Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YuiSibALm74LGuDWEQN5EFq6IYM.roa
File: YuiSibALm74LGuDWEQN5EFq6IYM.roa (raw, json)
Hash identifier: 1EOrwjDApWH7t71WD1gkM1PManczq8+VWr9j/Ze33XU=
Subject key identifier: 62:E8:92:89:B0:0B:9B:BE:0B:1A:E0:D6:11:03:79:10:5A:BA:21:83
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0185710306675E2A4A1A84AEE15A81157859
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YuiSibALm74LGuDWEQN5EFq6IYM.roa
Signing time: Mon 02 Jan 2023 05:45:01 +0000
ROA not before: Mon 02 Jan 2023 05:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36351
IP address blocks: 45.85.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 04:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:06:67:5e:2a:4a:1a:84:ae:e1:5a:81:15:78:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e89289b00b9bbe0b1ae0d6110379105aba2183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ee:4a:ce:17:88:63:52:78:1a:4f:ef:ba:7f:
53:38:7a:21:3b:90:13:19:0f:6f:8c:5d:4b:59:00:
8c:15:51:f1:c2:1b:a2:3e:0f:81:06:9a:ed:15:7a:
d6:13:2a:84:1b:62:ae:3a:19:01:31:e1:83:69:53:
76:4a:12:15:85:fb:3a:00:88:53:e5:2d:7a:df:bf:
5e:c1:88:4a:99:3d:c1:f1:8f:b2:87:5b:4f:e7:cc:
a7:b7:95:13:ee:85:1e:8f:0a:53:9e:a0:e8:01:40:
50:b9:25:77:ca:6d:42:8d:91:09:65:e7:71:2e:d3:
9c:a1:e7:c7:54:74:53:28:91:b2:0f:7a:bd:89:d9:
76:58:68:84:34:dd:68:b2:2d:64:0d:68:6d:f1:be:
ec:3a:b7:12:e7:31:19:c5:3b:f5:bd:ea:0a:58:64:
d6:36:d1:3c:d4:58:66:3b:92:91:61:1d:98:f0:8d:
f8:4f:42:e7:47:c5:d6:f2:df:96:a2:2c:33:06:46:
e7:1f:9b:88:0d:b5:bb:41:34:ba:82:01:cd:bc:aa:
7c:c8:9d:d2:56:c5:7d:f5:77:2f:e9:69:6a:67:3c:
2f:f1:57:97:52:41:a3:1e:bc:c5:57:98:d2:fb:b9:
35:9d:88:26:71:bd:80:6a:f8:ea:b2:6a:a6:0b:4c:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E8:92:89:B0:0B:9B:BE:0B:1A:E0:D6:11:03:79:10:5A:BA:21:83
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YuiSibALm74LGuDWEQN5EFq6IYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.107.0/24
Signature Algorithm: sha256WithRSAEncryption
81:31:a5:fc:71:11:27:c5:d4:ce:60:20:e6:4b:0f:98:ad:97:
07:1d:6b:08:28:7d:59:f9:a7:0b:44:e7:c2:d5:ed:e9:e9:7b:
d8:1e:37:8f:38:3c:23:85:47:a2:05:66:8a:86:d5:5b:15:62:
23:3e:53:d8:fb:23:00:4b:33:14:75:05:04:17:33:6b:7f:56:
3b:37:bb:ac:a0:44:81:35:d1:ad:5b:f5:72:02:14:d3:b1:41:
6c:1e:8b:ab:26:f7:aa:42:ac:5b:b1:47:cf:da:25:93:b7:34:
8a:a0:72:9c:a1:9c:1b:9d:93:a5:e6:01:3a:54:7b:f6:30:55:
03:ee:a2:0e:a7:3c:c5:5d:ec:1c:26:8e:d0:d5:a0:7f:b8:f2:
03:ee:bf:c0:45:96:c2:93:b7:4b:05:1d:1d:29:02:7f:16:4f:
47:50:16:8f:07:2e:01:74:fe:cc:f6:53:4a:d0:64:7d:0e:06:
56:8e:81:31:0b:de:a6:77:b5:39:bc:7f:cc:ab:c6:29:7a:06:
c2:3a:f5:49:c4:3c:1a:e6:59:2c:55:2d:46:7c:ea:51:2b:1d:
f0:9c:0e:42:87:72:64:b7:ce:9d:52:05:e5:64:4b:6a:9d:f4:
18:0a:22:bf:27:d4:b4:28:0e:97:aa:37:0f:1f:c4:c4:94:f2:
4b:22:31:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:46 2024 by rpki-client on console-fra.rpki-client.org