Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/YwxR34ThmHRuthlOzT4WqVZ23cA.roa
File: YwxR34ThmHRuthlOzT4WqVZ23cA.roa (raw, json)
Hash identifier: Wjza+CelF3fUyrkLK+ARPhi70H/KLs4GnzbSZoizrIQ=
Subject key identifier: 63:0C:51:DF:84:E1:98:74:6E:B6:19:4E:CD:3E:16:A9:56:76:DD:C0
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019126D3DE1433C82DD438EDD640A31EA8DD
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/YwxR34ThmHRuthlOzT4WqVZ23cA.roa
Signing time: Tue 06 Aug 2024 08:35:04 +0000
ROA not before: Tue 06 Aug 2024 08:35:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.180.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 10:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:26:d3:de:14:33:c8:2d:d4:38:ed:d6:40:a3:1e:a8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 6 08:35:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=630c51df84e198746eb6194ecd3e16a95676ddc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:87:c3:23:df:f9:15:87:e9:96:1d:89:80:b7:
c5:22:9a:b7:e7:34:d8:b1:f5:a0:8e:88:3a:00:22:
0d:3e:27:82:f2:58:0e:62:b9:f6:ff:de:4c:10:4c:
4c:23:d9:8a:75:3a:fa:53:ab:d9:45:81:d6:73:8d:
7e:79:6c:74:7e:5e:8a:56:5d:5f:92:bd:a1:f7:c2:
66:4a:ce:57:09:c8:e7:d5:9b:fd:07:3f:b6:61:2d:
61:1f:e4:ec:3c:a5:5d:84:d7:7c:9f:b9:24:35:45:
e6:d9:e5:4c:cd:1b:bd:9f:f8:16:92:b7:fb:43:a0:
cd:93:b3:af:9f:f8:62:5b:c8:aa:d6:a2:70:53:2f:
42:aa:ca:6a:13:10:52:db:6b:3c:00:f8:76:96:b1:
59:5b:cb:9d:e3:89:22:cd:6e:3b:66:08:9e:fd:b2:
aa:0b:07:8d:67:2a:3d:07:24:03:cb:b9:f5:85:9f:
e6:b2:05:00:35:42:ed:83:a6:50:a0:b2:2a:b9:fd:
c7:ef:24:15:ae:58:5e:8a:f9:61:41:49:ad:05:df:
27:67:5f:b6:07:05:f5:3c:92:48:c2:15:dc:20:9a:
54:8c:eb:8a:59:65:d3:ca:5d:1c:67:8e:7e:ac:a0:
98:6c:f5:d4:00:a0:2d:6a:84:68:2d:38:0e:13:c2:
c8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0C:51:DF:84:E1:98:74:6E:B6:19:4E:CD:3E:16:A9:56:76:DD:C0
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/YwxR34ThmHRuthlOzT4WqVZ23cA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.233.0/24
Signature Algorithm: sha256WithRSAEncryption
16:4c:63:b5:8f:21:7f:fb:4d:d6:64:f3:f0:88:1a:ea:11:9e:
17:69:2c:8a:5b:d2:76:04:25:91:66:76:ff:ce:26:ba:b0:9f:
4f:a7:d9:cd:e3:74:14:27:27:19:42:5c:d4:ce:26:f6:f7:29:
81:d7:d2:39:b6:77:e3:02:6a:1c:d3:1d:54:54:43:6f:ae:cd:
28:7c:0d:c0:59:f7:ed:3e:bd:8a:9b:7d:ce:dd:43:5c:c8:9e:
99:f0:d6:31:ef:5d:40:b2:c5:bd:b8:22:4c:27:02:ea:fb:91:
b8:3c:0c:e8:7e:27:cd:f2:01:d4:9e:b2:80:60:b0:a3:23:17:
2d:bc:5e:97:8e:bb:78:f4:1e:f7:eb:e1:ca:65:a3:0b:22:f8:
22:34:d1:52:44:79:a6:39:a7:7d:2f:87:82:f9:3c:06:ed:1b:
13:02:28:d4:09:78:2a:c8:44:8f:c2:30:64:bf:9e:b4:bf:c7:
ed:31:45:26:73:b5:8d:a0:bb:47:69:10:25:7e:28:2b:4c:cd:
54:d2:00:d2:8b:0d:70:4b:c0:b3:dc:ac:30:96:be:1c:f8:21:
fd:38:d9:0b:ad:27:78:b9:c4:2a:85:6e:6a:ee:f8:ab:39:52:
dc:cc:f7:a2:00:16:18:28:9e:f8:5c:3d:fa:a5:da:66:ca:e3:
57:cd:1a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:13 2025 by rpki-client