Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/YGvdOAHBv7PwxH4rKNXyFFElP0c.roa
File: YGvdOAHBv7PwxH4rKNXyFFElP0c.roa (raw, json)
Hash identifier: 2is2MPxcr9cHjS/fPy48Y57KX1UzlNQ2CAnG/nO5ETU=
Subject key identifier: 60:6B:DD:38:01:C1:BF:B3:F0:C4:7E:2B:28:D5:F2:14:51:25:3F:47
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0193D3AEB903DE3A439C910127500127A6A3
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/YGvdOAHBv7PwxH4rKNXyFFElP0c.roa
Signing time: Tue 17 Dec 2024 08:14:23 +0000
ROA not before: Tue 17 Dec 2024 08:14:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 719
IP address blocks: 194.71.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:ae:b9:03:de:3a:43:9c:91:01:27:50:01:27:a6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Dec 17 08:14:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=606bdd3801c1bfb3f0c47e2b28d5f21451253f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:11:4d:69:3e:8f:4a:1b:9d:a5:89:a8:f4:df:
ec:af:c5:0c:eb:19:82:75:68:41:fe:0b:e8:d1:e2:
ca:17:e5:35:7e:59:e3:a0:78:81:96:9e:55:74:54:
9d:36:fa:52:31:a1:88:d5:a3:1f:7a:79:10:e2:f2:
86:69:ac:08:70:a6:1d:1d:b9:13:0a:db:7b:a1:20:
9a:7f:ab:81:ab:32:e3:c4:fa:72:8c:cf:e1:0a:57:
e5:6d:de:2b:75:65:fa:26:6e:26:fb:b2:8e:21:f9:
cf:e6:35:34:9a:6a:4e:60:e5:50:7e:23:79:fc:97:
e7:83:84:5d:02:fd:ed:57:d9:e7:48:3b:62:16:02:
1e:e7:d8:e2:2a:a8:6b:8d:06:e9:bb:ee:2e:b2:aa:
19:30:77:af:cf:41:74:87:cd:76:4f:0f:5d:0e:85:
b1:ca:96:22:ee:a8:0d:f6:b3:8d:cb:61:75:31:b0:
8b:57:6b:61:49:86:48:de:ea:08:a0:11:05:b8:08:
00:bd:a5:2b:21:0e:61:8f:76:f9:64:73:a3:73:22:
e2:fd:04:4c:f2:70:13:ba:93:49:ee:b8:c0:c9:cd:
13:e1:80:1a:8a:3c:d5:ae:10:89:49:62:87:34:09:
92:c4:5a:9c:df:33:c3:7b:cc:66:f6:0d:80:1d:f6:
0d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:6B:DD:38:01:C1:BF:B3:F0:C4:7E:2B:28:D5:F2:14:51:25:3F:47
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/YGvdOAHBv7PwxH4rKNXyFFElP0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.87.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:56:97:d7:6d:f7:97:59:6f:c1:cc:c0:4e:63:1f:9a:cd:1b:
dc:3d:74:b7:82:dc:71:7f:85:02:c4:af:ae:ed:26:83:f7:b5:
da:ca:8a:28:bc:50:a9:11:39:7a:f4:20:f4:6c:83:c5:fb:c1:
08:f5:36:96:4c:2a:c0:b7:bb:e7:f8:b3:f5:da:fe:f0:fa:06:
c7:5d:fa:e6:5a:b2:0f:6e:f3:a2:0c:e5:df:34:e2:29:61:7b:
bf:f4:20:f3:5d:e8:18:0c:27:bc:c2:d2:2b:88:7d:59:00:5e:
9b:ad:07:28:86:96:e8:b0:e7:4b:cf:92:22:c7:07:d5:86:7d:
7d:5c:0e:6f:47:91:6a:c0:5e:3d:2b:60:b5:62:80:dd:ae:fb:
01:0e:03:48:e0:b9:0d:be:74:9e:39:9f:4b:57:2a:54:35:c9:
e9:6f:67:5b:1c:e6:fa:4c:49:e9:79:0e:3f:53:56:f9:e1:cc:
8c:c7:03:8a:bd:04:65:58:6f:4c:51:e1:f8:36:40:7d:3b:90:
2b:8d:b2:a6:23:6f:a5:18:73:7b:1d:e5:fc:40:42:25:cb:44:
d1:14:b0:0b:0b:53:d3:17:b6:eb:e8:b7:2b:e4:27:9e:20:ee:
3f:0b:d6:9b:08:1b:d2:70:f7:ac:46:36:5d:6c:ae:6f:a8:f0:
91:a0:cc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:06 2025 by rpki-client