Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/YhQYDKtNcPhooSgwX2tv_maVdWM.roa
File: YhQYDKtNcPhooSgwX2tv_maVdWM.roa (raw, json)
Hash identifier: pC6Btn4+4CyeCi8hAjxlbkWD0l8di4IDDSJt3RLmjRQ=
Subject key identifier: 62:14:18:0C:AB:4D:70:F8:68:A1:28:30:5F:6B:6F:FE:66:95:75:63
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 01869327344153EA491E36F1BB394B7AE0DD
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/YhQYDKtNcPhooSgwX2tv_maVdWM.roa
Signing time: Mon 27 Feb 2023 13:54:25 +0000
ROA not before: Mon 27 Feb 2023 13:54:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47823
IP address blocks: 185.94.196.0/22 maxlen: 24
193.219.101.0/24 maxlen: 24
193.219.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:27:34:41:53:ea:49:1e:36:f1:bb:39:4b:7a:e0:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Feb 27 13:54:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6214180cab4d70f868a128305f6b6ffe66957563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:4f:3f:8b:7a:57:7f:8b:c3:1c:ec:c2:3b:
a8:26:94:1a:2f:e7:fe:0b:23:0f:22:5d:53:a8:ae:
d9:10:1a:f3:43:e4:a6:93:fb:2a:e7:67:91:b0:6f:
a2:7b:58:b5:68:80:26:ff:26:47:83:bd:09:af:44:
f1:79:3a:55:83:27:5a:63:ce:f6:a6:ce:14:8c:44:
bb:bb:18:e4:f6:4f:d8:96:f6:25:92:9b:2e:f5:3d:
c8:f9:70:45:5d:f0:87:2a:2e:c9:d2:72:34:e3:69:
9d:9b:3e:f6:fe:27:fd:98:59:ec:b9:cb:13:ea:3e:
07:c2:55:1f:96:4c:83:92:cd:e9:75:b1:3f:75:26:
55:fb:12:b2:90:8f:3b:c2:2a:a5:d1:28:54:22:c6:
92:0b:d1:1d:46:c1:e3:b4:2b:de:62:30:46:e0:c4:
45:d2:d3:9e:0f:f2:8c:48:76:8b:65:4c:0a:6f:80:
cd:6d:34:39:27:0d:ee:43:a5:37:69:91:53:7f:da:
c0:a9:dc:ed:71:7c:dc:38:11:17:3b:24:2a:4a:80:
80:03:e7:93:0b:59:ae:3f:2f:da:02:f5:73:f8:ce:
a7:16:eb:e7:32:63:59:d6:33:3d:af:ff:b5:93:90:
1a:fd:70:07:45:79:56:85:b0:10:8c:1e:0d:90:dc:
0c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:14:18:0C:AB:4D:70:F8:68:A1:28:30:5F:6B:6F:FE:66:95:75:63
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/YhQYDKtNcPhooSgwX2tv_maVdWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.196.0/22
193.219.101.0/24
193.219.121.0/24
Signature Algorithm: sha256WithRSAEncryption
84:8b:6f:3d:67:96:20:c3:bf:91:d7:5a:7e:e7:df:2e:e2:f3:
cf:cc:6c:9f:6e:3f:75:f5:ca:c2:ce:ae:5e:d5:ef:fc:55:af:
1d:3a:be:02:8e:75:02:6c:83:c0:df:86:fa:1f:a0:26:f0:22:
fe:46:72:56:ae:57:02:2e:bb:91:87:69:2d:7b:35:9f:97:ce:
31:e9:0e:bd:0c:6e:48:89:25:9e:0a:3d:db:c0:14:f8:a2:82:
85:09:92:8e:df:b8:b2:53:ee:50:07:68:b5:f4:f7:c9:64:c9:
40:33:aa:be:85:c6:3c:bf:1e:ef:e1:02:39:ee:6c:ff:4d:ab:
da:b8:01:35:22:42:b3:86:40:e2:82:94:fc:45:c0:0d:b8:7c:
9d:01:12:f4:65:49:08:34:91:56:cc:6d:38:45:08:53:12:e7:
85:e8:75:11:fe:86:27:4c:ec:a1:8c:2c:0d:fc:c5:15:04:6d:
c9:fa:b4:9e:6f:7b:08:23:bd:9f:a3:56:a5:7b:ca:fe:b6:08:
b8:59:3d:8f:4c:31:e5:7d:d2:9f:10:b9:e3:9d:b8:dd:05:24:
68:87:f1:d1:f5:9b:ab:1b:94:9e:d5:32:1f:ce:c5:0b:5c:96:
c2:5f:34:25:6d:a5:fc:02:fa:3a:dd:d8:64:53:32:6e:24:35:
6e:a3:29:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org