Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/YJHphduX3tEWLswsWt1KqwTZCFo.roa
File: YJHphduX3tEWLswsWt1KqwTZCFo.roa (raw, json)
Hash identifier: 1PhouheW4/NElUEa/eqRdZAq9BlxcZElO3NXLbuRpmE=
Subject key identifier: 60:91:E9:85:DB:97:DE:D1:16:2E:CC:2C:5A:DD:4A:AB:04:D9:08:5A
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 0185711E468AA07B32F0037C46BBB950BEBF
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/YJHphduX3tEWLswsWt1KqwTZCFo.roa
Signing time: Mon 02 Jan 2023 06:14:47 +0000
ROA not before: Mon 02 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205939
IP address blocks: 185.145.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:46:8a:a0:7b:32:f0:03:7c:46:bb:b9:50:be:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 2 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6091e985db97ded1162ecc2c5add4aab04d9085a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:db:4b:f5:3a:27:35:f0:08:12:ad:94:68:e6:
72:b7:46:b2:f0:6b:73:e0:70:c2:0c:af:63:d1:5e:
31:8f:2e:10:54:4c:fa:b4:24:6a:6c:35:af:99:e9:
f7:32:ee:0c:00:e0:5f:6e:6f:ff:e3:00:d4:7a:2c:
19:09:49:31:36:bc:02:82:a5:d5:d9:2b:9d:b5:66:
2a:37:25:05:d9:e6:38:d7:74:5d:61:db:b4:e3:72:
ba:23:bf:1e:99:9a:1d:d3:0a:d4:f2:e5:3a:40:4a:
4c:fc:06:5a:92:43:ce:85:5f:02:83:e4:b3:ac:d3:
56:27:92:fe:cf:4e:61:5e:b4:7e:87:0b:33:ff:23:
0f:bc:0c:d2:ab:93:79:48:80:80:db:62:4e:bd:8a:
bf:a9:c1:95:d8:87:2e:a0:39:02:c3:7b:a6:d4:99:
ed:67:6d:61:24:10:9e:81:6c:e4:a5:64:55:3b:4d:
f2:49:cb:f4:3c:4b:88:91:42:03:a7:9d:ce:16:73:
71:7e:e0:8c:dc:5e:88:0b:92:15:2d:d6:26:99:cd:
e3:74:c2:c0:0b:5d:ca:12:bd:90:55:6b:d9:21:3f:
d9:79:c8:38:3a:4f:4f:2e:0a:7e:3e:cb:d3:12:ae:
8a:8f:fd:3b:a1:06:81:59:45:9e:1f:67:4f:79:7a:
36:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:91:E9:85:DB:97:DE:D1:16:2E:CC:2C:5A:DD:4A:AB:04:D9:08:5A
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/YJHphduX3tEWLswsWt1KqwTZCFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.77.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ef:28:b7:70:5f:e9:c5:e4:76:a3:ac:ee:b5:84:24:b8:c5:
c1:e6:de:0c:c5:c9:6e:34:79:0b:41:5d:90:b4:4c:84:a5:9c:
76:83:00:6d:71:0a:76:2b:dc:83:f4:03:73:64:b0:da:bb:f8:
95:e6:03:99:74:ed:f4:fd:b4:64:17:a7:53:6c:7b:3e:f8:97:
c6:13:55:02:2e:2e:85:81:23:b1:c6:92:ab:78:95:34:5b:54:
52:1a:d6:71:ed:bf:60:0c:85:4c:ad:a7:db:fc:2c:47:ce:81:
bc:e8:28:d3:c6:59:04:53:af:b1:44:02:e2:46:d9:20:bd:8c:
8a:b7:e2:6a:51:d2:1e:ec:cb:28:54:7c:70:49:85:ae:44:b4:
d4:02:0d:1a:f7:a2:0a:f1:62:6c:74:dd:8d:d5:ea:a3:67:11:
a0:83:4b:c5:77:f3:41:d0:5e:15:10:ff:89:6b:60:8a:a5:57:
11:cd:ea:b8:4b:7b:48:05:72:67:94:74:b3:d0:69:b3:62:fa:
4e:90:71:75:5d:a9:2b:bf:95:e9:e4:46:8d:38:ea:0d:c8:44:
37:fa:e6:ed:f0:c3:b3:2d:d1:c9:6c:2d:1f:f3:b5:d7:ea:2f:
4b:54:50:d1:c9:dd:6f:24:70:91:e2:73:c8:cb:52:68:90:31:
2c:77:02:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org