Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/yYL6nD1Kwp4Ah-g1DVvSpynGZZ0.roa
File: yYL6nD1Kwp4Ah-g1DVvSpynGZZ0.roa (raw, json)
Hash identifier: pHHQMZp/iS4PHLJKy9nwMrvkfgjtajSHw2Cge4JvYWA=
Subject key identifier: C9:82:FA:9C:3D:4A:C2:9E:00:87:E8:35:0D:5B:D2:A7:29:C6:65:9D
Certificate issuer: /CN=854e8383e8208936802362a09f36085a50fcd85a
Certificate serial: 01857102D5DD613372815F49A9D0872A172C
Authority key identifier: 85:4E:83:83:E8:20:89:36:80:23:62:A0:9F:36:08:5A:50:FC:D8:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hU6Dg-ggiTaAI2KgnzYIWlD82Fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/yYL6nD1Kwp4Ah-g1DVvSpynGZZ0.roa
Signing time: Mon 02 Jan 2023 05:44:49 +0000
ROA not before: Mon 02 Jan 2023 05:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 137.56.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d5:dd:61:33:72:81:5f:49:a9:d0:87:2a:17:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854e8383e8208936802362a09f36085a50fcd85a
Validity
Not Before: Jan 2 05:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c982fa9c3d4ac29e0087e8350d5bd2a729c6659d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7b:87:7a:dc:9c:20:b0:75:6e:12:46:df:d5:
8d:e0:b1:ee:31:a3:48:ae:8e:87:b0:20:3d:90:e1:
16:dd:d0:23:35:ec:17:e2:ee:f5:b1:04:3a:db:41:
04:ff:e0:eb:d8:62:12:7b:89:68:06:eb:bd:91:b3:
fb:87:d7:c5:e4:53:37:91:2d:da:e1:4e:ec:fa:19:
df:df:94:e1:b1:01:d7:65:3e:9d:17:7e:31:1e:13:
f5:92:a2:10:f0:55:c5:3f:7c:97:b6:dc:a4:75:be:
e0:29:b6:17:dc:90:bc:da:be:2d:7a:4b:6b:77:d2:
c3:ff:51:eb:3d:d0:06:6d:61:49:4f:02:59:bc:6d:
7e:05:1f:14:6f:6d:2a:d1:73:b4:b9:70:63:2a:b9:
d8:4c:9e:70:38:17:d6:3c:fc:e9:b3:b5:97:52:08:
65:12:24:6c:8d:e3:59:ed:36:36:48:18:5b:ce:69:
f1:96:74:09:00:41:aa:55:9b:38:95:4f:8e:69:4d:
e2:20:99:b5:1a:43:a8:ac:9e:98:f9:57:df:1b:e5:
fc:0a:2b:e8:3c:db:ae:8e:dc:b0:2c:39:92:be:f6:
1d:6a:f0:6b:31:07:c1:8a:64:d8:c0:e7:77:1e:39:
f0:13:a6:76:7f:59:8b:cd:01:4e:a7:d3:ef:b2:ae:
0c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:82:FA:9C:3D:4A:C2:9E:00:87:E8:35:0D:5B:D2:A7:29:C6:65:9D
X509v3 Authority Key Identifier:
keyid:85:4E:83:83:E8:20:89:36:80:23:62:A0:9F:36:08:5A:50:FC:D8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hU6Dg-ggiTaAI2KgnzYIWlD82Fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/yYL6nD1Kwp4Ah-g1DVvSpynGZZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/hU6Dg-ggiTaAI2KgnzYIWlD82Fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
71:38:ce:79:e9:f5:e5:8b:b5:17:22:b3:01:a6:ec:2e:4a:0b:
ef:51:0b:ba:d8:4c:9a:16:fe:e8:74:a2:2a:c7:31:2b:7e:da:
c7:67:a9:a1:0a:4c:d9:df:90:ed:76:f7:c2:fe:88:1f:28:d1:
ff:13:e1:3c:f3:1f:90:14:77:61:7e:6d:c2:a3:49:fb:3f:a2:
0e:0f:bf:47:7b:ff:d6:77:0f:67:ca:ab:92:cf:b6:7e:b0:6d:
cc:4d:e0:f4:b9:3e:3e:66:e6:b9:dd:b2:55:b2:04:5b:79:22:
d0:2f:1c:88:70:f0:23:a3:a3:31:d1:ae:4a:08:39:a6:ce:06:
be:70:85:e6:4b:18:99:17:1d:91:e5:83:65:2c:98:57:35:52:
31:18:64:a5:be:10:bf:22:a4:77:92:73:f0:23:3d:ff:ab:1d:
d3:bc:78:b1:4d:1b:c7:53:f0:f7:ec:5b:4d:1f:c7:b6:52:05:
b6:79:f5:4d:6f:35:e9:22:f1:9a:81:de:f4:77:78:f9:b6:2c:
22:2a:33:ac:0b:39:d1:83:5e:f4:37:1e:6d:87:fa:3c:06:50:
d1:9a:eb:9a:29:f0:48:e7:ed:4a:57:c2:0e:3a:a5:7b:6e:51:
69:ee:b2:33:0f:31:4a:05:2b:17:12:0d:d1:6b:62:77:22:bb:
43:72:0a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:39 2024 by rpki-client on console-ams.rpki-client.org