Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/ymjc8TnGpxKgB0A-NCPhqGrXC6Y.roa
File: ymjc8TnGpxKgB0A-NCPhqGrXC6Y.roa (raw, json)
Hash identifier: 4mV4qUEOGJ1WIoOscjOF+NX51LqRWP6Q60jMHiIBd08=
Subject key identifier: CA:68:DC:F1:39:C6:A7:12:A0:07:40:3E:34:23:E1:A8:6A:D7:0B:A6
Certificate issuer: /CN=ffbe256565e1c27c4b26560190e9978286a82b52
Certificate serial: 018572310F704F081493A02CFD5BC87B8F16
Authority key identifier: FF:BE:25:65:65:E1:C2:7C:4B:26:56:01:90:E9:97:82:86:A8:2B:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_74lZWXhwnxLJlYBkOmXgoaoK1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/ymjc8TnGpxKgB0A-NCPhqGrXC6Y.roa
Signing time: Mon 02 Jan 2023 11:14:55 +0000
ROA not before: Mon 02 Jan 2023 11:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29608
IP address blocks: 194.146.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Nov 2023 15:23:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:0f:70:4f:08:14:93:a0:2c:fd:5b:c8:7b:8f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbe256565e1c27c4b26560190e9978286a82b52
Validity
Not Before: Jan 2 11:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca68dcf139c6a712a007403e3423e1a86ad70ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:92:ae:ed:6e:31:8d:61:eb:ab:ab:b9:53:a1:
8f:0c:17:f2:39:dc:f7:9a:30:2b:a3:79:79:ad:ed:
7b:79:b6:62:6d:81:a3:5d:0e:fc:6d:32:5f:28:42:
d1:d6:22:80:d9:d6:88:75:57:d6:eb:67:60:17:f2:
40:c3:10:4b:94:10:bd:6d:44:07:cf:a2:2b:00:24:
20:d6:14:a0:8e:9a:28:8c:4e:82:b2:46:cd:d6:1b:
35:64:de:5c:62:ea:1a:ba:46:21:f1:a4:5b:d4:38:
ae:c5:ab:3f:81:9b:d3:9e:3e:c0:94:d8:60:f3:57:
9b:63:51:11:0f:53:cb:a6:28:c0:49:07:86:06:a7:
6e:8f:56:43:f4:5f:67:62:e0:d2:34:1d:22:02:e5:
09:58:90:67:f7:bf:cb:bf:e1:88:23:69:6e:03:ac:
f6:6e:18:f8:e5:5b:6f:9f:39:a9:f3:96:92:d0:83:
90:7f:36:75:c5:2a:05:59:ce:c4:78:d0:61:a8:a6:
ad:76:7e:05:fc:00:2d:4d:27:a4:28:c6:ff:6f:67:
01:11:f4:b1:5b:d3:d5:75:d7:26:89:1d:87:66:73:
bd:1d:c9:58:fc:70:16:78:d6:61:e1:61:8d:e4:5e:
a6:61:51:1c:a4:d1:d3:d4:b3:e6:8b:1f:e2:c2:aa:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:68:DC:F1:39:C6:A7:12:A0:07:40:3E:34:23:E1:A8:6A:D7:0B:A6
X509v3 Authority Key Identifier:
keyid:FF:BE:25:65:65:E1:C2:7C:4B:26:56:01:90:E9:97:82:86:A8:2B:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_74lZWXhwnxLJlYBkOmXgoaoK1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/ymjc8TnGpxKgB0A-NCPhqGrXC6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/_74lZWXhwnxLJlYBkOmXgoaoK1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.204.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:87:bc:d5:18:64:b2:36:13:00:96:bd:fe:a7:87:9e:45:66:
f2:2a:73:b5:c1:46:37:97:33:37:7f:7e:e2:81:a7:9f:4a:e2:
fe:a5:c9:40:e3:95:58:56:d7:74:6a:a9:c6:69:7a:cf:b2:76:
47:3c:1f:a3:9b:c9:b4:db:21:9c:dc:7c:34:50:1e:8a:96:7a:
4c:9a:eb:7e:2f:6c:fc:39:10:60:3d:b8:08:31:42:c6:db:00:
70:43:c5:de:47:1a:0c:0b:2f:58:8f:4a:e8:f0:00:b8:43:86:
92:88:7e:b7:e8:0b:e7:f7:93:a5:16:d3:a9:41:18:2a:0b:5d:
3e:04:c0:5b:6c:01:e6:09:b1:36:d6:3e:26:49:17:3b:6d:81:
f4:e2:2a:28:aa:bf:c9:bc:83:55:f2:03:f5:21:65:c9:86:c1:
16:4d:00:dd:92:53:23:31:44:6f:17:b0:5f:d8:a2:42:6a:56:
3f:65:ef:9e:d0:6d:06:37:2c:79:f7:b3:f2:e1:75:8a:21:88:
ea:8d:61:1b:7b:9b:01:28:07:21:a0:9d:65:c6:35:86:7e:5b:
bc:ed:1c:8c:c5:f8:7a:cd:d3:fa:58:ab:cb:1b:b6:9a:20:1a:
bd:8f:d5:87:54:19:f5:66:7a:5e:19:2e:9a:be:2f:f1:38:63:
95:a5:ec:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:24 2024 by rpki-client on console-fra.rpki-client.org