Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/6e9c07-33ed-4ee4-83ec-95d95ace8281/1/YymK0rwJgv58Yw204JV0admDdhw.roa
File: YymK0rwJgv58Yw204JV0admDdhw.roa (raw, json)
Hash identifier: mj6jWWOknvITUKOzCgo6h5O4VHnpnEW3+iEvD0a9W2A=
Subject key identifier: 63:29:8A:D2:BC:09:82:FE:7C:63:0D:B4:E0:95:74:69:D9:83:76:1C
Certificate issuer: /CN=66d0580e1725f45de106b97f77d9cd76bc4df806
Certificate serial: 0188BAB9908C268BC46FBD5BC1CFA5C4CBE9
Authority key identifier: 66:D0:58:0E:17:25:F4:5D:E1:06:B9:7F:77:D9:CD:76:BC:4D:F8:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtBYDhcl9F3hBrl_d9nNdrxN-AY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/6e9c07-33ed-4ee4-83ec-95d95ace8281/1/YymK0rwJgv58Yw204JV0admDdhw.roa
Signing time: Wed 14 Jun 2023 16:25:03 +0000
ROA not before: Wed 14 Jun 2023 16:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200435
IP address blocks: 185.63.172.0/22 maxlen: 24
185.63.172.0/24 maxlen: 24
185.63.175.0/24 maxlen: 24
185.63.173.0/24 maxlen: 24
185.63.174.0/24 maxlen: 24
2a04:f600::/29 maxlen: 29
2a04:f600:4455::/48 maxlen: 48
2a04:f600:4454:48::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 14 Jun 2023 16:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ba:b9:90:8c:26:8b:c4:6f:bd:5b:c1:cf:a5:c4:cb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d0580e1725f45de106b97f77d9cd76bc4df806
Validity
Not Before: Jun 14 16:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63298ad2bc0982fe7c630db4e0957469d983761c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f5:19:50:ab:11:89:92:5e:5f:19:d7:d1:ea:
01:83:4b:ea:65:0d:bc:7a:f6:2e:0c:53:95:a5:ad:
cd:1f:33:2d:ea:18:2d:bb:9e:78:a3:3c:e6:7f:ec:
fc:2c:b9:b5:97:7e:74:95:7d:26:83:c2:47:a6:ec:
0b:42:b8:c8:a0:4f:5e:32:7e:2d:f7:31:2d:7f:e7:
1b:ac:9f:ac:49:7b:9c:27:13:5f:35:2e:bb:0c:47:
f1:4c:c9:22:be:1b:9f:07:e0:56:b2:c0:e8:d2:47:
ae:0d:3c:33:47:d5:4a:9d:ec:39:3c:c1:5a:2f:c7:
5e:06:5a:fb:85:02:0a:c1:06:c8:c2:a6:9d:9e:c1:
0d:06:84:66:0e:52:44:70:6f:17:48:02:50:95:e4:
e8:c4:f2:bf:ae:26:cd:8c:e7:1c:13:53:b8:07:22:
d5:6c:45:ae:88:22:17:f7:b1:d4:12:93:e1:11:03:
b4:bd:a2:62:18:12:56:38:2d:1f:54:7b:99:c9:de:
46:39:12:37:88:50:22:d5:4b:9d:9a:49:a5:f7:5d:
70:ff:5d:f2:c2:13:2e:4b:26:6e:e9:fa:b8:5c:92:
39:64:72:dc:a1:bf:6a:1d:88:a3:6f:85:1f:02:b6:
c1:a4:df:3f:ff:bd:00:73:46:43:e4:64:2c:97:84:
6b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:29:8A:D2:BC:09:82:FE:7C:63:0D:B4:E0:95:74:69:D9:83:76:1C
X509v3 Authority Key Identifier:
keyid:66:D0:58:0E:17:25:F4:5D:E1:06:B9:7F:77:D9:CD:76:BC:4D:F8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtBYDhcl9F3hBrl_d9nNdrxN-AY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/6e9c07-33ed-4ee4-83ec-95d95ace8281/1/YymK0rwJgv58Yw204JV0admDdhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/6e9c07-33ed-4ee4-83ec-95d95ace8281/1/ZtBYDhcl9F3hBrl_d9nNdrxN-AY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.172.0/22
IPv6:
2a04:f600::/29
Signature Algorithm: sha256WithRSAEncryption
33:f5:9e:f7:ee:b8:65:26:28:e0:a9:f0:04:ca:7e:78:b6:32:
4e:25:54:3c:5e:51:dc:34:11:30:74:7a:de:ca:fe:7c:aa:4f:
5b:d6:3b:a4:6c:f7:27:b9:25:27:94:07:cb:58:23:db:6e:7a:
b5:99:05:0f:6d:93:36:08:f7:0b:25:96:18:61:ca:7a:90:36:
1e:ab:1a:a4:38:1c:0b:0c:74:f5:8a:e8:c7:76:7b:99:21:4b:
36:3c:fa:b3:06:ee:d2:03:9c:03:80:5f:5d:3f:df:93:05:92:
e8:25:f6:d1:0d:ad:a9:9f:85:c9:3e:69:0e:8d:9b:b1:22:3d:
d9:8e:4b:9e:4b:61:28:97:08:4a:79:76:05:95:48:c6:1a:78:
16:f0:90:c1:e1:94:e1:f0:d2:35:51:6e:4c:b6:a9:4e:28:ca:
ec:fd:d6:48:30:b0:40:79:6a:68:31:8a:46:81:77:9a:17:67:
dc:bc:51:a5:c7:30:15:f6:72:ae:08:5e:77:5f:6f:6a:26:14:
78:d4:fa:b0:db:01:cb:f1:5c:7b:6c:13:e4:60:3a:08:66:81:
a1:46:3d:8e:2e:fe:8b:3a:6d:40:ab:99:1e:9b:e1:85:3f:2d:
8c:2e:60:45:8d:fb:2c:99:25:6b:b8:37:d8:1d:96:7b:63:fe:
ec:c1:73:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:21 2024 by rpki-client on console-ams.rpki-client.org