Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/yLVxoT2f-HGtehyNnIC88lq1UbI.roa
File: yLVxoT2f-HGtehyNnIC88lq1UbI.roa (raw, json)
Hash identifier: YDVh1r41peQ14HL1F+1xDFv13wELW2ccEOBXoAaRRf0=
Subject key identifier: C8:B5:71:A1:3D:9F:F8:71:AD:7A:1C:8D:9C:80:BC:F2:5A:B5:51:B2
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 018570FBCCB6581001C42419115101B901DB
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/yLVxoT2f-HGtehyNnIC88lq1UbI.roa
Signing time: Mon 02 Jan 2023 05:37:08 +0000
ROA not before: Mon 02 Jan 2023 05:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 87.121.136.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:cc:b6:58:10:01:c4:24:19:11:51:01:b9:01:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: Jan 2 05:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8b571a13d9ff871ad7a1c8d9c80bcf25ab551b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f0:9a:cc:4c:ec:25:1c:5a:4d:8e:f3:11:d1:
85:2e:c3:7e:ad:36:63:a6:66:83:a5:ba:96:40:9a:
45:65:d9:c8:34:ca:fb:5a:79:ba:08:21:9e:2f:f7:
6f:28:fa:49:c4:c2:7a:22:f5:8d:f4:62:74:9d:71:
50:5a:8d:9f:fb:54:6a:d2:69:31:b1:10:69:38:7b:
e9:89:af:7d:0c:55:d2:98:c5:7a:dd:cb:77:34:25:
91:ca:d1:54:65:4a:3a:ea:4a:53:bc:e2:49:a3:66:
03:ec:32:63:c5:84:b2:f4:4b:ac:fa:e3:5d:d6:4c:
df:4a:fe:a6:54:d1:8e:ca:63:ee:82:6a:30:64:7b:
41:c4:0a:af:41:3b:c6:aa:8b:3b:6c:46:b1:f7:9c:
40:57:4a:da:06:39:7b:d6:75:2b:50:d5:cb:ba:80:
37:5f:a2:c0:8f:92:13:4a:91:09:2b:e2:0d:7a:20:
c2:9e:f8:a2:6f:af:3d:45:eb:0e:58:94:15:2c:44:
be:5d:27:c2:f7:21:d7:d2:aa:23:aa:0f:03:a1:49:
b1:88:d2:4d:e1:82:65:90:51:fc:8b:5e:57:56:74:
d3:6a:63:09:d0:c5:65:d5:60:c8:7a:23:42:3d:9a:
05:d0:c8:07:d9:08:ec:61:8f:0b:92:27:76:26:80:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B5:71:A1:3D:9F:F8:71:AD:7A:1C:8D:9C:80:BC:F2:5A:B5:51:B2
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/yLVxoT2f-HGtehyNnIC88lq1UbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.136.0/21
Signature Algorithm: sha256WithRSAEncryption
b2:f9:5a:6a:83:d7:b2:ca:08:fa:c0:f9:0a:59:fc:71:e8:ad:
26:d6:1f:6c:f8:7c:88:39:21:66:38:43:c0:ab:06:0a:05:22:
1a:01:92:eb:b5:fe:f3:20:d7:9c:19:f4:13:1c:d5:2f:42:aa:
85:2e:03:f5:3b:3a:eb:18:0e:12:31:2e:05:c8:96:27:be:ed:
05:4e:8b:d7:87:ef:25:38:1d:c5:a8:25:b6:30:cd:01:da:59:
49:90:44:1b:04:4b:4b:21:c7:d7:7a:56:52:df:12:1e:11:de:
45:25:6d:d0:24:06:d1:aa:93:02:da:f1:50:32:6e:96:0d:23:
66:e1:31:f7:28:3c:42:43:37:21:0d:4d:c7:c1:00:24:63:5c:
0a:fb:38:e8:e2:85:fc:c7:51:d9:89:16:2f:7d:2e:cf:49:3f:
2c:be:1d:b6:91:17:9a:dc:7b:c2:09:d5:8e:67:f4:a6:a0:e5:
8b:28:c6:4e:c2:67:ef:60:5d:c3:68:8c:cb:4d:0d:43:69:0b:
f4:c4:85:df:d9:2a:28:3f:51:40:c1:0b:d3:8f:18:b4:a3:e3:
5e:1b:14:35:3f:53:43:59:6c:90:15:ed:d2:57:70:8a:38:5c:
68:8c:70:40:1f:2a:4f:69:6b:97:5e:60:f4:46:56:0c:b9:64:
e2:a0:85:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org