Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/YuHiDEHBaMkMwLnKBBaq1LsoDBY.roa
File: YuHiDEHBaMkMwLnKBBaq1LsoDBY.roa (raw, json)
Hash identifier: LvO41tqYTTiXahnigABAi6HWvM5zBc6Rx+UMp+4ANk0=
Subject key identifier: 62:E1:E2:0C:41:C1:68:C9:0C:C0:B9:CA:04:16:AA:D4:BB:28:0C:16
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018B5649C2EA892F570F00EFC48E11E317AC
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/YuHiDEHBaMkMwLnKBBaq1LsoDBY.roa
Signing time: Sun 22 Oct 2023 07:29:16 +0000
ROA not before: Sun 22 Oct 2023 07:29:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.42.82.0/23 maxlen: 23
89.42.83.0/24 maxlen: 24
89.42.84.0/24 maxlen: 24
89.42.80.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 23 Oct 2023 06:07:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:56:49:c2:ea:89:2f:57:0f:00:ef:c4:8e:11:e3:17:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Oct 22 07:29:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e1e20c41c168c90cc0b9ca0416aad4bb280c16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:54:2d:41:51:51:8b:55:6f:1c:0e:dc:a7:02:
8b:c5:27:98:32:e3:a6:e0:fa:aa:64:8a:cd:7c:de:
6c:2f:be:b0:0d:ad:39:f1:cd:6b:8b:75:7e:86:52:
c0:43:04:d9:63:8a:67:be:86:cb:d6:5c:2f:ab:b6:
0a:c3:59:cf:45:ee:f5:68:da:aa:1d:29:6a:9b:24:
76:94:ff:f1:a1:47:fd:44:df:7a:10:9f:0e:89:13:
31:ff:c0:65:61:7c:0b:a0:eb:f3:a4:09:e1:3f:f5:
f3:a0:72:d6:97:ea:92:10:59:23:4a:9b:f9:e3:31:
83:eb:8c:ff:d0:07:9e:4a:32:3f:36:18:96:c2:cd:
3e:fa:00:1d:21:5b:4e:86:cd:23:e4:2e:b0:3a:98:
11:4b:f6:5d:51:22:0d:c3:c8:24:38:67:a4:86:58:
2f:12:07:27:e3:b0:f3:3c:1c:d1:fd:78:2a:b4:a0:
83:ab:d8:27:18:64:b6:bf:c3:da:7f:43:33:db:21:
62:d4:c0:d6:27:b6:00:02:af:27:b7:48:36:8c:3d:
3e:57:4c:ed:1b:cc:31:79:f5:f0:d1:d4:85:bf:86:
23:6b:da:24:80:aa:af:64:ab:45:b6:c0:83:df:26:
63:ee:82:03:c8:8c:b8:dc:ae:43:40:70:fd:04:a2:
d6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E1:E2:0C:41:C1:68:C9:0C:C0:B9:CA:04:16:AA:D4:BB:28:0C:16
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/YuHiDEHBaMkMwLnKBBaq1LsoDBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.80.0-89.42.84.255
Signature Algorithm: sha256WithRSAEncryption
3e:cd:da:6e:e0:c4:ea:ec:54:b1:da:29:9b:a6:65:79:2b:45:
cb:84:7e:0b:3c:07:9d:86:3f:90:ee:e1:52:ad:4c:a4:5d:6a:
1b:51:c5:c4:64:82:6e:ef:5d:e6:0a:af:2c:d2:18:29:55:86:
c7:15:49:2c:d3:83:43:3a:1b:21:ca:d0:22:3d:6c:d3:df:b6:
5c:ce:2f:b7:0a:17:96:59:fe:4c:1f:76:43:ac:e7:e1:d1:10:
b2:1a:ad:f2:a9:d4:cb:81:34:1b:e8:d8:fc:11:c3:cb:cc:6c:
49:f5:6d:2b:ca:4f:ee:10:ad:7c:6d:0d:ce:79:98:17:30:26:
e2:a8:19:60:8a:5e:95:15:6c:e2:11:ca:51:12:af:11:ce:39:
5b:39:50:f7:2e:70:3f:4c:14:a0:b0:6c:d6:98:a2:c6:e3:ac:
68:c1:38:78:f4:17:76:e4:ed:e2:c5:f6:d9:6b:06:e2:18:7c:
25:a8:c5:c7:41:79:1f:db:e1:72:9e:ef:e7:c4:2c:06:66:15:
04:96:f2:c1:d9:da:a4:a3:c1:d0:1b:52:7d:f3:2d:89:e1:e3:
2d:8e:96:1d:14:c5:e8:0f:07:6a:d1:39:f1:b6:c0:6d:65:08:
5e:6b:6d:66:9a:02:49:c3:47:20:de:4e:45:f4:63:04:a1:2c:
da:f0:da:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org