Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yeEYyc1aAr3RCiGhx7LH64Uipos.roa
File: yeEYyc1aAr3RCiGhx7LH64Uipos.roa (raw, json)
Hash identifier: yx5QJRHf1GBUpUO7IlIIAD7RVlXqLzq5kCr2zURSfuA=
Subject key identifier: C9:E1:18:C9:CD:5A:02:BD:D1:0A:21:A1:C7:B2:C7:EB:85:22:A6:8B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0185A6F83C9002449D7B63880778C3D8D280
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yeEYyc1aAr3RCiGhx7LH64Uipos.roa
Signing time: Thu 12 Jan 2023 17:12:44 +0000
ROA not before: Thu 12 Jan 2023 17:12:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212411
IP address blocks: 45.84.217.0/24 maxlen: 24
194.34.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jul 2023 06:24:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:f8:3c:90:02:44:9d:7b:63:88:07:78:c3:d8:d2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 12 17:12:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9e118c9cd5a02bdd10a21a1c7b2c7eb8522a68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a9:e1:05:a2:b0:6e:e4:a5:0b:7d:7a:62:6a:
f9:1b:96:f0:43:41:25:03:58:ca:21:40:16:4b:c7:
f7:25:4b:63:07:56:de:9b:7b:a6:03:12:ea:82:b9:
c1:5c:70:47:f8:f2:54:cd:97:cb:0d:ad:bd:1c:46:
e9:cc:87:0d:ec:80:6b:73:e0:d7:06:f4:c5:47:91:
78:1f:6a:b0:43:10:47:00:e8:7a:e2:17:67:44:d4:
77:54:96:37:6d:0c:4c:74:91:fe:c8:75:8a:0f:06:
4d:ec:c3:17:ec:be:83:56:f7:90:37:88:83:e8:aa:
74:2b:e6:98:ce:b2:08:d0:79:1f:cf:29:2a:fb:f4:
c8:ba:df:29:9d:f4:89:fe:c3:7a:cd:1a:fe:4b:e9:
99:a1:3c:c1:8b:c4:c8:3e:8e:8f:af:22:36:1f:6d:
6a:bb:81:40:9f:a0:76:44:99:a7:75:27:00:a6:24:
0f:5b:c5:ef:13:5e:99:ec:04:80:06:de:61:02:88:
05:c9:b6:20:6f:a9:78:aa:2c:0a:1c:e5:ca:f5:e6:
cc:69:20:6e:7a:3e:08:a8:f8:0c:a0:e3:dc:2f:37:
fb:d7:a0:7f:74:08:75:7c:43:1c:56:b4:b1:e3:5f:
bc:4f:b3:08:7e:3b:d6:03:14:61:73:90:5e:be:da:
52:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E1:18:C9:CD:5A:02:BD:D1:0A:21:A1:C7:B2:C7:EB:85:22:A6:8B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yeEYyc1aAr3RCiGhx7LH64Uipos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.217.0/24
194.34.172.0/24
Signature Algorithm: sha256WithRSAEncryption
43:3b:95:b3:77:16:0a:2b:ef:4d:54:f2:0f:82:1b:dc:b9:e5:
c7:2d:f4:74:ac:cd:dc:0e:21:2a:ee:54:73:ee:9b:fd:ec:6f:
ab:b1:4c:77:77:0a:89:86:62:92:80:ec:6f:0f:b2:1e:48:df:
77:d3:7b:40:96:ef:05:f7:ab:33:d3:2a:72:27:f4:b7:58:eb:
b2:8d:2d:ad:27:e5:1d:ed:90:b5:df:59:82:1e:f5:a4:77:4a:
0f:9a:b0:75:8e:fc:e4:d3:7b:a7:5a:82:98:b0:33:66:2c:a5:
11:8f:19:fd:6e:13:76:3a:e0:c2:ea:ab:04:a8:14:35:69:d1:
c0:23:5f:fe:b3:d3:f3:ff:22:68:96:f6:6b:3b:37:e2:97:05:
55:26:e4:87:5d:a8:f7:64:bb:52:bb:37:a4:e2:1f:cf:77:9a:
a8:77:0d:b6:57:5c:a4:fd:ed:04:e2:e6:b5:a3:1a:c2:f2:99:
92:27:dc:9b:49:f1:04:5a:01:ee:d2:b8:ee:c2:e2:5f:40:c8:
9a:04:57:9f:45:a8:b8:90:90:de:e6:23:dd:b1:f3:7f:e5:4f:
0d:ea:c2:e0:8a:c9:ab:68:9c:dd:58:86:f0:62:92:ab:a4:e3:
bb:27:da:3e:94:bc:6b:9d:c6:f9:11:15:ba:9b:33:17:7b:44:
d4:11:f9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org