Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/YgGPMbGnZo90Je4XQy6C39e5CKg.roa
File: YgGPMbGnZo90Je4XQy6C39e5CKg.roa (raw, json)
Hash identifier: f+cINmjlE//HsnKs+D+AlCXk5E0PvAUUqBxW7yN1fmw=
Subject key identifier: 62:01:8F:31:B1:A7:66:8F:74:25:EE:17:43:2E:82:DF:D7:B9:08:A8
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 01856FF046159F1171EC430CEB533BE9C055
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/YgGPMbGnZo90Je4XQy6C39e5CKg.roa
Signing time: Mon 02 Jan 2023 00:44:55 +0000
ROA not before: Mon 02 Jan 2023 00:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203977
IP address blocks: 185.146.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:46:15:9f:11:71:ec:43:0c:eb:53:3b:e9:c0:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Jan 2 00:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62018f31b1a7668f7425ee17432e82dfd7b908a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6e:2d:57:09:f2:dc:fd:23:1d:e2:c7:bb:c7:
03:aa:4a:6f:db:53:4b:38:c2:a9:ff:41:18:8a:a8:
65:73:01:5a:56:31:21:88:19:d1:3c:be:e0:a5:7a:
5b:f8:9f:df:74:03:5f:e5:c1:70:ff:d7:67:97:43:
bc:46:89:dd:5a:7b:41:5f:3b:f0:ac:03:f8:5d:64:
bd:81:c7:ec:b2:75:c6:bf:dd:ab:86:f3:94:7a:80:
0f:8d:73:40:1c:ee:8a:8a:80:2c:ac:ad:7f:8a:8e:
a4:75:3a:ce:6c:90:d0:c8:77:a0:a2:83:20:25:d0:
52:48:a1:94:88:17:fe:b2:20:c5:3b:61:06:14:c0:
27:cc:68:59:db:48:db:44:bc:d1:d2:c8:ed:d4:b6:
e3:af:b5:23:51:23:e5:ff:36:a6:5d:6c:c1:bf:3e:
5f:82:5a:a3:70:fa:4c:e9:59:30:32:11:e7:65:76:
e6:4e:3e:f2:2d:cb:be:3c:1c:53:6a:92:66:66:71:
81:42:9c:76:16:c5:dc:c6:5f:56:3b:7f:8a:c9:33:
c0:b7:5a:35:60:7a:09:91:84:10:7b:5b:47:2f:53:
f4:b5:d1:2b:05:78:2d:df:5d:18:6e:04:54:d0:61:
94:62:69:a7:9a:c0:41:0a:0c:ff:01:4b:d5:9e:e9:
17:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:01:8F:31:B1:A7:66:8F:74:25:EE:17:43:2E:82:DF:D7:B9:08:A8
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/YgGPMbGnZo90Je4XQy6C39e5CKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.226.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e5:6c:79:e1:ac:89:03:c1:41:d3:88:8e:7e:d4:11:ed:64:
fc:8a:01:be:6e:f8:c0:ef:f2:31:cb:ac:af:5f:77:b1:05:40:
82:ce:22:be:90:ed:62:14:09:ae:7a:36:f1:63:1d:d4:01:83:
7f:db:b8:8e:7e:55:6c:fd:60:6d:9a:b4:03:5e:f5:f8:ed:07:
7f:df:7b:5b:21:b5:b1:ce:c0:a7:e3:b1:cf:fb:06:67:fb:ba:
4a:83:d0:52:04:1b:a8:f0:24:a9:cd:4a:51:de:25:bd:96:ce:
1d:57:34:9a:09:92:16:05:5d:8d:6f:6d:39:77:1f:eb:5c:b9:
33:6e:b9:2b:0c:97:53:66:73:8f:34:87:2f:cc:9e:1f:d0:82:
dc:c2:07:f0:57:5a:ac:a1:9d:b8:a7:3b:aa:06:c8:f2:2f:99:
86:0f:86:01:c7:ff:5c:f8:11:d4:dc:62:17:01:0c:57:4c:9b:
f1:23:a4:27:eb:57:7b:a6:12:01:a7:71:ee:c5:12:e5:9f:1b:
b4:0c:75:ab:91:f6:0f:79:6f:6e:bc:73:05:8f:3d:3d:ca:26:
f1:a3:49:7c:a2:1e:89:72:ab:2b:b3:41:0c:d7:74:65:50:44:
a9:75:17:5f:33:81:11:6f:90:3a:b6:f9:52:c2:4b:2f:4c:08:
6c:52:1f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:07 2024 by rpki-client on console-ams.rpki-client.org