Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Yem9KYt3lEAX3__ghEFLCUOFzuM.roa
File: Yem9KYt3lEAX3__ghEFLCUOFzuM.roa (raw, json)
Hash identifier: +QqGSt5eoxwg2Cvlo8XG8aQ7BHmwOc+rh4k+AxvxO5o=
Subject key identifier: 61:E9:BD:29:8B:77:94:40:17:DF:FF:E0:84:41:4B:09:43:85:CE:E3
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01898B69B24CD123EB669B1F01A82A5D4BA5
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Yem9KYt3lEAX3__ghEFLCUOFzuM.roa
Signing time: Tue 25 Jul 2023 04:58:27 +0000
ROA not before: Tue 25 Jul 2023 04:58:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202422
IP address blocks: 45.130.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8b:69:b2:4c:d1:23:eb:66:9b:1f:01:a8:2a:5d:4b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 25 04:58:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61e9bd298b77944017dfffe084414b094385cee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e4:a4:ad:be:db:94:d8:a9:e3:48:d8:e7:88:
83:9a:9a:1a:fc:c9:9d:4c:f3:58:24:03:8a:9c:a1:
1f:90:10:8a:b9:cb:9a:04:90:74:af:66:57:24:45:
41:82:4c:fb:77:79:26:9a:1d:88:e8:c2:1a:3b:31:
01:45:b6:e5:03:92:81:a6:52:da:3c:72:ea:b8:bf:
a5:b5:76:75:ab:fb:77:c6:42:f7:9a:05:86:64:0c:
c5:5c:55:48:c1:1c:5d:4f:59:c7:41:e5:86:1b:62:
ea:fc:97:91:4d:08:42:6e:af:77:01:1f:de:e1:b1:
e5:f6:80:48:fe:85:a6:09:5e:ac:61:68:63:52:90:
f5:a5:7a:ba:67:1f:d6:1a:b0:e9:74:db:43:2f:f2:
23:ad:76:9d:ce:13:04:a0:0e:ae:a8:36:6b:64:5d:
92:bd:d9:99:07:ca:ae:b2:32:8d:9e:fa:71:db:7b:
b0:b1:ce:c8:dd:91:17:03:6f:0d:13:84:00:cd:69:
ee:ab:f3:71:e8:e5:da:07:c3:1f:ec:f9:1f:f9:5e:
c4:02:09:88:1d:fc:03:dc:4f:5e:f6:11:e6:44:cb:
96:71:4e:3d:f9:94:e8:f3:d5:5d:c8:9c:45:29:e6:
b6:01:96:cb:7a:0c:c9:06:b6:56:4c:5d:76:61:24:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E9:BD:29:8B:77:94:40:17:DF:FF:E0:84:41:4B:09:43:85:CE:E3
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Yem9KYt3lEAX3__ghEFLCUOFzuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.139.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:1e:02:31:b2:3c:d9:5d:a3:7e:b0:81:c8:b3:56:e5:7d:88:
d2:0f:07:2c:f4:f7:9a:4b:a9:d0:c2:e4:f2:5b:ef:5e:90:48:
f9:69:18:03:12:f6:c2:ea:be:c9:12:bc:bc:6f:48:98:d3:fa:
20:81:60:b1:27:e9:05:92:03:dc:87:98:ca:b7:0a:53:47:d6:
7d:1f:a2:38:38:96:90:21:7f:6e:06:a5:2e:19:dd:7f:c0:fb:
c9:e6:90:4c:78:0e:64:31:05:7c:e1:04:f4:29:c8:29:8d:13:
f0:97:61:68:d5:4c:94:19:75:67:6f:42:5a:9f:a8:fd:34:94:
f6:b0:09:82:c6:6c:53:cb:a4:d3:7d:8a:bb:1f:07:5c:b6:9e:
12:e8:81:28:16:f2:1e:95:c6:bd:86:8d:f1:97:27:8a:e1:03:
5b:f4:eb:22:e3:4a:82:ca:47:28:41:78:d2:7c:2a:4b:75:ab:
91:8f:83:ec:de:e5:d9:34:a2:f9:6a:d0:95:6a:c4:76:56:46:
d2:1b:52:c9:7f:f4:10:0a:bc:81:88:6f:e8:24:b4:d2:34:7e:
87:c9:1c:0c:14:04:a0:d4:be:54:9f:7b:49:b7:38:85:b9:7a:
3f:d4:82:45:22:97:70:e3:ed:6d:44:6b:3c:52:e5:55:bf:57:
4f:2c:0b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org