Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/YZ0Ie_H708TbhCWBzfewFdTMJbI.roa
File: YZ0Ie_H708TbhCWBzfewFdTMJbI.roa (raw, json)
Hash identifier: gOI8pd2CTH4luBrcLLvIZGuQ/cfLRyD3T7BBcYglI1Y=
Subject key identifier: 61:9D:08:7B:F1:FB:D3:C4:DB:84:25:81:CD:F7:B0:15:D4:CC:25:B2
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 0190917BA85BA73A8909E3C58AD9A6AFC278
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/YZ0Ie_H708TbhCWBzfewFdTMJbI.roa
Signing time: Mon 08 Jul 2024 08:35:18 +0000
ROA not before: Mon 08 Jul 2024 08:35:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39841
IP address blocks: 84.17.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 07:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:7b:a8:5b:a7:3a:89:09:e3:c5:8a:d9:a6:af:c2:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Jul 8 08:35:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=619d087bf1fbd3c4db842581cdf7b015d4cc25b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3b:fe:cb:65:3c:7a:50:43:c6:a9:47:51:08:
8b:53:82:95:17:df:c8:67:c5:ef:aa:5f:b3:12:73:
b1:84:e6:95:03:4e:80:1e:76:2d:e9:22:d6:9d:cb:
8e:71:ff:73:a6:37:23:b7:bb:6b:d0:62:30:a1:b2:
98:df:92:66:0e:80:6d:29:32:64:52:c5:96:f4:c4:
38:a3:c4:99:6a:67:dd:02:3f:37:b8:34:89:72:4d:
2a:a3:fd:4c:35:a9:58:c6:0d:13:91:18:32:bf:56:
50:e0:a4:b7:2f:09:6a:c6:20:9c:21:dd:92:a0:b3:
35:52:15:32:2a:1c:a8:0e:cf:19:26:6e:02:e1:7f:
a9:02:f2:92:ee:97:f7:c9:1b:b1:47:5e:a2:3d:be:
c0:5f:8e:3a:ae:56:97:bd:d0:8f:f5:d6:f5:57:e5:
d7:08:0c:cb:63:56:ad:df:64:de:59:20:70:84:8b:
32:06:1c:2e:38:16:61:fa:c6:ca:c0:cd:4a:d6:d6:
3e:ef:f0:d9:d3:49:cd:e5:b2:35:d5:b7:39:e9:7f:
90:40:fa:dd:7d:15:7e:86:a6:9b:b8:de:48:f6:18:
87:0a:b2:13:36:30:62:18:5e:28:35:72:d8:23:71:
2a:88:46:ce:1e:58:b3:76:2f:32:7b:fb:4b:20:42:
2e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9D:08:7B:F1:FB:D3:C4:DB:84:25:81:CD:F7:B0:15:D4:CC:25:B2
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/YZ0Ie_H708TbhCWBzfewFdTMJbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.75.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:61:ff:20:5f:fa:f3:a4:4e:b5:20:ae:5c:10:10:68:a6:bc:
f1:4f:1d:de:8d:44:aa:ee:bb:02:7c:d4:ea:41:9e:17:df:cc:
59:73:13:71:4b:4e:53:29:1f:66:d6:d5:0c:35:99:a2:03:d1:
80:6b:17:80:8f:f1:b0:a5:62:4e:aa:90:3f:4f:57:7b:38:19:
2a:e5:fe:12:3f:70:9d:24:d3:4e:9f:ac:a9:78:ba:84:b0:af:
ff:de:ac:bc:cd:af:38:b1:a7:85:9b:e4:1c:53:60:ec:b5:5b:
b5:a8:60:ba:bf:7b:01:f0:5b:45:bf:c9:29:8f:2a:5d:42:6c:
a7:d2:a9:19:bd:a9:c3:c8:77:a2:88:dc:15:d7:72:53:5d:13:
04:2b:0f:54:74:23:d7:27:b2:77:94:91:40:fe:60:c0:c1:b1:
a4:90:37:a9:f2:38:42:8c:95:e6:e7:7d:58:fe:3a:79:77:b1:
40:2d:27:eb:c6:0e:0a:b8:a2:c9:d0:97:44:b5:7b:b2:29:83:
28:8c:94:a2:e9:43:b2:44:76:d5:56:95:31:30:58:ab:21:ef:
8c:37:b7:6c:55:7a:75:cf:5b:2a:57:f6:0c:2f:31:18:6d:b2:
48:4d:a5:bc:87:ad:76:d9:27:d2:d3:96:c8:c7:f7:68:65:26:
c8:02:91:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 08:57:20 2024 by rpki-client on console-fra.rpki-client.org