Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/yKpzHD00zseWc0Z74CYvqf68uGY.roa
File: yKpzHD00zseWc0Z74CYvqf68uGY.roa (raw, json)
Hash identifier: UPSsv9QhsYpwXQgOP3V6KoG7WeHCIit6JIaKs9+KDcQ=
Subject key identifier: C8:AA:73:1C:3D:34:CE:C7:96:73:46:7B:E0:26:2F:A9:FE:BC:B8:66
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018B3CD13951F8CCE3E37ED6A35D9A180035
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/yKpzHD00zseWc0Z74CYvqf68uGY.roa
Signing time: Tue 17 Oct 2023 08:47:06 +0000
ROA not before: Tue 17 Oct 2023 08:47:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.8.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:d1:39:51:f8:cc:e3:e3:7e:d6:a3:5d:9a:18:00:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 17 08:47:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8aa731c3d34cec79673467be0262fa9febcb866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f4:e9:fa:8a:56:fe:c2:29:b7:96:76:93:bd:
7b:91:36:9d:f7:9e:ee:98:05:82:f8:76:9c:f3:19:
c7:56:c8:e1:6f:9b:18:3f:55:5f:7d:60:af:f7:9f:
76:80:3b:e6:a1:82:c8:f5:16:16:41:7d:e6:41:94:
e8:f0:65:fa:9f:72:ae:20:c0:0c:58:d5:9d:7b:0a:
bc:04:1c:84:ff:05:69:b8:f9:95:88:a7:b4:cf:43:
6e:fd:3c:c1:51:7f:16:23:e4:2f:51:3f:c7:db:92:
87:01:11:f6:50:50:42:8e:94:c5:e3:44:12:ac:40:
06:18:e1:c3:21:af:85:ef:c0:4a:45:08:3a:2c:b3:
d5:fb:8d:4c:1b:0f:57:ed:8d:53:c8:ea:c4:d3:cf:
8d:88:d3:55:a1:7d:e0:3a:c5:0b:8e:9f:c2:de:56:
4b:00:d7:d9:e5:3d:29:98:2c:fc:95:0b:e3:f5:da:
62:e2:e9:be:63:78:22:b4:6c:0c:bf:64:11:e1:13:
15:47:4f:42:8e:ea:8b:2f:66:0e:bf:f7:a9:c8:2d:
24:5c:24:03:54:66:79:7a:3a:81:0d:b5:25:79:09:
4b:67:98:c8:82:c9:16:68:b1:d1:30:7a:1a:3f:45:
ec:79:f3:68:f5:8d:ca:3c:86:d1:69:1e:3f:a9:e4:
04:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AA:73:1C:3D:34:CE:C7:96:73:46:7B:E0:26:2F:A9:FE:BC:B8:66
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/yKpzHD00zseWc0Z74CYvqf68uGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.187.0/24
Signature Algorithm: sha256WithRSAEncryption
75:75:f8:eb:7d:56:75:40:51:79:cb:15:cf:8e:41:cb:05:60:
c1:b9:93:d4:e1:f0:47:09:1d:b1:38:2c:8a:15:1e:0f:1f:e5:
2d:79:c9:ed:fa:d2:95:9b:c8:13:d2:f4:57:a2:2a:60:5c:9d:
0a:54:d2:4a:92:af:66:59:95:69:ab:d5:95:32:b8:ef:85:8b:
9e:13:7d:c3:56:49:ee:e2:8c:4f:c2:20:e0:51:26:ea:15:40:
c0:de:63:61:cb:48:a8:7a:4f:f7:36:ea:f2:bc:f2:98:d6:ff:
82:1c:f5:d6:d2:9e:44:12:dc:f1:d3:2c:8e:71:c8:62:64:4e:
b4:a1:bc:ed:58:94:e6:cf:7c:0c:de:61:62:85:69:c1:7e:a2:
f5:9c:74:fe:55:a6:b8:24:07:46:d4:ae:9a:58:12:49:12:2e:
9b:a7:33:2c:e4:bc:3d:0b:f7:52:ca:48:30:48:2a:13:52:64:
28:53:82:19:cb:79:00:1e:ab:22:4b:7f:56:f2:21:60:84:fc:
66:d5:9a:2f:b6:89:4e:52:1a:50:8d:37:84:e6:67:cf:6d:39:
84:69:2e:87:30:be:9a:7b:5e:2d:c9:5a:64:d0:6d:42:9a:b6:
ce:60:b1:ba:d8:62:0e:93:6c:8b:6f:f9:2c:6a:01:79:2a:1e:
91:6b:bc:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 18 09:49:30 2023 by rpki-client on console-fra.rpki-client.org