Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/YBS7qhL55LB-yDftRsXJVtBUxqs.roa
File: YBS7qhL55LB-yDftRsXJVtBUxqs.roa (raw, json)
Hash identifier: 8MlSOCYmFkJI/tlIdIas/qXhJLPbwoA3FHax/6SFVvw=
Subject key identifier: 60:14:BB:AA:12:F9:E4:B0:7E:C8:37:ED:46:C5:C9:56:D0:54:C6:AB
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 0185E8B9E11C89639389F55DB610192B00EE
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/YBS7qhL55LB-yDftRsXJVtBUxqs.roa
Signing time: Wed 25 Jan 2023 11:39:33 +0000
ROA not before: Wed 25 Jan 2023 11:39:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42875
IP address blocks: 89.167.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:b9:e1:1c:89:63:93:89:f5:5d:b6:10:19:2b:00:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Jan 25 11:39:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6014bbaa12f9e4b07ec837ed46c5c956d054c6ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:22:5d:d2:5f:bf:3f:99:48:8e:86:79:e2:ff:
39:9a:b5:d1:b4:60:23:b2:a5:16:92:23:9d:af:b1:
b2:17:40:5b:ea:c1:d8:53:8c:e8:8e:20:6a:f7:74:
3d:57:a4:2e:73:f0:f7:e9:60:ef:97:70:aa:55:25:
7f:29:88:88:ec:8b:63:f4:ee:22:a6:64:0a:a6:85:
fb:87:3b:26:aa:a0:86:2f:f5:9f:00:66:76:c0:ef:
06:e0:92:3a:61:b7:d9:67:90:55:9a:e2:d8:7d:80:
38:10:a4:3f:f4:ea:ce:1b:26:fc:34:1e:10:50:2b:
a9:88:23:9f:74:bb:4b:54:ff:80:cb:21:cf:81:67:
1f:e2:35:3d:cd:39:ea:54:a5:6a:d3:da:04:dd:f7:
f6:8c:25:1d:70:85:93:b2:b6:a1:ff:d3:80:53:37:
dd:8d:95:f7:ab:43:1c:05:c5:df:0c:5b:41:57:a2:
ea:bc:07:c9:62:b5:b7:fb:7c:76:ae:12:a8:3e:83:
87:14:71:94:35:ed:ef:a9:eb:39:4e:72:fc:6f:0b:
91:47:6c:1b:e4:8d:35:f2:d9:6e:c5:9b:fb:ea:97:
35:6b:8c:82:f1:6a:fa:4b:69:e3:e9:59:45:a9:56:
71:2c:4f:6d:fd:1d:9f:b8:4e:36:2f:d3:83:57:48:
9f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:14:BB:AA:12:F9:E4:B0:7E:C8:37:ED:46:C5:C9:56:D0:54:C6:AB
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/YBS7qhL55LB-yDftRsXJVtBUxqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.167.173.0/24
Signature Algorithm: sha256WithRSAEncryption
50:0f:9e:cb:fc:67:46:fa:7a:b0:08:36:5c:f3:bb:36:54:d3:
5f:d3:6d:ef:4c:a1:98:26:28:06:dd:47:51:5d:73:4b:c4:52:
88:05:c9:fd:f3:8d:49:ea:7c:62:3f:01:9c:88:22:7c:9a:aa:
09:9e:ca:3c:7c:cd:22:d6:0e:14:20:5d:45:01:d4:b3:76:3a:
55:e5:35:22:a4:1f:58:35:43:1d:b5:a9:b8:29:53:50:78:63:
7a:67:fe:70:38:39:cc:10:f1:f4:7f:0d:5d:60:52:97:a3:e4:
ae:c6:a3:d0:ef:db:79:76:7f:0c:2e:5f:a6:28:fa:6c:e9:ed:
78:71:84:36:70:48:fd:79:a8:f7:da:bd:41:5e:dc:64:9f:09:
80:a0:fe:8d:ea:ce:ff:49:76:71:ec:88:c8:67:8b:f7:ad:dd:
ef:67:5e:02:d0:fc:83:cd:6f:56:89:b4:d0:3f:32:8a:33:24:
f2:8d:ed:b1:94:b6:32:f6:c2:5c:ef:f2:d7:c2:02:15:f4:d2:
62:11:e0:15:7e:63:31:72:6f:9b:7f:d5:cc:14:dc:9c:ba:e6:
e9:42:81:f0:34:8f:b5:0c:70:4e:9b:f6:67:f3:79:c4:23:7d:
06:7e:75:8f:30:98:93:f8:11:0b:b0:f0:e4:6f:db:1c:9e:91:
43:43:3a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:26 2024 by rpki-client on console-fra.rpki-client.org