Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/yoMf-quU94Zm5fj9Oof5j2qNBnA.roa
File: yoMf-quU94Zm5fj9Oof5j2qNBnA.roa (raw, json)
Hash identifier: +Q2SLk/ZxCB3NytRxADk5xAYvTBa0DbL18n7yHXQMT8=
Subject key identifier: CA:83:1F:FA:AB:94:F7:86:66:E5:F8:FD:3A:87:F9:8F:6A:8D:06:70
Certificate issuer: /CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Certificate serial: 0187099BA54B1BF7622AB5CDB25CEDD7FACE
Authority key identifier: 53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/yoMf-quU94Zm5fj9Oof5j2qNBnA.roa
Signing time: Wed 22 Mar 2023 13:56:47 +0000
ROA not before: Wed 22 Mar 2023 13:56:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 185.221.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:09:9b:a5:4b:1b:f7:62:2a:b5:cd:b2:5c:ed:d7:fa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Validity
Not Before: Mar 22 13:56:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca831ffaab94f78666e5f8fd3a87f98f6a8d0670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:98:a0:c2:33:bb:82:98:66:86:9b:af:69:eb:
9d:30:bd:67:b4:a4:11:f1:fd:18:c6:cc:e9:ab:fd:
a5:2a:49:8b:81:99:43:49:03:e7:b2:23:e6:99:40:
25:ac:57:8e:d5:8c:ab:32:3e:28:bf:d0:9c:0a:5b:
08:9d:29:1b:0b:09:25:3a:5c:56:5f:74:fa:ef:7b:
22:39:e6:e5:4d:ef:c3:1d:59:b1:17:65:f2:3f:ca:
97:63:66:88:0d:5e:c7:16:f0:96:e3:93:52:1a:06:
4f:62:10:b0:bd:b5:57:01:2b:44:78:cb:9c:3c:77:
53:12:d8:f0:86:13:35:70:70:ee:c9:07:9e:9a:8a:
81:8f:62:b9:b0:d1:9b:54:de:cb:33:34:50:73:1e:
b8:6c:1a:4e:6e:23:cf:1e:ea:7c:6b:13:d9:6a:5c:
33:97:36:54:80:42:5c:19:59:b5:e6:d2:e4:e2:c4:
f5:86:71:21:c8:90:7c:ac:5f:5b:9e:6c:dc:50:73:
1b:84:28:99:ab:5d:35:3c:9a:7d:72:f9:05:ca:f2:
5e:4d:68:0d:48:16:f9:a5:7f:15:96:26:2a:f7:76:
93:76:45:11:bc:f7:13:b9:cf:41:f9:71:44:0c:c2:
3f:ae:bd:35:09:32:61:26:7b:af:b1:a6:fb:6f:f9:
67:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:83:1F:FA:AB:94:F7:86:66:E5:F8:FD:3A:87:F9:8F:6A:8D:06:70
X509v3 Authority Key Identifier:
keyid:53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/yoMf-quU94Zm5fj9Oof5j2qNBnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.63.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:36:b3:a7:aa:3e:e1:dd:ae:0c:33:78:eb:72:36:cf:3d:13:
ba:9b:de:f1:d7:41:11:d5:e6:9d:3b:53:76:a9:b2:c7:71:11:
1a:1f:53:d7:30:38:2a:37:c2:2f:95:b2:4a:59:ee:32:3f:49:
a5:63:6e:09:48:d8:ab:12:1d:67:6f:51:55:2e:8a:f1:eb:08:
39:36:6d:54:0f:28:a2:47:27:07:38:34:d9:50:0c:35:92:1d:
e4:89:f6:1e:a1:63:1f:99:ea:f1:10:a7:76:04:7f:99:02:2e:
80:e0:38:01:1b:35:a9:a6:82:49:58:09:36:69:43:cb:b7:a4:
07:d1:41:08:e2:ac:81:00:83:a0:96:69:e8:97:3c:88:fb:9f:
20:da:4a:9c:23:87:82:4a:3e:2e:84:ed:2e:75:32:cc:fa:03:
8e:e8:e7:9d:60:f5:55:86:3f:8e:ee:59:9e:49:7f:5f:57:51:
42:f7:5d:e9:1c:33:28:9d:c1:a9:91:2e:d3:8e:7f:93:dc:13:
57:a3:f0:63:38:28:31:31:3a:bc:80:f9:46:ad:62:17:b8:b0:
32:cd:fc:1a:cc:66:4c:07:e4:aa:dc:36:6a:cf:01:fa:1e:10:
97:e9:9f:6f:11:a4:59:3a:61:da:c1:38:76:41:6a:b7:46:ff:
2a:7e:33:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org