Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/YaI4BYJp2MJTjAevzTmeYa7za-8.roa
File: YaI4BYJp2MJTjAevzTmeYa7za-8.roa (raw, json)
Hash identifier: JA//J2JgL8va62CJrQ/fx2src74ZF2Q8oqiXdrkDIwA=
Subject key identifier: 61:A2:38:05:82:69:D8:C2:53:8C:07:AF:CD:39:9E:61:AE:F3:6B:EF
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 018C3F3D0D2B1337F78FFCB504B8BB7ED100
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/YaI4BYJp2MJTjAevzTmeYa7za-8.roa
Signing time: Wed 06 Dec 2023 13:06:54 +0000
ROA not before: Wed 06 Dec 2023 13:06:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 185.164.64.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:3d:0d:2b:13:37:f7:8f:fc:b5:04:b8:bb:7e:d1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Dec 6 13:06:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61a238058269d8c2538c07afcd399e61aef36bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:c7:2f:9f:e3:e7:d2:b4:2e:a6:5e:38:0f:
cb:62:64:81:07:f9:da:a1:85:52:da:2f:49:48:04:
ee:ba:fa:b2:d6:f2:01:10:e8:af:6b:0e:81:10:25:
a3:d9:94:fd:f2:7a:08:0d:1b:9f:8c:15:b0:f6:46:
41:5e:0d:ee:54:13:83:b7:73:f5:8f:9e:34:14:6a:
83:79:6e:b2:88:90:74:9e:e3:35:fa:e8:b3:04:53:
17:0e:40:a4:c6:56:1f:40:1c:77:d6:07:ff:d8:2d:
6e:1a:c6:29:38:ab:48:71:d0:bf:31:9b:9e:23:8a:
fd:70:0d:20:1a:69:79:43:e5:27:35:29:71:9f:e6:
1f:a4:66:7a:c4:4b:c8:8c:26:34:53:45:c9:45:7c:
30:f7:9a:d7:1e:8d:6a:19:5d:af:f9:99:1f:7f:aa:
ac:7a:8f:2c:28:66:c0:7c:68:96:7f:a6:a4:97:1d:
6a:10:d7:f1:64:8e:52:b0:ad:94:75:2f:48:f5:08:
83:8c:71:9a:9e:67:d9:6c:ef:dc:da:b1:f0:a8:8f:
d7:cb:77:83:26:eb:c7:d9:71:6f:3c:96:25:85:5b:
6a:a9:74:24:9a:69:76:1a:33:96:07:a5:71:f7:ea:
21:1f:b3:fa:8f:3a:12:63:b4:04:09:6f:fb:9f:70:
ef:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A2:38:05:82:69:D8:C2:53:8C:07:AF:CD:39:9E:61:AE:F3:6B:EF
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/YaI4BYJp2MJTjAevzTmeYa7za-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.64.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:b8:d4:c2:72:f7:34:d4:9f:37:d5:7b:4d:c5:7f:95:3a:b3:
5c:1b:bc:8c:87:85:32:ee:82:54:bb:8b:f9:9d:9b:ad:43:de:
f0:c5:5b:57:31:08:3c:ef:d1:f5:28:61:f5:6e:07:b0:71:c5:
57:c1:a8:36:d8:7a:96:06:46:49:3a:99:7f:4c:c7:bc:46:22:
00:16:59:56:de:c8:91:d5:a1:26:51:f9:74:93:f0:c8:c2:7f:
b4:c8:91:20:c0:fb:b6:34:f7:33:88:74:c3:f2:ef:83:52:ce:
6a:5a:01:f4:d2:e5:9a:7c:38:27:44:b4:1e:c0:ab:07:44:05:
71:80:96:91:7f:17:2a:6e:09:df:ae:c8:0d:c0:9d:9e:e8:88:
1e:a8:a0:12:94:9c:3d:cb:ea:ad:3e:60:2a:7f:3a:ad:63:ab:
aa:ae:ef:05:f8:fd:78:7f:5c:9f:5c:07:c1:a4:fe:c8:2e:62:
5f:dc:89:e6:3f:1d:40:8c:dd:7f:53:d1:5a:6e:94:c4:6b:f0:
f2:bd:d0:17:1c:f3:90:95:a7:2f:4d:3d:4b:43:31:d1:cd:f2:
9a:c4:72:ad:d7:f5:09:55:4c:3c:a2:ee:1a:b8:dc:d1:67:01:
8e:05:8f:ac:65:da:4a:4e:6b:15:96:73:b4:4f:e8:bd:17:c0:
c5:64:d1:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:08 2024 by rpki-client on console-ams.rpki-client.org