03:b3:71:6d:4c:93:56:f3:74:2b:76:c3:c5:34:e5:
6a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:BA:3C:C2:2D:AB:79:57:19:13:BD:2E:82:99:37:83:73:75:28:32
X509v3 Authority Key Identifier:
keyid:C2:80:70:81:D6:FC:22:BD:FF:80:D2:BD:7E:CA:8F:EC:0F:C5:FE:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/woBwgdb8Ir3_gNK9fsqP7A_F_vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/414b46-db5e-4440-a1e4-3c54d11f872c/1/ybo8wi2reVcZE70ugpk3g3N1KDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/414b46-db5e-4440-a1e4-3c54d11f872c/1/woBwgdb8Ir3_gNK9fsqP7A_F_vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.10.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:47:5d:d2:6d:c7:f5:84:70:b6:97:73:f5:b7:a8:c1:1d:a6:
c6:f9:c2:f5:26:1d:96:de:a9:67:8d:d8:6a:cf:49:28:6e:c9:
86:e6:3b:13:04:08:47:8e:a2:d1:83:04:d4:44:dc:2b:f8:26:
63:93:bf:d1:e1:81:21:0d:ef:02:10:e8:ee:0c:fc:40:31:78:
3c:61:76:ab:25:c6:07:fe:da:ef:91:a9:af:87:dd:c6:38:83:
b5:72:1c:c6:a2:6c:cb:0f:e8:13:c4:c7:5f:5d:72:ad:8a:25:
58:a9:c4:38:7d:86:8a:1a:8f:f2:89:81:2e:2d:e3:c1:a2:43:
2f:6e:e3:89:30:a9:8f:5b:8e:04:87:03:97:35:9e:48:05:66:
17:fe:fd:d7:20:b3:85:20:d3:72:02:30:e9:9a:55:1e:65:cb:
c2:f7:be:55:63:c3:dc:50:94:4a:cc:ef:61:dc:83:3d:d7:c9:
ae:eb:da:47:6a:a5:c4:3d:90:71:fc:d0:f7:76:73:90:81:c6:
37:40:72:a4:b1:dc:18:6d:8e:89:23:cf:87:71:d8:e1:e5:c0:
9a:ff:f8:31:6d:d6:db:4e:80:f1:e5:7e:d7:a0:ed:3b:07:56:
a5:83:1a:6c:db:18:d5:fd:0b:97:f4:03:28:d5:3e:eb:d1:c3:
62:54:34:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:02 2024 by rpki-client on console-fra.rpki-client.org