Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/ye_GgOf9NMTTO_mY2qcUqe8xSYE.roa
File: ye_GgOf9NMTTO_mY2qcUqe8xSYE.roa (raw, json)
Hash identifier: qFVRUGzN4hucmSS7lSnCKF5Z7/B4nlqiCVzIozVBeSU=
Subject key identifier: C9:EF:C6:80:E7:FD:34:C4:D3:3B:F9:98:DA:A7:14:A9:EF:31:49:81
Certificate issuer: /CN=d9efe9d36f5f88fdf04742c4140c7532090ab770
Certificate serial: 018570C2DA72712660081B6BA699BFE7CE12
Authority key identifier: D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/ye_GgOf9NMTTO_mY2qcUqe8xSYE.roa
Signing time: Mon 02 Jan 2023 04:34:56 +0000
ROA not before: Mon 02 Jan 2023 04:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209622
IP address blocks: 185.131.146.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:da:72:71:26:60:08:1b:6b:a6:99:bf:e7:ce:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9efe9d36f5f88fdf04742c4140c7532090ab770
Validity
Not Before: Jan 2 04:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9efc680e7fd34c4d33bf998daa714a9ef314981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:40:8f:41:d3:b4:a0:65:04:16:6c:e3:b5:e0:
e8:58:c8:62:8d:33:1c:6a:8b:3a:36:f6:a9:59:ff:
93:a7:ee:5c:f9:d8:7c:f2:c7:59:62:3b:e1:6d:95:
0d:94:b6:78:93:2c:0e:84:e4:05:61:35:1b:08:cf:
8f:05:fe:50:79:41:87:f4:77:e6:5a:f7:53:74:54:
e4:31:2a:8b:80:45:17:1e:c3:de:99:76:15:4b:88:
40:04:d5:a5:26:b5:e8:b7:2f:08:58:ca:d0:b1:12:
16:88:fc:01:6d:f4:0d:28:e3:ff:3f:45:7b:0f:f2:
94:df:80:a0:28:ca:d2:b0:6b:e2:00:4e:24:79:f8:
9e:6f:57:d1:ef:00:0e:99:8a:6c:7e:e5:b1:2a:a8:
e4:2b:82:68:98:ab:65:ab:a7:ef:d2:00:ad:3e:78:
7c:28:fa:53:fb:4e:fe:06:6a:e2:b4:72:8a:67:0a:
f6:0a:a1:41:90:e2:c5:23:b2:55:24:c4:6b:a5:73:
70:5d:80:e6:05:22:ca:cb:9d:df:86:26:b9:af:31:
bf:94:8a:8e:bf:e7:d1:de:be:28:04:f7:86:08:2f:
d9:d8:c9:a8:29:5c:00:6d:04:f0:c5:65:b6:d4:87:
11:a2:85:8a:0c:45:11:51:66:1b:39:91:e6:85:d0:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EF:C6:80:E7:FD:34:C4:D3:3B:F9:98:DA:A7:14:A9:EF:31:49:81
X509v3 Authority Key Identifier:
keyid:D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/ye_GgOf9NMTTO_mY2qcUqe8xSYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.146.0/23
Signature Algorithm: sha256WithRSAEncryption
96:1d:8f:c8:1b:2a:16:43:0c:44:c5:15:ec:8a:72:32:08:67:
4b:68:34:8e:64:53:3f:66:04:8a:85:a0:b4:31:32:b0:e0:fa:
d1:41:d5:2f:0a:d7:f7:6a:f0:e0:bc:f9:65:7d:00:37:ea:82:
62:7f:c8:92:f0:8d:54:1c:06:68:47:f8:79:07:a0:8e:7e:6c:
ef:ac:0b:fc:17:29:ca:04:b7:c8:11:82:53:cc:06:ee:b9:bb:
e1:d5:66:02:e2:49:11:1f:94:28:66:96:c2:e0:84:23:8b:b5:
1b:04:0e:bc:6a:d5:be:05:a5:33:51:f6:e0:b3:e6:de:04:78:
51:31:9f:77:d9:2b:b0:51:5e:7c:04:7a:21:67:a1:39:ce:17:
90:dd:d3:9d:68:40:c9:ce:dd:12:57:8d:77:5a:1f:80:74:e7:
9e:b2:5d:10:6b:fe:bc:12:2b:2c:5c:87:a9:92:88:c4:b7:43:
79:12:93:9b:d6:40:fc:2c:82:ea:b3:42:24:76:41:a9:b0:7c:
36:7d:04:1e:e6:8d:26:b0:08:59:38:ec:af:42:24:b7:a3:11:
28:b9:f6:c9:d8:5b:8a:bd:03:b2:56:9c:1d:18:df:9d:79:29:
d2:dc:cf:7c:01:62:fd:ff:35:0b:d8:c7:0d:25:93:6a:9a:06:
fb:86:fc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:19 2024 by rpki-client on console-ams.rpki-client.org