Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/YFwg4Sjen4xJJwXF5W8Ljgnth9w.roa
File: YFwg4Sjen4xJJwXF5W8Ljgnth9w.roa (raw, json)
Hash identifier: IrtpMSjsm8EXxLD7Mzah+UYR+U8eRGhhkLzUZCt9yJA=
Subject key identifier: 60:5C:20:E1:28:DE:9F:8C:49:27:05:C5:E5:6F:0B:8E:09:ED:87:DC
Certificate issuer: /CN=baaad08f36cfbc00053a5ee3d5abb7a3117c3f8a
Certificate serial: 01857169AF5D9060E812445A13EF4D1006FA
Authority key identifier: BA:AA:D0:8F:36:CF:BC:00:05:3A:5E:E3:D5:AB:B7:A3:11:7C:3F:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqrQjzbPvAAFOl7j1au3oxF8P4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/YFwg4Sjen4xJJwXF5W8Ljgnth9w.roa
Signing time: Mon 02 Jan 2023 07:37:09 +0000
ROA not before: Mon 02 Jan 2023 07:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 195.78.50.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:af:5d:90:60:e8:12:44:5a:13:ef:4d:10:06:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaad08f36cfbc00053a5ee3d5abb7a3117c3f8a
Validity
Not Before: Jan 2 07:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=605c20e128de9f8c492705c5e56f0b8e09ed87dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d3:f0:2a:6c:bf:b1:cd:09:97:13:cf:ca:85:
fd:81:24:e4:33:32:2c:57:be:44:15:a3:14:80:93:
0a:99:95:44:c9:da:9e:86:40:5e:cb:4a:18:24:7a:
a2:fb:2c:09:70:67:a4:25:da:a6:66:10:23:6c:92:
c5:f6:64:0e:43:ac:18:45:93:21:8b:58:9f:58:66:
13:59:35:16:b8:3c:0d:25:e0:ab:bd:be:8f:0f:64:
39:28:62:52:51:c2:72:91:21:22:74:4c:12:87:a1:
02:42:37:40:a7:b9:14:c5:f8:90:6b:16:30:9f:1d:
0d:b5:e2:b1:6a:50:30:16:79:a7:ec:7c:93:c8:53:
cc:96:d6:c7:5f:6f:ba:42:6c:d4:65:c4:2a:d0:71:
30:b9:ec:ca:a5:f2:e6:99:46:05:f1:a1:24:22:e1:
4b:f1:b6:82:80:9f:a8:25:2b:61:b3:39:58:df:f5:
9b:27:1d:79:6e:69:d7:6d:75:57:3d:5d:09:54:2c:
7e:85:20:36:e2:a8:b0:72:0b:24:77:4b:5b:90:af:
34:04:16:05:74:6d:7c:6b:3c:e0:d4:0c:56:fd:a8:
3f:2d:0c:22:66:5f:f3:0b:95:e0:dd:07:76:8b:de:
3f:9f:57:3b:4a:e9:42:e9:eb:29:d8:c7:aa:60:af:
f5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5C:20:E1:28:DE:9F:8C:49:27:05:C5:E5:6F:0B:8E:09:ED:87:DC
X509v3 Authority Key Identifier:
keyid:BA:AA:D0:8F:36:CF:BC:00:05:3A:5E:E3:D5:AB:B7:A3:11:7C:3F:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqrQjzbPvAAFOl7j1au3oxF8P4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/YFwg4Sjen4xJJwXF5W8Ljgnth9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/uqrQjzbPvAAFOl7j1au3oxF8P4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.50.0/23
Signature Algorithm: sha256WithRSAEncryption
31:38:7b:91:2e:6b:2c:a7:69:59:c9:85:41:d1:98:f1:30:91:
89:71:c7:3c:dd:d4:7b:6f:77:10:d3:28:33:6c:47:be:3b:fc:
2f:ce:7b:df:68:fb:f7:1f:53:e9:48:ff:e9:de:fe:9d:10:1e:
a1:5e:e8:e3:83:c5:a2:f5:30:90:65:5d:67:33:80:23:8b:4e:
04:6d:76:a0:39:b4:73:55:d7:dd:1f:a1:e6:b5:7c:0b:f9:82:
09:b1:34:b5:a0:7c:27:6e:18:40:2a:9e:7c:ba:2a:c8:9a:24:
4b:a2:6c:fc:36:f0:a3:95:b0:e8:6f:7f:70:37:b6:79:60:77:
45:f1:f0:a1:80:6d:14:a1:03:cd:cc:69:d0:15:90:c4:a3:76:
93:2a:57:92:16:a0:51:ec:80:78:34:51:76:61:78:7a:7e:ca:
6e:58:98:0c:10:0d:8d:76:f9:e7:09:c9:c3:b6:3f:cc:35:52:
45:2e:86:b6:c8:16:54:26:db:7d:7b:46:d2:e4:c5:de:60:36:
ed:b3:07:88:10:58:62:2a:b7:29:9d:e9:ed:3d:62:5b:7d:94:
db:42:ca:fd:68:d8:ca:e3:27:58:bb:97:fe:9b:d4:e3:10:e3:
88:68:d1:45:cd:dd:2a:db:9c:f0:22:0a:ee:1f:75:8b:b7:97:
f8:cf:3b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:22 2024 by rpki-client on console-fra.rpki-client.org