Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/YJuL1NjhTJFKOq3LuZdv1KWwWpw.roa
File: YJuL1NjhTJFKOq3LuZdv1KWwWpw.roa (raw, json)
Hash identifier: +UVh5BtG8OSMPXnbG/6pRzu8im+a2zU+Z0X//NaBR+8=
Subject key identifier: 60:9B:8B:D4:D8:E1:4C:91:4A:3A:AD:CB:B9:97:6F:D4:A5:B0:5A:9C
Certificate issuer: /CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Certificate serial: 01869800A9E71569E546D91583CE27CF3A3A
Authority key identifier: B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/YJuL1NjhTJFKOq3LuZdv1KWwWpw.roa
Signing time: Tue 28 Feb 2023 12:30:25 +0000
ROA not before: Tue 28 Feb 2023 12:30:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207319
IP address blocks: 46.19.214.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:98:00:a9:e7:15:69:e5:46:d9:15:83:ce:27:cf:3a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Validity
Not Before: Feb 28 12:30:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=609b8bd4d8e14c914a3aadcbb9976fd4a5b05a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:10:6f:26:e0:05:11:f9:02:0d:6c:83:bc:
1c:e1:a2:ed:28:fb:64:6d:2c:d7:2d:04:c0:3b:c3:
6d:19:20:be:5d:21:84:4a:fc:79:75:24:ee:d9:db:
1d:31:fb:bf:05:fa:29:bf:93:d2:c5:21:98:84:2f:
e4:0e:bf:5a:fe:31:a1:25:00:c9:88:9b:bd:58:d2:
c9:f8:38:89:54:ff:2d:75:c4:75:0f:ac:4d:b2:f4:
8d:42:98:5e:25:57:8e:82:e6:80:97:a3:04:37:38:
0e:62:7a:85:35:f5:e4:ef:f5:2e:11:24:96:8f:fd:
a0:18:6e:5c:b0:39:6a:57:64:36:2d:3f:d5:eb:b7:
a3:ae:53:96:de:7a:b5:0d:31:51:a1:73:c5:81:a7:
c2:5a:5c:6b:bf:d3:53:eb:a3:86:47:ab:6b:34:79:
00:18:79:f2:40:c7:37:11:35:74:08:02:17:37:cd:
12:48:fa:05:b9:4a:1f:0e:f7:9a:94:c8:9b:71:d2:
99:00:a9:a0:be:59:5b:04:0a:96:0f:43:55:c3:81:
03:11:c2:10:ab:6f:92:a6:d5:b3:08:d1:5b:f2:db:
fa:52:0c:b7:0e:91:d9:cb:a1:1f:aa:05:51:9a:e7:
3f:c1:2a:54:ac:d3:09:ee:34:ef:fe:37:59:00:31:
72:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9B:8B:D4:D8:E1:4C:91:4A:3A:AD:CB:B9:97:6F:D4:A5:B0:5A:9C
X509v3 Authority Key Identifier:
keyid:B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/YJuL1NjhTJFKOq3LuZdv1KWwWpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.214.0/24
Signature Algorithm: sha256WithRSAEncryption
67:5f:bd:4e:80:4f:3d:fe:69:e4:6c:12:ca:2b:dc:b1:38:96:
3f:34:89:40:14:0e:0e:b5:92:b6:fb:c2:dd:71:25:a5:fb:59:
93:52:7f:6c:07:15:8a:4c:a3:13:0f:ad:74:4f:c0:6f:0f:29:
ac:8e:12:82:cf:8b:12:06:02:e5:2d:68:3d:5e:f2:8c:8a:39:
92:08:63:ef:88:3f:6b:2f:b9:5c:97:21:fc:63:71:ad:f8:a9:
40:dd:92:3f:94:ae:01:1a:56:75:bf:3e:3f:28:1d:b0:a9:b0:
79:ef:cb:5b:e1:62:d3:4e:6b:b7:1b:cb:5a:76:9f:6f:0e:57:
a0:39:c8:1a:7f:da:d7:17:98:9a:28:65:c4:7e:ca:8a:69:33:
ef:db:bf:83:90:f4:f9:4c:ff:68:fe:22:2e:80:71:87:95:96:
cf:ab:d4:60:77:e7:59:b7:ce:cc:a7:19:03:95:f4:97:89:2d:
27:2b:e2:57:e1:ab:75:2b:c3:24:f3:f7:cc:17:0b:b1:96:3e:
78:d9:f2:dd:84:4b:0d:4d:7e:70:cb:49:0e:9d:59:1f:8c:bb:
80:1d:d6:e4:9a:ad:e6:85:19:86:45:ae:1b:1c:bb:89:d3:92:
22:16:de:12:23:42:83:0b:b3:d7:ce:fa:4d:96:a5:1b:33:09:
13:90:1f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:42 2024 by rpki-client on console-ams.rpki-client.org