Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/YA_mpvM2PkKm-EwbVfNfsSN9Xz8.roa
File: YA_mpvM2PkKm-EwbVfNfsSN9Xz8.roa (raw, json)
Hash identifier: lFF8iH7KeRYXO2axW0iJvrv+Fk84dqjODMIHuwjob+c=
Subject key identifier: 60:0F:E6:A6:F3:36:3E:42:A6:F8:4C:1B:55:F3:5F:B1:23:7D:5F:3F
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 019373A05F0E691C90232FCB9B58B71A4244
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/YA_mpvM2PkKm-EwbVfNfsSN9Xz8.roa
Signing time: Thu 28 Nov 2024 16:35:10 +0000
ROA not before: Thu 28 Nov 2024 16:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213833
IP address blocks: 213.16.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:73:a0:5f:0e:69:1c:90:23:2f:cb:9b:58:b7:1a:42:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Nov 28 16:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=600fe6a6f3363e42a6f84c1b55f35fb1237d5f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:8f:29:f8:b5:94:e3:b7:f5:01:41:ea:48:
b9:6d:66:55:42:1c:70:5d:e8:89:6c:29:eb:d2:2f:
77:79:c5:50:59:85:5b:91:67:db:14:d2:47:89:be:
10:d0:ec:21:ce:b1:48:9e:55:1d:71:2f:96:18:02:
a5:42:53:28:fc:22:15:3f:f8:d6:7a:e2:d3:0f:49:
08:41:07:c9:24:11:11:e1:ae:cb:bc:ea:ed:a7:11:
24:06:6b:29:e2:41:ae:7b:58:7a:7a:25:dc:d5:1c:
96:e2:ce:9c:1a:55:d4:e1:8e:b0:47:f7:fb:78:eb:
3e:46:18:9d:cb:b6:bd:86:2b:f6:e4:ba:17:12:43:
e7:48:65:17:4d:4f:d8:c4:64:10:05:c8:86:db:6d:
9d:d4:ba:3f:c8:a9:26:57:df:56:fe:2b:f0:cc:73:
74:a1:2c:7b:53:4f:a0:7f:3d:ec:3b:de:e6:c8:30:
6e:0b:72:f1:b9:5b:16:cb:8b:a4:d4:f1:1b:e4:8e:
4a:b8:4e:2b:44:f8:ed:9d:23:4a:8e:d2:83:b1:f8:
6b:56:d9:57:4a:c5:78:2d:9d:71:37:11:19:69:14:
0a:34:69:1d:95:fa:bc:fa:78:e2:50:81:ce:06:b2:
50:3c:e6:33:3b:86:21:02:10:49:4c:70:0d:4a:a0:
ae:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0F:E6:A6:F3:36:3E:42:A6:F8:4C:1B:55:F3:5F:B1:23:7D:5F:3F
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/YA_mpvM2PkKm-EwbVfNfsSN9Xz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.60.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:b6:87:4d:2e:b9:a9:93:92:d6:e8:80:15:e4:78:5e:8a:bf:
ec:b7:f8:f0:91:1e:d7:07:b9:60:b8:9d:69:47:3d:cf:b0:d0:
8b:73:0c:63:98:fc:e0:14:a2:a7:ad:1e:8c:8f:dc:e0:bc:fd:
8f:b5:8a:a4:8a:c3:32:10:03:1e:2d:22:15:32:b7:50:b2:24:
c2:f6:b3:5b:da:3f:57:e2:ad:04:33:97:61:00:a3:50:86:42:
2e:9a:36:0e:8f:b8:d0:48:d8:29:d4:07:fb:d6:31:b2:b1:0c:
e6:f3:17:25:42:bf:05:65:78:2d:2e:8c:c2:ef:37:22:2b:5c:
8f:7e:6b:6c:c0:b1:e2:3e:44:7a:ee:36:30:bc:cd:ab:ef:61:
f7:05:82:49:a6:69:7a:86:62:90:62:f4:d1:62:57:9c:7d:21:
b2:04:28:4c:07:d9:7e:a5:1e:3b:32:c6:30:d5:6e:11:20:d2:
eb:0f:b7:e1:03:58:54:bb:ec:13:0b:f4:34:a6:86:cb:5d:6b:
41:97:41:6e:66:f1:3f:81:35:47:f3:5c:91:13:25:ec:48:9b:
12:a1:db:dd:3d:05:a4:2b:4e:04:14:81:46:1a:1d:67:18:ff:
e3:1a:48:82:e8:cc:c3:6e:71:7f:6c:6b:a1:1a:21:ed:6f:38:
c3:41:ac:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:14:53 2025 by rpki-client