Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/YtlTBQVH4PCP7BPHIHYyhJrH5II.roa
File: YtlTBQVH4PCP7BPHIHYyhJrH5II.roa (raw, json)
Hash identifier: ORht6liBZr34L3FDINzFRM6DyITB2LF1v941UD6Flj4=
Subject key identifier: 62:D9:53:05:05:47:E0:F0:8F:EC:13:C7:20:76:32:84:9A:C7:E4:82
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 0185708CC98EA4DF25171C58ACD62DB8D0C5
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/YtlTBQVH4PCP7BPHIHYyhJrH5II.roa
Signing time: Mon 02 Jan 2023 03:35:52 +0000
ROA not before: Mon 02 Jan 2023 03:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48810
IP address blocks: 91.238.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c9:8e:a4:df:25:17:1c:58:ac:d6:2d:b8:d0:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Jan 2 03:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62d953050547e0f08fec13c7207632849ac7e482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0e:af:95:40:77:a0:b4:45:97:ef:2f:91:fd:
07:ab:71:ef:12:78:6c:c0:bd:d9:93:e0:9b:91:9d:
c0:14:61:0a:2c:b6:77:bf:9d:5f:40:12:d8:d1:ae:
86:76:55:46:6f:13:00:42:ef:38:8d:79:37:ad:60:
8a:57:71:a9:7d:dc:d1:e9:5b:df:ca:49:70:fd:16:
77:2c:51:0c:2e:48:cf:0b:61:10:93:60:68:5e:87:
fe:07:c8:2c:40:8a:f4:97:96:38:7a:9f:93:72:59:
c3:57:e4:a3:96:0c:2a:87:a8:fc:99:9f:03:03:03:
4d:4e:a4:e6:6f:80:f4:5e:c6:ec:f6:0d:92:c9:26:
ae:8a:7c:c0:b1:93:52:12:40:57:80:39:17:ea:8a:
bf:c9:70:dd:c9:09:ea:8e:26:bf:fc:30:e9:b5:7c:
f5:03:b1:3e:ba:8f:0e:7d:6e:1d:31:32:2d:c5:03:
2d:44:df:0b:93:a1:40:6a:3d:c3:e9:e3:e6:be:ce:
b2:a2:ee:71:14:39:04:c8:91:80:d8:16:bd:b3:68:
59:c5:32:f4:9f:83:59:9a:ca:2d:49:05:a9:11:05:
00:fe:40:39:43:c5:38:cb:c1:53:51:99:57:81:de:
ba:1f:1f:20:d3:a4:42:45:86:bb:b4:7a:25:c8:aa:
b0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D9:53:05:05:47:E0:F0:8F:EC:13:C7:20:76:32:84:9A:C7:E4:82
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/YtlTBQVH4PCP7BPHIHYyhJrH5II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:79:74:31:09:2a:e9:0f:56:6a:9f:68:68:47:84:c7:1e:d8:
b6:6a:48:43:c8:57:d8:1a:14:ef:0e:ff:6c:d6:4f:f9:1c:ed:
4b:1c:83:f2:21:a9:ef:e3:8b:9c:b2:b0:b0:62:19:7c:a9:fe:
75:32:ff:f1:db:05:3e:5a:a9:9a:44:08:d0:17:82:14:30:23:
0c:e7:a3:54:cf:26:24:2e:5c:c0:7c:22:58:12:2d:58:28:07:
dc:7a:15:81:15:1a:63:71:28:b2:a9:26:99:f0:8a:ab:79:4e:
b7:dc:94:dc:20:47:6c:8e:79:d5:5c:4a:bc:a7:98:48:ed:80:
78:93:a4:34:36:71:57:c3:e9:02:5a:cd:57:ca:66:56:87:1c:
c1:a6:62:ac:4a:42:6a:be:56:e4:db:e3:c2:01:da:25:54:2d:
fd:61:cd:4c:cf:2f:27:8f:7b:3f:39:56:8d:57:b2:29:4a:87:
08:21:89:a2:54:36:0f:19:77:d5:c6:5d:cd:4a:76:22:ea:5b:
ca:c6:f4:3e:eb:e9:5b:ef:4b:60:eb:07:ef:7b:26:29:6a:cd:
77:1f:c2:b2:34:f9:7a:31:2b:fa:c8:2e:60:00:4e:db:8b:72:
9c:89:ae:88:8d:61:2d:4e:d5:91:26:5d:d4:6f:b1:35:8e:07:
f4:b8:96:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org