Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/yoYWKc8JWDbz6uGfnKtSDjqgWOM.roa
File: yoYWKc8JWDbz6uGfnKtSDjqgWOM.roa (raw, json)
Hash identifier: SVVeub6clEQWHWrA0n+bhPhKa6HnUrO0RJySJrd4+AU=
Subject key identifier: CA:86:16:29:CF:09:58:36:F3:EA:E1:9F:9C:AB:52:0E:3A:A0:58:E3
Certificate issuer: /CN=ccb75341500807a9750a8cf55bf4e45ff03f312a
Certificate serial: 01857283416A9DCFA757227F66515D0BB71C
Authority key identifier: CC:B7:53:41:50:08:07:A9:75:0A:8C:F5:5B:F4:E4:5F:F0:3F:31:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zLdTQVAIB6l1Coz1W_TkX_A_MSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/yoYWKc8JWDbz6uGfnKtSDjqgWOM.roa
Signing time: Mon 02 Jan 2023 12:44:42 +0000
ROA not before: Mon 02 Jan 2023 12:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 157.84.32.0/23 maxlen: 23
157.84.40.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:41:6a:9d:cf:a7:57:22:7f:66:51:5d:0b:b7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccb75341500807a9750a8cf55bf4e45ff03f312a
Validity
Not Before: Jan 2 12:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca861629cf095836f3eae19f9cab520e3aa058e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:15:9e:99:a1:e7:19:cd:ef:99:2e:71:fc:54:
4c:8e:d1:24:2c:d1:b3:a8:77:30:87:63:8f:71:ec:
a2:3e:f6:09:52:bf:58:6f:f2:b3:9d:bd:f0:f8:90:
91:53:5d:48:f2:60:6f:95:d2:82:10:c8:b8:b4:6c:
4a:ff:c6:93:ce:30:7f:ae:c8:56:8d:69:0b:85:91:
a5:44:f6:33:00:80:3b:68:ba:8a:5f:eb:e6:35:04:
02:4a:36:dc:ea:69:3f:37:a6:91:76:db:f3:a6:27:
87:b3:5d:b6:17:69:3c:50:33:91:ac:2d:ae:15:35:
40:7c:00:1e:60:3e:50:1b:43:0b:b0:eb:36:50:2f:
13:ac:23:e6:eb:75:69:42:73:13:8f:52:51:d7:56:
a5:46:9e:58:f1:a5:ac:74:f0:a0:90:af:6b:51:52:
2a:b9:82:99:4d:45:ae:45:54:62:a1:f6:53:9e:56:
1e:06:86:e3:97:4a:cf:f3:2f:21:28:26:1e:8f:07:
1c:46:bc:11:c4:c1:32:78:f4:a4:f1:fb:6e:ae:15:
cc:be:1a:06:40:72:f4:3c:c5:50:a2:58:36:26:4c:
44:cd:23:39:5a:4e:91:98:b1:03:7f:de:29:f9:7b:
93:d2:e2:f2:d1:b9:6f:31:b6:c9:d4:5c:a0:a3:b4:
9d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:86:16:29:CF:09:58:36:F3:EA:E1:9F:9C:AB:52:0E:3A:A0:58:E3
X509v3 Authority Key Identifier:
keyid:CC:B7:53:41:50:08:07:A9:75:0A:8C:F5:5B:F4:E4:5F:F0:3F:31:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zLdTQVAIB6l1Coz1W_TkX_A_MSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/yoYWKc8JWDbz6uGfnKtSDjqgWOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/zLdTQVAIB6l1Coz1W_TkX_A_MSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.84.32.0/23
157.84.40.0/23
Signature Algorithm: sha256WithRSAEncryption
12:27:e5:b5:d3:93:30:c6:0e:9c:86:de:6c:df:66:47:2a:7c:
4f:35:01:11:39:4e:64:63:96:16:36:cc:44:2c:a9:84:3b:1e:
94:96:08:71:6e:8c:aa:48:56:cf:c6:49:b3:83:47:46:03:9d:
a7:c0:79:b3:06:9d:6a:16:14:3d:4b:5d:58:63:a0:4a:77:58:
96:58:c9:5e:e5:65:e1:62:57:6f:b1:ef:d3:1a:f8:59:f2:4c:
a0:12:2a:ab:70:c9:6f:7f:92:93:18:68:3d:72:4d:b9:1e:76:
20:b3:27:6b:7b:00:70:80:28:dc:b0:27:ee:e7:62:41:b9:38:
e9:4b:56:e5:58:84:eb:81:52:75:31:aa:8b:44:69:4f:9c:28:
6e:ef:c0:ce:e4:b5:a9:01:ad:6b:8d:db:d7:4a:8b:68:c2:91:
d4:86:44:a6:2c:ec:8c:54:20:16:17:17:e1:c9:fe:11:55:bc:
30:99:3e:15:06:6c:b3:df:3e:5e:e1:bb:7a:63:fd:c0:be:53:
65:10:e7:70:81:f7:43:f6:3f:58:af:8d:08:8f:5c:23:ce:bd:
70:c8:e2:b4:23:3b:21:10:d0:f9:a5:54:8c:cc:eb:63:27:ed:
76:44:93:e0:67:0a:51:7a:01:97:91:f6:98:ea:4c:a7:d5:c2:
65:bb:66:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:43 2024 by rpki-client on console-ams.rpki-client.org