Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/yNNh4SyMhdHTAVml3iyYbD5kPoc.roa
File: yNNh4SyMhdHTAVml3iyYbD5kPoc.roa (raw, json)
Hash identifier: n+8HBN72Imlsgyv0QoSe8ht+IfJ+fVaA47Ooc8RJ9cc=
Subject key identifier: C8:D3:61:E1:2C:8C:85:D1:D3:01:59:A5:DE:2C:98:6C:3E:64:3E:87
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0186732347A92763FEEB5C130C82D1C8F2F3
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/yNNh4SyMhdHTAVml3iyYbD5kPoc.roa
Signing time: Tue 21 Feb 2023 08:42:17 +0000
ROA not before: Tue 21 Feb 2023 08:42:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 80.246.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 22:44:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:73:23:47:a9:27:63:fe:eb:5c:13:0c:82:d1:c8:f2:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Feb 21 08:42:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8d361e12c8c85d1d30159a5de2c986c3e643e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a0:cd:b6:9f:9b:88:39:4c:42:f9:38:db:a2:
8b:aa:64:df:0c:a9:04:5e:6e:6d:77:fb:a3:47:56:
3c:84:84:80:de:36:06:3d:1b:34:44:93:74:7a:75:
99:1c:db:72:b9:16:56:bc:27:9e:5e:da:3f:fd:2b:
14:8b:cc:27:e1:f5:36:29:d7:ef:18:92:a4:2b:56:
51:c8:69:8e:d7:2f:96:fe:fc:36:ae:6a:53:af:b3:
5a:42:aa:9e:6c:9e:2f:99:a4:36:ca:a4:85:6f:9f:
70:8f:9e:b8:22:a3:52:b6:c8:53:68:94:6f:fc:e5:
82:df:dd:91:b1:e6:de:b4:5e:27:da:a0:98:95:ea:
a1:52:91:06:79:96:6c:5f:f2:71:2d:18:a4:1d:4d:
7d:7e:51:3a:87:35:8a:ba:e9:f4:5f:7c:6e:91:59:
07:e1:9d:44:fa:a9:43:0d:93:90:b4:93:1e:39:2c:
66:33:63:e3:93:ac:73:fd:52:4d:64:29:ad:f1:a1:
57:a5:fe:67:6d:45:5c:03:29:0e:5f:e3:9e:8f:9a:
8c:92:b4:4f:81:c6:45:24:9b:b5:f5:5b:18:4a:0a:
ee:25:8a:10:9a:b0:97:ec:1d:ed:22:71:ad:d7:e8:
2c:4a:d7:da:73:49:c6:9d:8d:c5:4c:b2:1b:17:1a:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D3:61:E1:2C:8C:85:D1:D3:01:59:A5:DE:2C:98:6C:3E:64:3E:87
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/yNNh4SyMhdHTAVml3iyYbD5kPoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.225.0/24
Signature Algorithm: sha256WithRSAEncryption
21:6e:5e:f4:25:09:6b:5a:90:61:74:89:4d:9d:d5:b0:0f:61:
3e:4f:3d:ac:69:20:0a:fa:fc:c1:25:1e:49:30:e2:c5:4c:62:
d7:9d:58:4e:c3:5f:6f:f4:08:59:24:a0:3c:48:66:83:91:9e:
23:a5:9e:cb:98:7c:bb:11:19:e1:7a:75:ae:dd:88:f2:99:b2:
85:fa:55:54:06:f6:a2:51:0e:3b:88:4a:f9:d0:ba:b1:b9:7f:
f7:6a:93:4c:b1:e0:3c:fd:c7:dd:cf:a5:50:a0:2d:bd:f3:6e:
7f:b1:6a:d8:41:ee:45:0d:c5:ab:a4:39:ed:91:dc:0d:74:1e:
f8:56:42:ef:1c:bd:12:57:b8:74:56:a6:13:58:78:15:0c:dc:
07:b5:f5:71:64:6c:68:9f:2d:92:f5:fb:36:3e:96:a5:cc:0e:
41:3b:72:74:98:f0:73:69:c8:54:32:34:19:a0:f0:72:cc:08:
31:5c:14:11:1b:a7:e7:a6:da:b3:79:19:46:ee:25:69:a5:6d:
72:dd:c8:94:b3:2b:a5:1d:27:36:14:5f:cc:7a:da:82:14:af:
e4:bc:93:1c:89:96:f8:66:90:3d:22:1f:b2:78:14:45:3c:b5:
31:2e:6a:7d:90:07:d0:be:ec:28:71:ff:b5:cf:cd:cb:7b:c6:
41:a3:7e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org