Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/YlecNvvlMCWoL4qlTWHZ5ZiWZdE.roa
File: YlecNvvlMCWoL4qlTWHZ5ZiWZdE.roa (raw, json)
Hash identifier: BlRo+Nf55nzsUlTX5wRmPZcGEUfT8I11rDwgXbPGwSg=
Subject key identifier: 62:57:9C:36:FB:E5:30:25:A8:2F:8A:A5:4D:61:D9:E5:98:96:65:D1
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 01856F8BA3645A33F824347E4FB2630DE76D
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/YlecNvvlMCWoL4qlTWHZ5ZiWZdE.roa
Signing time: Sun 01 Jan 2023 22:55:00 +0000
ROA not before: Sun 01 Jan 2023 22:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 194.50.198.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:a3:64:5a:33:f8:24:34:7e:4f:b2:63:0d:e7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Jan 1 22:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62579c36fbe53025a82f8aa54d61d9e5989665d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:96:64:9f:53:3a:35:55:89:fc:0b:94:62:db:
9c:2f:74:6d:a3:f9:77:7f:82:cc:83:1b:db:ee:09:
81:22:c8:22:c6:b4:6b:f6:f6:67:16:53:bf:39:25:
52:40:a3:a3:f6:6e:1a:5a:5b:39:d1:1c:b7:9c:92:
e2:92:b5:33:ac:9b:15:40:bc:2f:6e:7e:ce:0d:93:
e2:7c:d6:7b:06:5f:30:d8:c0:94:31:4c:3d:ef:11:
d9:bf:52:32:4e:1e:f8:a2:7a:39:9d:22:89:c0:2b:
79:2e:be:fe:55:b3:f9:1b:aa:de:f1:95:69:34:07:
c4:50:3f:6f:1c:40:32:60:7c:b9:ac:08:8e:9f:0b:
be:58:12:b1:f2:e4:8d:c3:73:d9:23:bd:d1:13:c6:
59:e1:ab:63:04:b2:fd:4e:b5:6e:b6:f4:dc:a1:a2:
fe:04:cf:75:27:7f:78:b5:f8:55:20:f9:fa:39:a1:
56:39:4c:74:35:bd:6a:ec:66:cd:69:05:15:1a:9a:
15:a3:b7:2a:82:dc:10:ad:72:5d:f9:76:ed:38:17:
87:94:b4:c2:23:0b:a1:7f:eb:55:d3:90:62:f9:02:
62:a1:bd:e0:ff:7c:72:2c:d5:0a:b0:0e:de:49:6e:
2e:e7:c3:6d:30:76:a3:56:68:44:20:1f:f4:e7:8e:
d0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:57:9C:36:FB:E5:30:25:A8:2F:8A:A5:4D:61:D9:E5:98:96:65:D1
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/YlecNvvlMCWoL4qlTWHZ5ZiWZdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.198.0/24
Signature Algorithm: sha256WithRSAEncryption
57:9f:11:e3:10:23:11:63:87:8c:66:4b:2b:f2:e6:03:2b:73:
93:6b:3a:47:45:e1:ce:43:ff:48:e7:e3:41:cc:2e:73:75:78:
3a:91:76:d8:55:8a:bf:a7:e5:15:55:f2:11:b4:64:00:cb:0a:
38:7d:fb:51:9d:53:66:26:ed:10:0d:48:3f:78:8f:86:40:07:
e8:3b:39:7b:89:78:f3:bd:d9:66:fa:6c:b7:a0:ce:52:f7:e9:
64:1c:54:2a:d9:43:cd:f6:b4:11:1c:63:20:a1:4d:b2:9b:90:
0d:4d:08:77:5c:8a:7b:ba:89:d5:f2:66:27:48:a2:a6:36:57:
41:0f:88:89:ce:02:fa:f8:46:03:4e:f1:cb:f2:7b:19:fe:bf:
4c:27:a8:f7:75:c7:27:92:46:39:02:17:50:f7:fd:5e:4c:be:
b7:7a:bb:e0:47:f4:ee:fe:08:a8:42:b9:f6:62:8e:d9:3b:7e:
6e:22:19:60:9a:f0:d9:62:a5:3b:04:6b:6b:51:8c:aa:3a:55:
08:3c:d7:c5:13:9b:73:8c:4b:0c:fb:b4:b5:f8:a5:f8:68:bd:
41:74:c6:ae:41:2b:ec:cb:24:48:ac:65:c2:51:89:d5:8f:07:
80:e0:64:9a:57:1d:4c:df:fa:ba:53:1f:2a:e2:f1:8a:52:54:
4c:b5:cf:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:29 2024 by rpki-client on console-ams.rpki-client.org