Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/e2346f-4831-45eb-a1fd-a89fbc41a86c/1/ytjrm5cnSebMu71WYDkPPJ9lZpU.roa
File: ytjrm5cnSebMu71WYDkPPJ9lZpU.roa (raw, json)
Hash identifier: mvEeVI72At6NPS2JBBNMtMAon8N2j+TBNVMjQx/76Ks=
Subject key identifier: CA:D8:EB:9B:97:27:49:E6:CC:BB:BD:56:60:39:0F:3C:9F:65:66:95
Certificate issuer: /CN=a463eb824231750be9a9f1d870400ce9e098bf93
Certificate serial: 01856C41225BC322EC8B8D1EAC6D6EF6089E
Authority key identifier: A4:63:EB:82:42:31:75:0B:E9:A9:F1:D8:70:40:0C:E9:E0:98:BF:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pGPrgkIxdQvpqfHYcEAM6eCYv5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/e2346f-4831-45eb-a1fd-a89fbc41a86c/1/ytjrm5cnSebMu71WYDkPPJ9lZpU.roa
Signing time: Sun 01 Jan 2023 07:34:45 +0000
ROA not before: Sun 01 Jan 2023 07:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.201.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:22:5b:c3:22:ec:8b:8d:1e:ac:6d:6e:f6:08:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a463eb824231750be9a9f1d870400ce9e098bf93
Validity
Not Before: Jan 1 07:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cad8eb9b972749e6ccbbbd5660390f3c9f656695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:76:bc:06:17:20:b4:6a:90:b3:98:bc:40:
b3:34:a8:0c:89:50:0b:db:c6:ef:da:59:12:31:ec:
b8:e0:e3:11:eb:fd:21:04:0f:91:50:10:16:b6:30:
6b:44:5b:61:1e:3a:b7:64:98:ec:e0:36:6b:37:93:
f2:9a:7b:56:da:9d:81:d3:6f:58:7b:90:22:6a:a2:
95:dd:ef:d6:08:1f:40:04:ae:1a:a4:7d:b5:82:6f:
35:d5:95:ac:f1:94:d1:c9:15:d7:8d:85:ca:2f:95:
9d:e5:1b:40:28:ec:dd:7e:71:1d:e6:f9:87:0f:47:
98:d4:ff:27:57:1d:26:42:e7:78:93:4f:8e:5d:67:
81:17:10:69:8b:b2:32:2d:a8:a4:ae:aa:c8:71:b6:
ae:da:48:f5:cc:22:3f:f1:81:da:66:01:6e:8d:6f:
eb:0e:71:bf:e3:27:fd:93:90:84:2c:e4:7e:22:c7:
8b:87:7d:b5:e0:13:0b:2e:57:2c:14:99:4b:04:38:
27:2c:86:1d:ab:72:ee:f0:c1:22:d6:6a:ae:0b:10:
60:42:07:84:d4:43:12:37:d5:95:32:b2:5c:1d:83:
42:11:8f:c2:ab:d9:86:38:74:28:01:86:72:e7:32:
a4:a3:97:22:b9:2f:19:28:4b:43:c1:e5:58:33:c4:
74:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D8:EB:9B:97:27:49:E6:CC:BB:BD:56:60:39:0F:3C:9F:65:66:95
X509v3 Authority Key Identifier:
keyid:A4:63:EB:82:42:31:75:0B:E9:A9:F1:D8:70:40:0C:E9:E0:98:BF:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pGPrgkIxdQvpqfHYcEAM6eCYv5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/e2346f-4831-45eb-a1fd-a89fbc41a86c/1/ytjrm5cnSebMu71WYDkPPJ9lZpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/e2346f-4831-45eb-a1fd-a89fbc41a86c/1/pGPrgkIxdQvpqfHYcEAM6eCYv5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.253.0/24
Signature Algorithm: sha256WithRSAEncryption
75:99:32:d1:98:ec:70:6e:95:d1:33:20:d6:4e:ee:72:0a:91:
19:dc:e3:c8:f5:92:11:c6:2e:9e:e7:50:ec:ac:cd:48:72:a2:
86:c3:1f:1e:e1:58:da:07:f2:dc:68:b5:2f:29:61:17:f0:b6:
26:ae:65:cd:48:38:0e:c9:88:1a:18:1f:f0:bf:f0:db:4d:57:
38:e1:66:12:2f:7e:97:8e:63:89:e8:49:a2:3f:c5:3c:34:38:
2a:17:37:19:9d:44:91:26:cf:08:2d:80:27:be:4e:b5:77:c6:
db:96:26:4e:58:ea:7d:f3:04:c3:6f:77:47:c8:a4:a8:a2:9b:
e0:59:eb:38:ef:c4:42:73:b3:7c:4b:08:d3:36:bb:cb:63:4c:
a8:84:02:a3:77:04:58:97:5d:19:cf:e9:26:93:6e:f5:cd:a7:
22:5a:77:63:5d:27:8f:54:c5:6d:71:e9:41:67:eb:da:ea:cf:
66:2b:6a:ae:dc:b4:9c:c4:f2:78:2f:3e:a0:a5:02:c5:bb:cf:
01:e1:e2:3c:99:3d:28:22:cc:c6:a4:46:79:c2:b0:d4:c9:c5:
4e:69:29:96:51:a0:13:61:26:0d:5d:52:50:bf:10:30:f0:c5:
c4:d1:36:af:bf:01:49:f9:6f:28:4b:2f:05:59:df:b7:de:d0:
d8:7d:23:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:23 2023 by rpki-client on console-fra.rpki-client.org