Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/YR73TBkEqfZFCCj6TgBlJXyxuoE.roa
File: YR73TBkEqfZFCCj6TgBlJXyxuoE.roa (raw, json)
Hash identifier: JbHZrDzJQm816ZPGEXCQWw7DQVF+jwcpsUgKNKepBDc=
Subject key identifier: 61:1E:F7:4C:19:04:A9:F6:45:08:28:FA:4E:00:65:25:7C:B1:BA:81
Certificate issuer: /CN=fe8199e8345567d8516b788fe2e1d397e27c73a4
Certificate serial: 0190CBA35BA6E4CC2BB0787E3D73C1508EE6
Authority key identifier: FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/YR73TBkEqfZFCCj6TgBlJXyxuoE.roa
Signing time: Fri 19 Jul 2024 15:36:38 +0000
ROA not before: Fri 19 Jul 2024 15:36:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54203
IP address blocks: 176.67.80.0/23 maxlen: 23
176.67.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 16:46:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cb:a3:5b:a6:e4:cc:2b:b0:78:7e:3d:73:c1:50:8e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8199e8345567d8516b788fe2e1d397e27c73a4
Validity
Not Before: Jul 19 15:36:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=611ef74c1904a9f6450828fa4e0065257cb1ba81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d2:97:ed:27:f1:82:1c:ed:e7:77:7a:7f:b2:
df:4f:16:ff:5f:2b:c4:d9:9c:85:96:62:f2:fb:1d:
ed:0d:1a:be:ac:1f:3a:45:8d:93:35:93:8d:32:d2:
99:c0:0e:80:2e:96:57:e7:2f:a7:e1:08:43:6b:dd:
c8:c7:9d:b2:65:4c:48:55:6c:63:7b:33:1b:8f:2f:
06:f4:d0:1b:c6:fc:62:42:92:fc:88:49:67:59:66:
a3:46:f4:8e:fc:4c:9d:77:35:11:3b:98:b1:17:89:
73:02:d7:2e:73:54:ca:04:02:15:e0:88:ec:47:73:
02:1f:19:60:d3:11:c8:c7:54:2d:63:ea:f2:97:87:
0e:ca:7b:ce:10:43:9a:89:3c:a7:9b:77:c7:13:81:
93:3d:c4:b2:8e:f9:45:25:6b:95:a4:e5:50:3a:73:
e2:a3:23:f0:e7:9f:01:68:b8:1b:88:b7:12:55:17:
fb:88:a6:16:ed:70:ee:96:e4:92:c9:9c:93:d7:ca:
82:3d:a2:6b:a3:12:4f:18:3b:bd:24:f8:04:66:d5:
d8:ee:74:ab:cf:2a:99:83:dd:0a:67:86:38:d6:7a:
59:93:d9:93:3c:f0:dd:cd:08:4f:d2:89:c8:f2:04:
b8:f6:01:3a:11:ad:65:f5:ea:f9:6e:80:50:cf:65:
27:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1E:F7:4C:19:04:A9:F6:45:08:28:FA:4E:00:65:25:7C:B1:BA:81
X509v3 Authority Key Identifier:
keyid:FE:81:99:E8:34:55:67:D8:51:6B:78:8F:E2:E1:D3:97:E2:7C:73:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/YR73TBkEqfZFCCj6TgBlJXyxuoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d09e34-cc11-4394-904d-840ccb34b3f5/1/_oGZ6DRVZ9hRa3iP4uHTl-J8c6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.67.80.0/23
176.67.85.0/24
Signature Algorithm: sha256WithRSAEncryption
82:3e:be:f2:72:1c:55:85:9c:c8:23:80:b3:b0:fb:12:34:9a:
3c:af:24:03:ab:eb:8a:c5:0a:a5:c3:5d:8e:63:ea:53:fd:0e:
ea:90:0c:69:11:70:ee:6d:b0:da:b2:23:a8:05:0e:02:e7:d0:
38:79:09:fe:2d:c7:9c:38:7d:95:28:96:9a:32:19:2f:e6:d3:
be:a6:62:e6:fc:81:15:78:6a:ff:61:9e:e9:11:59:c3:96:91:
1e:74:89:10:02:5e:d4:7a:73:1f:b1:8b:6b:95:38:c6:ac:28:
c5:b0:0f:e7:6e:14:8f:81:ce:92:93:52:3f:5e:ae:50:13:2f:
17:03:9c:e0:8a:70:86:e7:b0:b6:e9:df:c9:05:48:0a:13:55:
77:b6:b1:05:eb:19:36:f3:4d:87:00:11:4f:0c:c2:6b:1b:19:
a0:ba:72:3c:08:7e:07:a7:a7:ab:53:02:11:d0:32:b4:c0:0c:
ac:93:61:08:37:86:4f:24:e1:68:01:9e:71:9b:d8:5e:1e:f6:
91:64:1e:af:3f:22:4d:33:e2:ac:02:f7:fd:b6:76:a5:b0:f0:
e6:a6:88:89:b1:30:dd:99:be:75:bd:22:d9:89:d4:bc:0b:ef:
6b:e6:9d:ba:4f:23:82:e8:88:fa:e2:23:d2:6a:69:14:cf:22:
21:b6:f0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 19:41:55 2024 by rpki-client on console-fra.rpki-client.org