Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/YuKAkys9RUZqscOw5zrziWXFRSQ.roa
File: YuKAkys9RUZqscOw5zrziWXFRSQ.roa (raw, json)
Hash identifier: vBJQBjUMjyqNES/xwkhvYlVzOd1KmzLIHI0+ofmTNYs=
Subject key identifier: 62:E2:80:93:2B:3D:45:46:6A:B1:C3:B0:E7:3A:F3:89:65:C5:45:24
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 018BF71970A58B027D5BB4F70421A0BFC840
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/YuKAkys9RUZqscOw5zrziWXFRSQ.roa
Signing time: Wed 22 Nov 2023 12:55:21 +0000
ROA not before: Wed 22 Nov 2023 12:55:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 84.17.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:19:70:a5:8b:02:7d:5b:b4:f7:04:21:a0:bf:c8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Nov 22 12:55:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e280932b3d45466ab1c3b0e73af38965c54524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6d:09:dc:df:1c:72:08:e8:84:25:18:f1:77:
00:38:1d:ac:12:f8:dd:f9:96:ef:b5:8f:98:bb:6c:
77:9c:da:19:86:36:5c:bd:65:57:3f:33:9b:30:92:
ba:5e:c0:b8:9e:cb:e0:69:09:8f:30:c5:68:c4:ff:
e2:24:27:76:2c:21:01:a2:f4:f3:8c:45:61:f4:4f:
f8:06:f0:b6:a1:a0:9f:4e:5f:cf:44:d6:26:8d:0e:
4d:09:59:34:c0:f8:b7:f8:ff:c0:6d:7a:b1:66:ce:
d7:38:36:07:87:a6:54:67:17:19:2a:7b:e2:8f:84:
ef:10:e0:fa:a4:4b:05:e8:15:d0:80:37:25:1a:01:
ab:b4:f2:dc:34:86:75:35:be:9e:c4:ac:1a:7f:bf:
7e:04:5a:9b:76:95:1c:70:12:ad:84:fb:17:c7:8e:
f8:12:18:bc:9a:ee:63:a9:ec:b7:92:84:74:97:5d:
6a:f9:88:11:ef:66:19:17:69:48:16:af:63:97:05:
ac:19:9e:dd:10:41:93:4b:e0:ff:24:2a:ed:cf:0b:
5e:e3:05:37:92:97:13:c3:69:60:bf:9b:89:09:43:
88:a6:c3:3c:60:3c:d9:d7:54:9d:c1:f3:e7:e7:96:
d6:26:70:75:af:cb:c7:56:a2:b0:6c:63:92:cb:cb:
31:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E2:80:93:2B:3D:45:46:6A:B1:C3:B0:E7:3A:F3:89:65:C5:45:24
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/YuKAkys9RUZqscOw5zrziWXFRSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.65.0/24
Signature Algorithm: sha256WithRSAEncryption
28:dd:6e:a5:6f:09:46:a7:e8:d4:36:9b:14:d7:1d:1e:99:1c:
c2:d6:3d:0a:da:bf:d1:d7:7d:78:78:d5:a9:f7:37:df:a9:0f:
b4:d9:92:f2:e5:6f:91:07:c0:dd:08:e9:3a:5a:76:ec:c8:f6:
54:15:c6:37:53:d0:ac:88:76:bd:57:64:6e:85:b1:16:5b:83:
5a:4d:08:52:1a:ee:37:a1:b8:54:a8:7e:d8:9a:88:66:1d:a5:
03:c3:aa:a9:0d:e1:a0:a2:9a:de:66:8d:62:45:07:f8:f1:c3:
fc:34:27:e9:a0:73:81:a0:5c:e6:98:ea:73:cc:f7:69:66:59:
27:36:5c:0b:07:01:6a:9a:df:ce:13:89:af:0a:b4:19:0f:47:
ea:ef:96:09:64:2a:3b:17:43:fa:fa:22:ee:63:a3:d1:c0:f4:
8d:36:0e:75:dd:0a:25:e0:2c:93:b6:89:db:9c:33:12:e5:43:
7c:be:32:34:5b:cc:aa:25:d5:2d:a8:50:23:f2:31:98:93:03:
f5:f4:f4:99:64:72:86:12:ac:ed:e1:09:b4:7a:4e:1a:65:77:
2e:42:a0:0c:ad:75:1c:eb:b0:b9:10:1f:73:90:e2:84:21:eb:
68:8f:6f:14:17:0f:03:ef:92:23:6c:67:f9:1d:1b:0a:94:e4:
fa:a1:78:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:45 2024 by rpki-client on console-ams.rpki-client.org