Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YuY8pCg1FE1dY7QSGET4vKJaJRQ.roa
File: YuY8pCg1FE1dY7QSGET4vKJaJRQ.roa (raw, json)
Hash identifier: 8Y1jm4cjqUQK9CKVKtXVqiWZ+dg6iMm0L3ZBq7sccUQ=
Subject key identifier: 62:E6:3C:A4:28:35:14:4D:5D:63:B4:12:18:44:F8:BC:A2:5A:25:14
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0185710322CDF10E52D1C7F15E880739F087
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YuY8pCg1FE1dY7QSGET4vKJaJRQ.roa
Signing time: Mon 02 Jan 2023 05:45:09 +0000
ROA not before: Mon 02 Jan 2023 05:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 268624
IP address blocks: 203.159.80.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:22:cd:f1:0e:52:d1:c7:f1:5e:88:07:39:f0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e63ca42835144d5d63b4121844f8bca25a2514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a2:73:72:54:47:fe:66:e4:e4:c7:67:d5:e1:
58:46:a4:2a:90:f9:03:f8:8a:26:8c:8b:dc:ed:9f:
7d:49:c2:fa:43:4d:58:a1:2e:19:30:1c:9a:da:a6:
f9:a8:c0:9d:d8:7f:aa:3d:2c:ed:e5:0e:e7:a0:e8:
37:d7:f3:1a:40:a2:d1:4b:53:72:16:cb:3c:d5:d3:
de:43:56:3c:ae:2b:b5:de:c1:d7:5e:83:07:1f:c7:
2a:1e:c5:d6:8b:18:df:72:6d:8d:37:ac:87:93:7a:
be:61:b2:78:cf:e7:d6:7f:4f:6f:d0:57:36:93:97:
a3:52:d3:85:af:1d:61:1c:1a:b0:c4:fe:f5:2d:95:
d1:af:95:91:d3:80:d1:bd:06:ac:ce:9b:4a:27:b1:
a6:8f:2d:c7:30:88:28:d4:d4:7b:ff:3f:46:56:07:
6b:bd:dd:1f:8e:5f:18:e8:56:fb:42:59:d2:6b:46:
8d:d8:50:38:4b:29:39:12:90:e2:20:53:c2:76:c7:
3c:ca:2a:df:8b:9c:1e:9c:e2:21:95:7e:6c:f7:55:
67:77:87:57:75:eb:b4:e9:27:ce:a9:b2:00:ce:bc:
ed:f2:5b:0f:f4:ad:19:29:98:ac:07:e0:66:2f:68:
24:a2:fb:57:cb:3b:41:a3:12:98:c6:0e:e2:bd:33:
b8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E6:3C:A4:28:35:14:4D:5D:63:B4:12:18:44:F8:BC:A2:5A:25:14
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YuY8pCg1FE1dY7QSGET4vKJaJRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.159.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:03:79:f0:97:02:41:e8:61:ef:0f:e4:c2:54:ac:24:e5:9c:
25:2e:76:26:a4:42:6d:b5:7c:5a:64:64:2f:7a:81:30:3b:ca:
32:9b:17:15:65:3c:3a:3a:45:50:c3:6f:a3:72:ef:8b:8b:2f:
c2:6b:1b:2e:fe:8c:bc:2a:9e:ad:62:e6:ad:33:fc:6e:bf:2a:
4e:58:79:d1:9a:7a:f8:cd:ba:81:1d:0a:fc:bb:17:85:9f:86:
4d:37:43:5b:30:e7:fc:1f:a8:a2:46:a1:b9:84:7c:9a:44:30:
4c:d1:8a:54:37:f1:73:9e:e3:47:3b:ed:41:67:d7:26:91:14:
0f:b1:ae:d5:4b:a4:60:ba:58:b0:a0:8b:af:4f:53:5e:f0:4c:
1d:ed:75:6e:90:71:c6:cd:e8:2b:81:80:d9:31:21:c6:be:b8:
86:02:da:68:b5:d7:e8:57:ec:1e:bb:90:3d:2a:9e:00:ce:d7:
fe:83:be:e3:cd:0e:6f:03:6a:4e:14:7a:d6:59:72:74:92:e1:
e6:a1:0d:dd:d6:d0:61:0c:5a:aa:e2:a5:3d:fa:06:4d:d2:d7:
5d:8a:fc:d8:95:b1:df:2a:11:f2:d5:ca:cd:6b:c2:14:b9:f7:
a0:85:77:e8:7e:e6:06:dc:ae:45:9d:f8:ec:83:b5:78:1f:fb:
84:78:55:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:28 2024 by rpki-client on console-fra.rpki-client.org