Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yp9Ol2GUeSMMiCYFfhAq08eN_w8.roa
File: yp9Ol2GUeSMMiCYFfhAq08eN_w8.roa (raw, json)
Hash identifier: +s7V/iVEa9UDxXdMUl8pVTRmJwMExLguTjxJJvt7sHQ=
Subject key identifier: CA:9F:4E:97:61:94:79:23:0C:88:26:05:7E:10:2A:D3:C7:8D:FF:0F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B5BE80CBCE9CEAB9FC36AFEFCD918F4A2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yp9Ol2GUeSMMiCYFfhAq08eN_w8.roa
Signing time: Mon 23 Oct 2023 09:40:16 +0000
ROA not before: Mon 23 Oct 2023 09:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 45.147.227.0/24 maxlen: 24
185.238.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:e8:0c:bc:e9:ce:ab:9f:c3:6a:fe:fc:d9:18:f4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 23 09:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca9f4e97619479230c8826057e102ad3c78dff0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:c7:14:b0:1e:8a:70:cf:3a:c7:1a:5b:73:
e1:cb:ae:65:5f:10:4b:82:1e:91:60:06:a3:57:92:
74:57:cc:87:ba:53:b2:58:10:c1:1d:e5:33:21:86:
4d:4e:6b:48:b8:30:a6:58:96:86:4c:88:4d:b4:88:
65:ea:17:ed:db:8b:16:d0:8d:52:92:be:07:11:c2:
7e:9a:1d:e4:4b:c5:38:aa:ec:14:e8:02:2f:f7:1c:
cb:3a:41:a4:37:b9:df:a4:47:cb:c2:28:b7:40:ae:
5b:ac:77:36:d2:e4:07:80:ea:7f:5b:83:ac:f4:ed:
56:29:a7:c2:44:eb:7a:0a:c5:0e:dc:a1:c7:40:a8:
74:c8:5b:d5:96:e1:fe:35:a4:18:64:a3:31:db:49:
ce:14:f5:57:c8:71:3a:59:ac:7c:8c:2d:1a:af:9a:
61:d5:9e:12:73:32:f8:ab:d1:87:3a:2e:b1:25:45:
16:13:76:73:39:b4:6b:f1:85:7c:b5:eb:0b:43:ec:
70:9d:72:fa:81:68:e6:72:ea:63:1b:f6:99:b3:50:
8c:16:4c:29:a7:9a:09:be:70:55:41:2e:a8:d2:79:
47:f0:4a:9a:0e:56:8d:66:2f:35:20:b7:61:87:fe:
89:2b:63:ce:e5:e3:2a:fa:f7:7c:f4:02:e9:78:1a:
9d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9F:4E:97:61:94:79:23:0C:88:26:05:7E:10:2A:D3:C7:8D:FF:0F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yp9Ol2GUeSMMiCYFfhAq08eN_w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.227.0/24
185.238.229.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b5:2a:50:5a:96:41:a0:7c:e9:22:ec:fc:23:f8:19:93:ab:
92:a2:cb:47:a5:36:ea:03:81:d8:d5:91:3c:33:31:44:14:1f:
b3:2c:fa:f5:26:30:dd:62:df:6a:62:dc:9a:ef:ac:f1:7c:0d:
11:2f:84:15:c4:8a:78:e3:4b:fc:6c:32:f2:64:fa:6d:0d:ee:
70:ff:46:7e:9e:67:ac:1f:b6:fb:bd:1d:b6:d7:41:df:ec:cd:
b6:ae:c0:b6:b8:5a:71:77:78:e9:d0:80:e2:4b:38:64:ac:23:
59:db:d9:f5:93:08:b2:72:18:b4:b1:09:0f:f3:f0:07:12:ee:
c9:eb:c2:6d:47:dd:52:60:d9:90:04:1d:27:ea:07:ea:c0:f9:
a7:db:a0:22:8d:47:53:4f:5a:c1:b7:39:c5:84:8d:9a:b3:f3:
11:aa:41:e6:c5:37:25:2a:11:ab:3f:72:22:bc:50:7f:13:1e:
c2:44:8f:48:62:04:65:fb:eb:4b:b0:72:fa:8d:e2:ff:39:d8:
5f:db:89:e8:f6:49:42:fc:47:f2:d5:8d:c4:db:3e:73:f8:36:
13:28:0b:2f:98:a1:59:4d:f0:cc:9b:0e:a4:10:47:29:96:39:
ee:75:ca:66:44:f1:6b:bc:51:4d:5b:16:1a:17:76:37:8d:ee:
a3:cc:4a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org