Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/Y-TmmEMaH2YT3SXARlLuSCCl35A.roa
File: Y-TmmEMaH2YT3SXARlLuSCCl35A.roa (raw, json)
Hash identifier: 894+NZTx2iM1jS0UwixEGWhSYfCKrDrGETyA6kEDL48=
Subject key identifier: 63:E4:E6:98:43:1A:1F:66:13:DD:25:C0:46:52:EE:48:20:A5:DF:90
Certificate issuer: /CN=cac9804e227eaac9ac09b0821fc07ee2817777b5
Certificate serial: 01857102DF22C018DA704A6A75F86FF6FFBF
Authority key identifier: CA:C9:80:4E:22:7E:AA:C9:AC:09:B0:82:1F:C0:7E:E2:81:77:77:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ysmATiJ-qsmsCbCCH8B-4oF3d7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/Y-TmmEMaH2YT3SXARlLuSCCl35A.roa
Signing time: Mon 02 Jan 2023 05:44:51 +0000
ROA not before: Mon 02 Jan 2023 05:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 45.91.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:df:22:c0:18:da:70:4a:6a:75:f8:6f:f6:ff:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cac9804e227eaac9ac09b0821fc07ee2817777b5
Validity
Not Before: Jan 2 05:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63e4e698431a1f6613dd25c04652ee4820a5df90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6d:3b:d5:34:41:12:3c:98:c1:de:19:66:d2:
ca:29:d2:e2:6a:46:0d:cc:61:d3:ae:fd:90:f1:35:
a8:d0:9d:ff:e9:d1:1a:4f:a6:21:b8:3b:be:32:22:
12:02:b3:f2:37:de:3b:2e:a8:42:3d:7c:a1:48:d5:
6e:f3:ae:39:19:7c:ee:65:18:6a:74:f3:9a:d1:7a:
54:bf:10:4a:e4:0a:77:c6:95:c8:13:dd:03:fd:8f:
17:4e:08:82:f0:08:32:08:b4:85:88:9f:a9:cf:df:
8d:d4:4a:07:88:fb:1f:aa:81:d3:93:e3:ff:8c:0a:
b0:dd:5e:a3:0f:f8:1d:14:a0:49:ee:52:e8:51:b6:
37:c9:ae:2c:57:75:9a:90:91:7e:13:1e:b0:cb:ff:
56:6c:e2:70:e4:5c:59:15:c0:8c:7b:d3:ba:95:2d:
98:60:4d:63:65:02:cd:90:16:41:64:21:14:47:12:
ae:65:fc:0d:1c:e5:82:a0:b4:d1:f6:80:41:ac:cc:
e3:96:e1:5b:58:24:51:cb:b9:52:9a:d1:7b:df:0b:
f9:27:03:25:2a:1b:e0:94:ff:c4:84:d3:5f:60:a8:
30:e2:f7:1e:67:8c:a9:13:1a:59:98:e0:39:35:0f:
45:bc:c2:66:4e:83:45:16:dd:63:ee:e5:e5:5b:19:
90:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E4:E6:98:43:1A:1F:66:13:DD:25:C0:46:52:EE:48:20:A5:DF:90
X509v3 Authority Key Identifier:
keyid:CA:C9:80:4E:22:7E:AA:C9:AC:09:B0:82:1F:C0:7E:E2:81:77:77:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ysmATiJ-qsmsCbCCH8B-4oF3d7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/Y-TmmEMaH2YT3SXARlLuSCCl35A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/ysmATiJ-qsmsCbCCH8B-4oF3d7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.254.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:7c:15:61:4a:c8:ab:1a:96:20:d6:c0:76:44:75:47:9b:00:
e1:72:98:f3:11:c4:1d:cb:78:f2:26:23:5f:90:eb:49:3e:95:
b9:07:f1:42:ea:8b:57:7c:8e:0c:a1:e8:74:be:2a:02:32:74:
7f:3b:d3:14:a4:98:72:7c:ad:6f:2e:92:ce:21:af:11:bf:c8:
9c:9e:37:9f:70:db:cb:45:c9:b4:a3:5a:86:02:fc:e4:11:f2:
b3:3a:c0:eb:4e:62:e6:9d:63:26:79:31:9a:6a:b4:54:25:59:
16:71:b9:16:66:bb:91:63:2a:5f:e5:09:fb:82:ca:cb:f4:0c:
47:68:ea:ce:8b:3f:d2:15:c7:84:21:33:c1:cb:d8:6b:9d:a0:
00:5d:95:b3:44:b2:9e:92:b3:0d:bf:67:5d:dc:96:97:b3:ce:
a7:f6:62:f1:69:b9:44:90:f8:94:94:f2:d4:2e:e5:b7:54:8c:
3a:83:91:99:fa:92:0a:9b:6f:d3:a4:57:ac:93:d9:47:d6:25:
40:df:dc:f1:cf:2b:a7:5e:ab:13:09:17:5e:3e:62:5f:a5:d9:
08:92:cf:5a:38:92:72:7b:0d:91:4e:e1:4a:ac:e8:78:84:3b:
1c:e0:81:48:aa:d4:8c:4b:b2:c8:e7:6a:62:51:11:bc:89:c4:
3c:42:ce:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org