Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/Yp5wo8lWdpGthhp9ci0U2eKeRVE.roa
File: Yp5wo8lWdpGthhp9ci0U2eKeRVE.roa (raw, json)
Hash identifier: tbR7UVED4tQH4x9vDWWWU3J5ynq5rEZG2hNQijbO5qA=
Subject key identifier: 62:9E:70:A3:C9:56:76:91:AD:86:1A:7D:72:2D:14:D9:E2:9E:45:51
Certificate issuer: /CN=af734108705a95796e8577125dd300c751dfd9a8
Certificate serial: 0188CD96FCF01FBC4B7B1698E222D48A6D39
Authority key identifier: AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/Yp5wo8lWdpGthhp9ci0U2eKeRVE.roa
Signing time: Sun 18 Jun 2023 08:20:04 +0000
ROA not before: Sun 18 Jun 2023 08:20:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3177
IP address blocks: 195.28.11.0/24 maxlen: 24
103.215.223.0/24 maxlen: 24
103.215.221.0/24 maxlen: 24
103.215.222.0/24 maxlen: 24
103.215.220.0/24 maxlen: 24
195.238.231.0/24 maxlen: 24
2a05:63c0::/29 maxlen: 29
2a0f:c040::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 19 Jun 2023 16:14:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:cd:96:fc:f0:1f:bc:4b:7b:16:98:e2:22:d4:8a:6d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af734108705a95796e8577125dd300c751dfd9a8
Validity
Not Before: Jun 18 08:20:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=629e70a3c9567691ad861a7d722d14d9e29e4551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:87:46:44:41:68:37:3c:66:c7:84:56:81:e2:
89:67:9f:bd:9e:00:05:af:a2:50:50:2b:0a:9c:96:
63:bf:44:3b:22:1e:fa:ff:fe:3d:36:c2:8f:9d:45:
9e:65:66:84:2c:45:d3:61:3e:dd:73:4d:fc:c0:5f:
78:a7:89:1d:f7:72:e8:f7:73:75:04:b6:44:50:d9:
6c:b3:04:a1:08:5b:4a:70:6b:51:69:fc:8b:6a:f0:
3b:7e:61:4e:bf:f7:46:19:a2:b9:79:2d:c7:99:c8:
d9:a3:24:15:ce:d4:0f:df:23:98:7d:57:87:4a:2f:
c7:a9:a3:b9:be:6d:c7:0d:a2:0f:d7:e6:94:c1:c5:
3d:30:9f:43:39:39:45:7a:28:8c:69:a7:43:4b:94:
20:f1:01:8a:c5:3b:5b:b8:7b:11:66:ff:d7:a2:3c:
c4:3e:3e:bd:4e:4a:a9:bf:a6:88:af:ce:d0:9c:6c:
68:8b:dd:2a:55:35:a1:25:4d:84:95:c3:c0:cb:05:
c7:ff:62:ea:5b:34:78:17:6b:15:24:a2:0c:18:21:
6b:2f:5b:63:da:95:4b:be:60:0b:80:53:64:3b:6d:
81:2d:93:c3:be:f7:0a:cb:c5:9c:76:2e:7e:96:dd:
6f:6d:f2:23:cf:c7:ac:49:12:5c:51:6c:78:55:f8:
b1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9E:70:A3:C9:56:76:91:AD:86:1A:7D:72:2D:14:D9:E2:9E:45:51
X509v3 Authority Key Identifier:
keyid:AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/Yp5wo8lWdpGthhp9ci0U2eKeRVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/r3NBCHBalXluhXcSXdMAx1Hf2ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.215.220.0/22
195.28.11.0/24
195.238.231.0/24
IPv6:
2a05:63c0::/29
2a0f:c040::/29
Signature Algorithm: sha256WithRSAEncryption
1f:f4:22:ea:98:e2:a0:7f:e3:00:f2:07:0e:b7:29:40:f7:e6:
0a:43:fb:2f:ed:4f:90:b7:f2:6f:63:09:93:5a:a6:97:61:13:
2e:da:07:12:b0:e3:12:a8:3d:28:b3:6e:ee:99:c2:a9:75:f0:
69:53:84:2d:45:94:7d:7e:e6:29:dd:76:2c:de:e1:8f:a1:de:
0c:73:13:13:51:a2:0b:f7:00:18:c1:f0:e1:38:9e:52:91:f9:
e6:89:75:3b:c1:c0:ac:fa:49:5f:b6:ee:9f:8e:ac:0c:ae:28:
9d:58:68:09:41:0e:e2:82:02:80:e2:58:4c:a7:69:e8:95:aa:
87:0d:69:1a:5f:f1:bf:44:81:f6:13:7d:db:bc:ee:97:0a:43:
a0:89:b6:fe:4c:08:79:28:10:01:d4:00:ac:ec:36:a7:72:85:
55:89:e4:aa:75:7d:9a:73:ff:c1:81:39:83:ff:aa:c7:07:6a:
dc:43:3b:d6:84:6f:f9:61:b0:53:79:b7:e3:e4:04:a1:22:cb:
32:e4:71:a1:87:04:6f:9c:49:d6:4d:e2:67:c0:07:b5:d9:8d:
db:c3:08:f9:df:ae:ff:25:4e:01:4f:e1:4d:c8:13:c1:e6:98:
c8:d5:ca:2f:b0:81:9a:14:ef:e7:8a:b6:50:71:2b:71:f7:99:
0b:06:e1:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:26 2024 by rpki-client on console-ams.rpki-client.org