Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Y81VY9hN8sCxyHUjLPK6TPzSkco.roa
File: Y81VY9hN8sCxyHUjLPK6TPzSkco.roa (raw, json)
Hash identifier: BUKBeG5hV3VeTdyUgHqR8RwYHqqpsZAAFZpyDry2IT8=
Subject key identifier: 63:CD:55:63:D8:4D:F2:C0:B1:C8:75:23:2C:F2:BA:4C:FC:D2:91:CA
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DCE6DC29CD647C6B65B5065002144
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Y81VY9hN8sCxyHUjLPK6TPzSkco.roa
Signing time: Sun 01 Jan 2023 22:04:56 +0000
ROA not before: Sun 01 Jan 2023 22:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199437
IP address blocks: 188.21.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:ce:6d:c2:9c:d6:47:c6:b6:5b:50:65:00:21:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63cd5563d84df2c0b1c875232cf2ba4cfcd291ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d6:33:c3:e7:73:53:d9:6f:6b:b9:15:96:5d:
ad:d5:ea:35:28:24:90:8e:c5:5c:e5:98:a9:1b:ae:
82:61:eb:47:7d:5b:b8:74:fd:da:0b:14:d5:08:c9:
1f:fd:1f:8f:64:8a:fe:9b:bc:fc:1b:93:53:31:44:
7a:7a:fc:e9:b1:39:60:ab:5e:36:79:39:39:69:01:
67:0d:30:bc:2a:97:4e:ff:93:1e:fb:43:60:03:43:
b1:85:4e:6c:77:8a:6b:85:f9:45:dd:6f:6f:bf:f2:
d1:62:83:ff:fe:ae:ad:bd:8e:48:05:71:6e:9b:a1:
b0:32:57:1e:3a:e3:1b:c0:2b:cf:d2:c1:48:c7:89:
43:c0:9e:07:22:ca:1a:87:95:ee:ba:35:03:ca:04:
52:2f:5c:07:e0:94:c4:b6:de:b5:6a:11:d5:da:13:
20:df:10:4e:14:08:9d:05:c4:7b:27:99:17:76:42:
6d:31:f9:c5:81:9d:c9:92:e1:4c:5a:26:93:e2:e4:
e4:58:d5:e0:3c:fc:fb:60:96:e8:fb:ae:74:5a:c6:
f7:79:b6:4c:fb:82:9f:49:f4:f3:ed:50:2b:0c:6a:
99:5a:a0:19:fb:94:37:0e:86:da:d1:d2:34:a7:f6:
cd:5f:ca:a9:b3:cd:60:f7:4f:88:91:2b:03:e6:bd:
c8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CD:55:63:D8:4D:F2:C0:B1:C8:75:23:2C:F2:BA:4C:FC:D2:91:CA
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Y81VY9hN8sCxyHUjLPK6TPzSkco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.21.6.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:e9:b0:da:1f:5f:03:28:d9:60:a5:d3:c8:f4:e0:ac:21:e0:
7a:44:f0:52:2e:92:eb:08:06:7d:8a:22:2f:21:17:9f:22:03:
66:2d:0e:a5:a1:e8:a6:a5:56:b1:ae:79:10:62:a3:7e:1b:a0:
25:04:f8:b5:1d:f7:de:d0:19:3c:ce:c4:24:b3:1a:04:81:e8:
25:9a:86:18:b4:9a:4b:43:50:b9:75:03:41:fb:24:7c:0d:7b:
97:20:55:35:45:11:79:1e:44:77:b5:a0:0b:8d:82:a8:db:77:
88:38:d9:9e:5a:c6:4d:93:21:3c:2b:f3:54:19:c8:7b:b4:fc:
88:4f:3e:14:8d:99:8e:7f:07:7f:72:ab:7c:59:f3:07:ce:6f:
44:3d:16:7a:bf:d4:b2:c1:bb:9f:32:22:16:90:df:b1:11:8a:
ac:37:10:aa:74:4c:2a:e7:5d:c4:45:bd:f6:22:f5:d6:0e:77:
ae:c0:6e:2c:fd:2b:26:f4:4f:ad:06:6e:d9:5e:39:89:6f:f0:
bf:29:f1:27:5f:02:1e:22:bf:61:ab:4a:a6:25:f9:f0:92:eb:
58:c5:02:da:c3:50:d0:b4:d0:ec:03:24:6d:dc:98:bc:ac:e2:
ba:e3:45:0c:67:66:1e:e5:84:06:10:8a:e0:97:5c:ed:b9:86:
9e:25:f0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org