Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/ynE_hQ-zbhtGX47gx8cBbd6zSuM.roa
File: ynE_hQ-zbhtGX47gx8cBbd6zSuM.roa (raw, json)
Hash identifier: M7mBbuVchOgwwnSwMKYF13vw/xJYbL96bBv8JLbJV6A=
Subject key identifier: CA:71:3F:85:0F:B3:6E:1B:46:5F:8E:E0:C7:C7:01:6D:DE:B3:4A:E3
Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472
Certificate serial: 0185720C88D23B6F0F10C611896CE8F4A7FE
Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/ynE_hQ-zbhtGX47gx8cBbd6zSuM.roa
Signing time: Mon 02 Jan 2023 10:35:02 +0000
ROA not before: Mon 02 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 151.100.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:88:d2:3b:6f:0f:10:c6:11:89:6c:e8:f4:a7:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d422367433765b541a37390a998997b737c46472
Validity
Not Before: Jan 2 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca713f850fb36e1b465f8ee0c7c7016ddeb34ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:57:01:8d:4d:5e:f4:9e:bd:53:22:0d:b9:a4:
70:ed:16:11:ed:26:a9:42:33:0f:c3:f7:6b:09:87:
a5:1f:49:a7:79:31:cd:df:90:9c:e8:74:4a:47:9c:
20:ac:47:c3:75:6e:01:b3:ab:81:32:5b:29:62:09:
29:01:72:a2:c7:8f:9e:5d:36:54:f2:d7:f3:38:c0:
a5:54:6f:5b:ef:b0:00:89:56:75:df:d7:8b:9b:2d:
29:f1:84:ac:ca:f2:49:8f:f1:ba:29:2c:21:50:72:
64:ab:0d:5d:ec:a0:aa:6c:2e:6e:c2:ad:fc:e3:eb:
3b:e6:3d:ad:0b:04:ea:8f:2a:b7:5c:9c:6d:6e:f5:
0b:38:74:ce:eb:9d:f0:cf:9a:1c:f3:57:bd:45:2b:
a2:ce:fc:74:d1:86:ff:a9:12:03:80:d6:b5:4f:93:
00:c7:df:68:98:cf:d5:c3:82:fb:ba:0b:eb:b1:44:
e1:6d:ac:73:4a:85:b1:1a:45:26:4b:c5:58:7f:a6:
ac:d4:10:eb:3c:de:bf:fb:64:48:e9:33:aa:84:39:
01:97:24:34:a8:04:3a:74:76:64:2e:4c:82:b9:32:
57:60:a8:82:a8:5d:d1:cb:94:84:cc:f4:29:6a:27:
50:9a:ee:fe:6c:45:28:e2:59:2c:67:d0:7b:c4:db:
9e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:71:3F:85:0F:B3:6E:1B:46:5F:8E:E0:C7:C7:01:6D:DE:B3:4A:E3
X509v3 Authority Key Identifier:
keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/ynE_hQ-zbhtGX47gx8cBbd6zSuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.100.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:a0:06:90:bf:39:7e:41:92:ee:f2:d4:27:c9:9f:c7:b2:17:
de:d4:3d:1e:bd:0a:4f:0d:f5:c9:74:f8:75:1e:55:c6:6d:f8:
64:1f:b7:27:75:3a:40:84:bd:fe:77:a1:1c:5c:d0:e8:ac:8a:
fa:68:33:a6:f3:80:0e:0d:be:fc:9f:9b:ec:3f:af:a1:05:b8:
ea:9e:74:7f:5e:55:76:ad:a8:27:ce:7a:6b:62:1c:3a:ed:90:
05:4e:27:0e:f5:f6:ff:c5:41:d1:89:c7:7e:af:c5:13:3a:85:
12:8f:c0:a0:9c:52:5b:95:54:57:1e:b0:5a:22:df:58:19:40:
25:bf:c8:53:2f:7e:43:bc:d9:d2:54:80:a1:84:8a:c3:f1:69:
a0:5a:79:12:d0:7e:a1:c2:9e:e7:38:b9:25:48:ae:8f:4e:ee:
d7:12:20:f2:66:55:05:2e:76:4b:16:8e:ac:fd:90:07:9c:49:
32:a2:40:44:5b:c2:13:60:12:4d:95:f1:3e:83:b8:99:de:0d:
71:47:bb:a3:b4:e6:e6:ed:e4:b2:ee:f4:ff:b6:83:85:1e:5d:
e9:98:e7:d8:ff:d3:9d:5e:46:25:f9:44:76:d9:7f:42:cb:46:
64:43:90:c9:e8:72:b6:b3:05:a0:af:5a:d6:71:51:90:6b:8f:
65:0b:de:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:55 2024 by rpki-client on console-ams.rpki-client.org