Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ykyZXGANSTUK--LxqJ_qINjA4wM.roa
File: ykyZXGANSTUK--LxqJ_qINjA4wM.roa (raw, json)
Hash identifier: q7HGiFlq7sWScHHb3botc9F0KTbfi346G80AGEOY2pE=
Subject key identifier: CA:4C:99:5C:60:0D:49:35:0A:FB:E2:F1:A8:9F:EA:20:D8:C0:E3:03
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018AEF4DFC144EBC2A28EF32D2135D4087BA
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ykyZXGANSTUK--LxqJ_qINjA4wM.roa
Signing time: Mon 02 Oct 2023 07:32:59 +0000
ROA not before: Mon 02 Oct 2023 07:32:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51921
IP address blocks: 185.58.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:4d:fc:14:4e:bc:2a:28:ef:32:d2:13:5d:40:87:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Oct 2 07:32:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca4c995c600d49350afbe2f1a89fea20d8c0e303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:61:35:da:c4:52:08:fe:68:d7:d5:60:07:
d4:4a:5c:0d:4d:53:b6:29:02:df:3e:61:8c:f7:8c:
98:dd:32:83:5b:bc:84:67:a0:18:e2:d6:aa:fa:83:
e0:65:13:60:db:1c:24:a7:80:35:dc:b1:32:46:de:
ed:0d:d0:61:b0:03:19:42:41:7c:ec:e4:1a:3f:13:
10:82:3a:e5:23:b3:5f:ba:bb:fb:42:d9:9b:8e:ed:
e9:e9:b4:7d:8b:89:4a:49:3f:5b:6d:a5:2f:d7:fa:
0d:4b:88:0e:33:e9:63:ec:a2:64:39:c1:b5:49:09:
32:d8:fb:ed:62:39:26:a9:7f:ea:98:d2:e4:79:ed:
3d:b5:b6:08:7a:14:2a:7f:c1:f6:29:96:41:ce:5f:
7b:30:22:14:ba:87:25:98:21:37:24:47:90:aa:15:
7d:e7:38:01:bd:7c:66:1d:89:4b:e6:c1:af:3d:0c:
8c:e0:82:e4:8e:3e:e6:6b:ee:cc:c3:a7:98:52:e6:
d6:c0:76:a8:1b:c4:b8:26:39:b6:ba:16:b0:41:c2:
2e:91:8f:b5:9d:f1:40:70:fd:54:5d:37:2b:d9:09:
47:ee:08:df:d6:85:29:68:d9:2f:5a:5d:05:78:79:
8c:f5:b5:52:c6:d2:35:01:97:29:56:fc:6d:dd:75:
f1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4C:99:5C:60:0D:49:35:0A:FB:E2:F1:A8:9F:EA:20:D8:C0:E3:03
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ykyZXGANSTUK--LxqJ_qINjA4wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.205.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:64:1e:8d:e1:09:02:4e:67:0f:a9:67:34:67:af:72:2c:89:
29:e8:8c:b2:f6:5b:a1:db:eb:d0:95:cb:53:fb:c6:62:19:b5:
22:ce:c5:fa:6c:bd:d6:1c:a4:9d:16:c6:65:63:50:45:59:62:
6d:91:bc:6c:12:9b:f4:c0:7c:82:d4:7f:71:32:69:11:43:f5:
22:82:22:09:cb:89:31:87:46:e2:4b:6f:6a:3d:02:97:7b:f6:
b3:fa:18:58:50:76:9a:c5:c4:b0:36:49:ac:8a:af:8d:04:37:
99:c6:a6:a8:02:24:f1:3f:b5:d9:b2:1b:df:a9:e2:b6:df:d1:
d3:d3:9c:3a:0c:70:86:bd:9f:ba:7d:7d:9c:b2:52:3d:fc:ac:
06:7a:29:fd:f1:99:22:28:eb:06:9d:8a:d6:db:7a:04:26:be:
37:3d:9c:f5:56:63:6b:6b:ea:82:9e:a6:21:19:32:d5:9c:08:
49:92:7f:40:49:5f:44:1b:55:c1:ad:11:dd:0d:49:c6:9e:d4:
38:5b:f3:02:b8:cd:5e:19:06:ae:32:6a:8e:7a:01:f3:47:57:
f8:0a:b4:db:c1:57:7e:69:cf:ac:1f:95:c3:61:a0:80:74:c8:
c7:ec:3e:04:38:39:71:5d:2c:df:70:09:fa:e2:7c:c0:b5:40:
51:fd:bf:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:11 2024 by rpki-client on console-ams.rpki-client.org