Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/YLdVrlAyqr-J43xavVgvsJYZwB0.roa
File: YLdVrlAyqr-J43xavVgvsJYZwB0.roa (raw, json)
Hash identifier: oF5NWRKmV3vIxLcqefbaeNBOqCTRIYpVITVg9XilHlw=
Subject key identifier: 60:B7:55:AE:50:32:AA:BF:89:E3:7C:5A:BD:58:2F:B0:96:19:C0:1D
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0192E22DBE0C550BC54391D85AC8CE67012E
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/YLdVrlAyqr-J43xavVgvsJYZwB0.roa
Signing time: Thu 31 Oct 2024 10:45:01 +0000
ROA not before: Thu 31 Oct 2024 10:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57013
IP address blocks: 185.210.138.0/24 maxlen: 24
193.42.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:2d:be:0c:55:0b:c5:43:91:d8:5a:c8:ce:67:01:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Oct 31 10:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60b755ae5032aabf89e37c5abd582fb09619c01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7e:0f:2c:b8:ad:63:71:6a:43:a9:7a:52:af:
5d:3a:40:c2:2d:bd:76:d3:ab:73:20:2d:0f:b5:b3:
7c:32:60:46:cb:ec:f2:06:16:e5:60:64:68:02:64:
22:dc:13:02:56:10:64:b8:d5:2c:28:87:09:dd:be:
3b:27:37:d3:9c:c8:a6:51:a3:a5:43:be:a6:ed:ed:
55:22:81:24:2b:51:39:73:35:d1:05:ec:b8:ef:2e:
9c:05:74:2e:23:e0:1e:e5:17:eb:08:ab:fb:bc:9a:
1f:0c:47:67:f7:a8:c8:f5:9c:e6:f2:39:e7:1b:14:
17:4d:e9:9d:0d:70:db:c1:ce:48:a0:b9:d2:0f:80:
d2:f1:e1:d7:10:45:22:77:fc:c2:c1:3e:6b:cc:32:
78:71:3e:48:68:84:83:c9:1f:5f:82:6e:c2:3b:78:
ac:57:66:57:fd:10:4c:2e:09:ab:eb:4f:57:0d:ed:
bf:29:52:05:32:99:8c:99:20:64:a3:36:82:37:e8:
d2:2e:a2:02:17:a2:5e:54:2a:56:5b:63:b9:d5:83:
62:06:ca:fe:0e:1c:75:76:97:0b:b4:f0:b8:fc:ef:
5f:be:39:7b:01:e5:ca:93:04:cf:a9:39:03:08:c2:
ef:22:cb:1f:ee:46:cc:7e:87:5a:62:8c:0e:ce:0e:
ae:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B7:55:AE:50:32:AA:BF:89:E3:7C:5A:BD:58:2F:B0:96:19:C0:1D
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/YLdVrlAyqr-J43xavVgvsJYZwB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.138.0/24
193.42.122.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9e:0d:37:94:13:04:c0:78:d0:b0:a0:e2:61:f4:05:ec:f0:
53:56:6c:38:fc:c5:b3:c1:c1:d8:6a:9d:9e:d8:d7:63:81:78:
40:db:d9:a0:b3:cf:2e:b0:ef:46:a1:37:7a:53:46:7d:bf:c6:
a9:e3:62:6c:cc:94:84:65:82:f4:0f:d2:ea:6e:26:87:98:56:
c5:95:8f:c9:f1:fb:3a:39:cb:d0:c6:64:d9:7e:58:4c:32:ce:
b0:1c:e8:54:c0:4a:40:62:f5:4b:5e:15:0a:ec:b0:44:73:f5:
16:0e:6c:04:54:ef:e3:7e:d7:46:b0:44:09:8a:30:ca:a0:95:
49:96:1e:6d:9f:06:94:97:56:14:c6:14:e8:9f:6b:90:be:0a:
91:ec:17:6b:c5:9a:b2:f1:3c:bc:7f:1e:bc:25:de:d9:ba:ec:
78:25:94:2a:92:b2:69:a5:09:89:8e:ee:f9:0d:8f:e6:06:ba:
04:62:2c:84:2b:0f:61:e0:5f:d0:f4:b9:25:6a:81:6e:a8:90:
95:1e:55:59:92:02:32:a1:fc:6a:fe:df:c8:29:85:8e:f7:19:
18:d9:73:a8:07:d5:e9:8c:a5:4b:de:40:38:7f:ae:39:48:33:
8f:24:4a:1a:f8:6b:af:d7:f0:05:ca:ec:a0:d3:cd:4d:41:9a:
f1:49:6a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:16 2025 by rpki-client