Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/YSIA4ZJ_z0D4XxR-VopqcPHTnE4.roa
File: YSIA4ZJ_z0D4XxR-VopqcPHTnE4.roa (raw, json)
Hash identifier: Fs56UM6+DUBGjng2jDWcuCYI+7tCWEdEEHZKLbsTXrg=
Subject key identifier: 61:22:00:E1:92:7F:CF:40:F8:5F:14:7E:56:8A:6A:70:F1:D3:9C:4E
Certificate issuer: /CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Certificate serial: 01856F0B2F42530406DCB05465F56A9376D8
Authority key identifier: A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/YSIA4ZJ_z0D4XxR-VopqcPHTnE4.roa
Signing time: Sun 01 Jan 2023 20:34:41 +0000
ROA not before: Sun 01 Jan 2023 20:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207916
IP address blocks: 93.174.80.0/21 maxlen: 21
185.80.116.0/22 maxlen: 22
83.229.20.0/23 maxlen: 23
37.26.74.0/23 maxlen: 23
37.26.76.0/22 maxlen: 22
2a00:1350::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:2f:42:53:04:06:dc:b0:54:65:f5:6a:93:76:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Validity
Not Before: Jan 1 20:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=612200e1927fcf40f85f147e568a6a70f1d39c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3b:37:9e:90:ef:73:7f:1e:8f:4e:80:00:47:
50:37:77:df:99:e9:98:49:6c:3d:22:08:cf:62:18:
87:25:b1:17:af:4e:1c:67:fe:b3:7a:9c:d0:85:4f:
11:aa:07:41:2b:6d:61:57:0f:8b:7b:2a:45:a6:ca:
ab:28:b9:71:6d:77:a1:c6:be:34:9e:3e:1d:7a:28:
6e:b7:cc:23:f6:17:8d:eb:7f:e4:32:5b:3e:c7:e2:
fe:d7:b8:17:76:91:d2:65:1f:ce:c4:ad:57:4f:63:
97:73:98:aa:0b:3c:dd:e4:3c:1b:f2:4b:9b:86:2b:
8f:e4:77:34:85:0a:79:54:aa:29:be:85:d9:79:9e:
f6:b0:b4:1a:b9:6c:ce:34:58:9a:fa:2c:9e:74:77:
22:8b:91:8a:f0:03:11:e3:8b:0d:b9:18:a4:80:c5:
24:02:17:2b:8a:85:9d:46:72:dc:d4:06:98:84:d0:
d3:39:84:02:13:38:ab:50:82:72:fd:70:a1:65:9e:
17:5c:98:96:e0:27:d7:7d:9a:6e:8b:2d:84:cd:14:
77:43:55:51:1b:a1:16:b6:62:82:37:19:11:ff:07:
8f:5a:da:1c:2f:4e:93:a1:51:a6:4b:de:64:5c:e6:
b2:c3:d3:19:5f:2a:59:26:0b:97:bc:9b:77:e6:26:
1f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:22:00:E1:92:7F:CF:40:F8:5F:14:7E:56:8A:6A:70:F1:D3:9C:4E
X509v3 Authority Key Identifier:
keyid:A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/YSIA4ZJ_z0D4XxR-VopqcPHTnE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.74.0-37.26.79.255
83.229.20.0/23
93.174.80.0/21
185.80.116.0/22
IPv6:
2a00:1350::/32
Signature Algorithm: sha256WithRSAEncryption
96:05:1c:db:1f:f3:19:03:a2:a4:4f:a2:5d:d0:fe:25:21:87:
09:b9:2c:fe:69:cb:60:9a:ed:fc:6a:38:2e:11:d6:94:82:fb:
dd:14:00:84:d1:11:46:2a:af:1e:20:6a:56:7d:9b:30:1a:26:
ed:f7:bb:f8:74:d5:65:b1:32:39:ca:c9:2a:80:78:b1:c0:fc:
ed:8d:5e:9e:a4:5f:85:8c:eb:06:4a:19:7e:e1:85:48:8d:1d:
3a:ec:fe:eb:a3:28:75:75:5b:41:85:5d:b8:de:13:4d:94:9d:
e1:88:b8:50:a7:a6:b9:d2:09:7c:5d:bc:28:9d:77:d9:2f:3d:
c1:36:d2:4e:c1:31:c5:36:ed:7d:92:84:de:4b:39:67:fb:61:
ef:3e:15:77:af:54:26:9c:da:ab:6f:60:77:38:68:c9:ec:de:
43:f7:c0:f8:4a:f6:c4:6c:57:58:82:93:49:12:0d:51:a2:88:
d3:b2:45:8e:2c:b5:8b:08:67:29:57:36:34:51:00:4c:06:cc:
e4:4e:43:7a:e2:ef:c9:7b:a8:43:1b:a6:c2:30:72:c4:85:10:
1a:7d:c4:47:55:1d:9f:11:fc:b8:14:6f:15:77:50:8a:57:36:
24:5c:90:50:5a:11:ef:d6:69:c1:66:70:81:33:c7:4f:22:20:
d6:d8:60:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:07 2024 by rpki-client on console-fra.rpki-client.org