Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/YBR_KR6paaZr7ie2AePMKE9Ooac.roa
File: YBR_KR6paaZr7ie2AePMKE9Ooac.roa (raw, json)
Hash identifier: EJpBNz1JGz/iqpTim4JEz6wuVU08gvC9q72DpLCMHvs=
Subject key identifier: 60:14:7F:29:1E:A9:69:A6:6B:EE:27:B6:01:E3:CC:28:4F:4E:A1:A7
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018CC9BA9807021A42A98A3DE27EB7FD0A6B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/YBR_KR6paaZr7ie2AePMKE9Ooac.roa
Signing time: Tue 02 Jan 2024 10:31:38 +0000
ROA not before: Tue 02 Jan 2024 10:31:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 19:18:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ba:98:07:02:1a:42:a9:8a:3d:e2:7e:b7:fd:0a:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 10:31:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60147f291ea969a66bee27b601e3cc284f4ea1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:98:ee:ca:1a:0d:ac:5b:f5:4f:a6:c0:88:24:
8e:22:0b:ac:39:9f:25:a5:9f:70:95:c8:64:6f:14:
d3:29:57:bf:8f:6d:b7:fe:af:65:44:ce:e8:ab:b4:
42:44:3d:c5:00:57:fa:9e:55:41:c9:9a:a5:49:cc:
f6:3e:69:8a:c8:f2:56:4f:49:9e:34:26:8b:2e:8f:
b8:ae:10:77:f1:7a:b0:ab:79:c4:cf:26:a5:46:ea:
54:bd:4f:86:80:ac:a9:ee:d8:eb:ec:76:7e:b6:dc:
89:95:37:a0:f7:68:90:a2:d0:71:27:67:d7:f0:c6:
4e:32:b9:cb:0d:6d:0c:6f:9c:53:5a:32:53:b2:71:
f0:98:18:9d:90:8c:ef:b6:b3:d3:cd:07:4e:4a:ad:
fd:03:6a:c2:e3:da:b1:a3:ee:ea:d2:5b:1e:d1:84:
bd:a0:24:e3:1b:5a:0f:f9:9e:a7:a4:c2:f4:f6:4a:
cd:0e:4a:61:b7:44:9f:57:cb:a8:95:5a:ee:ca:30:
cb:bd:ca:e8:f7:05:c1:39:68:c4:56:57:8e:60:62:
fc:51:ce:5a:bf:68:8e:ee:74:b0:eb:55:51:d1:00:
3f:9b:bb:ca:e2:49:09:5f:2e:6e:28:88:cf:ed:54:
73:6a:41:96:a8:22:13:39:c5:69:f5:13:59:a2:42:
7e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:14:7F:29:1E:A9:69:A6:6B:EE:27:B6:01:E3:CC:28:4F:4E:A1:A7
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/YBR_KR6paaZr7ie2AePMKE9Ooac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:db:1d:b8:fc:44:29:c0:5b:22:e7:97:4b:ea:4d:48:5c:d7:
62:21:fc:e0:4b:91:dc:8a:19:d1:a0:08:41:d6:fc:2d:86:c1:
38:64:6c:26:54:66:5a:7e:bc:86:79:49:5c:34:83:82:f0:22:
77:3c:95:ad:e9:dc:4e:5e:dd:99:26:5e:34:e6:8f:b2:d9:00:
45:5d:2c:1f:e6:97:8b:0e:ee:c8:80:10:1f:10:60:c0:63:55:
c2:d3:6f:70:14:c9:66:38:a5:8f:18:99:e6:a9:4a:a0:9f:d9:
55:c5:94:7b:0e:87:6d:fc:46:14:59:d1:14:1a:0b:3a:35:49:
d2:48:d7:62:ca:82:07:80:e6:55:00:53:c1:2c:6e:94:e1:89:
f4:4e:bc:ad:2d:47:e6:7e:ab:20:6f:a6:14:29:0c:32:f7:fd:
3e:65:80:2b:18:97:8e:63:6f:63:a3:3f:a7:0d:66:22:99:e6:
f6:59:c4:f3:a2:91:5f:9c:50:2f:26:cc:bf:0b:95:64:5a:8e:
dd:c9:a7:31:d6:3b:30:a9:05:52:b7:75:d4:ee:80:09:2e:21:
51:10:c9:34:df:07:d6:8c:17:ed:52:e5:78:2e:d1:ad:54:6f:
17:46:41:33:be:38:09:19:a0:d2:ae:40:c1:01:bc:57:9e:8f:
c5:70:bb:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 14 22:46:24 2024 by rpki-client on console-fra.rpki-client.org