Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/YKiZdkyZwr45p8rRMwDbWN69b3E.roa
File: YKiZdkyZwr45p8rRMwDbWN69b3E.roa (raw, json)
Hash identifier: idXtSgC1KCh8gzBFfb4Z4W6/yruADudH7RMRumDdics=
Subject key identifier: 60:A8:99:76:4C:99:C2:BE:39:A7:CA:D1:33:00:DB:58:DE:BD:6F:71
Certificate issuer: /CN=d598f4b23d3a9937b4434a42fede002dfc4817f2
Certificate serial: 01867CEEE85ACA86D3EC5E2CE14D1F87FAF2
Authority key identifier: D5:98:F4:B2:3D:3A:99:37:B4:43:4A:42:FE:DE:00:2D:FC:48:17:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Zj0sj06mTe0Q0pC_t4ALfxIF_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/YKiZdkyZwr45p8rRMwDbWN69b3E.roa
Signing time: Thu 23 Feb 2023 06:21:17 +0000
ROA not before: Thu 23 Feb 2023 06:21:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 217.119.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7c:ee:e8:5a:ca:86:d3:ec:5e:2c:e1:4d:1f:87:fa:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d598f4b23d3a9937b4434a42fede002dfc4817f2
Validity
Not Before: Feb 23 06:21:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60a899764c99c2be39a7cad13300db58debd6f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9b:53:f0:bc:94:10:5e:da:95:b8:8a:4e:0d:
84:df:dd:9c:d8:16:b2:2c:ab:e0:28:4e:ef:79:76:
e5:60:21:de:79:60:38:14:fe:47:22:0d:7e:1e:0a:
e4:ec:e2:12:f8:a7:76:c6:72:c3:5c:d7:28:7a:c8:
9d:9b:80:b0:86:b9:08:40:7b:c9:47:9b:97:d3:63:
1c:6a:7c:53:9f:9e:4b:b8:2d:a1:68:16:00:be:65:
ec:e9:38:c1:d5:a5:1f:b1:e5:92:1c:40:41:86:ea:
7f:c1:9f:b4:8b:dc:98:f2:b3:46:61:6c:e6:9e:3f:
bc:65:95:b0:e8:ed:e7:e9:1e:60:85:36:36:91:fe:
bb:79:2c:15:77:3b:71:56:7a:01:c2:44:15:03:59:
c6:f8:55:3a:59:e8:61:13:4f:9f:1b:8a:b7:1d:51:
18:d6:12:9e:49:fc:c1:8c:ec:03:23:4f:ba:69:74:
d3:d6:cd:b8:c6:57:71:f5:32:e2:fd:da:56:7c:f8:
0c:a5:bc:b4:a2:66:bf:b1:63:20:5c:1d:05:17:d4:
c0:24:6e:b6:88:f6:66:15:b6:54:48:36:e6:d9:0b:
e0:c4:36:6f:51:5d:4c:64:50:99:89:a5:6b:cc:5e:
2c:12:54:e4:c4:d3:a3:45:66:05:d3:93:2b:87:b0:
9b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A8:99:76:4C:99:C2:BE:39:A7:CA:D1:33:00:DB:58:DE:BD:6F:71
X509v3 Authority Key Identifier:
keyid:D5:98:F4:B2:3D:3A:99:37:B4:43:4A:42:FE:DE:00:2D:FC:48:17:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Zj0sj06mTe0Q0pC_t4ALfxIF_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/YKiZdkyZwr45p8rRMwDbWN69b3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ba3f2b-a225-44f6-8edd-cfcc20242b9f/1/1Zj0sj06mTe0Q0pC_t4ALfxIF_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.132.0/24
Signature Algorithm: sha256WithRSAEncryption
74:21:c4:0f:73:a0:a0:4b:8e:7c:80:68:a1:d3:e0:8a:6b:52:
72:ca:aa:60:9e:d1:0d:e3:cf:a7:97:e3:51:44:07:d1:b6:c8:
b5:53:ab:eb:df:29:79:b6:b4:62:f4:2e:3c:87:22:4c:46:83:
8f:e0:89:23:27:bc:da:cd:71:b5:c5:2d:be:0b:00:12:9f:cc:
89:2a:85:21:76:c9:b4:e0:25:3d:51:d9:a5:ca:90:86:af:b2:
5f:ef:03:ef:43:2c:37:75:9e:a1:ca:c5:02:04:74:3c:54:ff:
75:a7:f1:05:fd:6c:b7:03:d2:f4:b6:78:31:bd:9c:68:f6:6e:
99:5a:23:ba:b2:83:c3:e4:ab:bd:a6:3e:3b:19:fe:9d:c5:dd:
98:fa:df:1e:9b:3c:4c:71:c1:e8:17:d1:cd:22:65:11:7a:00:
bc:79:bd:3c:b4:78:0c:8c:06:95:15:25:9a:0f:ae:27:aa:01:
73:bc:93:c8:6e:e2:58:62:c5:a6:63:89:1a:aa:90:27:ce:92:
81:2b:fa:98:84:3d:88:3f:ab:29:21:98:3e:66:d0:37:b7:84:
b0:32:68:66:6c:ff:c2:a9:1b:fe:94:10:fc:86:76:4d:2f:44:
1b:16:00:98:55:c3:47:1d:ed:14:15:08:ec:29:20:08:6a:4d:
87:e0:25:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-fra.rpki-client.org