Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/YepGRCN9DZK7ULU7FpuDbi7bBp4.roa
File: YepGRCN9DZK7ULU7FpuDbi7bBp4.roa (raw, json)
Hash identifier: cZ5hJro0JWz1Qh9O5DO9AFkKVfagxWiFjXlYJcH/5Ro=
Subject key identifier: 61:EA:46:44:23:7D:0D:92:BB:50:B5:3B:16:9B:83:6E:2E:DB:06:9E
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 01911713E208766885697885E47490B02B12
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/YepGRCN9DZK7ULU7FpuDbi7bBp4.roa
Signing time: Sat 03 Aug 2024 07:11:04 +0000
ROA not before: Sat 03 Aug 2024 07:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.95.226.0/24 maxlen: 24
45.149.5.0/24 maxlen: 24
45.149.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 21:40:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:13:e2:08:76:68:85:69:78:85:e4:74:90:b0:2b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Aug 3 07:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61ea4644237d0d92bb50b53b169b836e2edb069e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:34:0e:e4:30:d8:61:51:43:b3:8d:98:e6:
b3:8f:5a:50:a7:c0:86:26:7a:8c:fc:22:59:a9:87:
49:5a:e8:2d:e8:f9:7b:95:85:41:dd:ba:c4:9e:9c:
b6:ea:91:bb:b5:f9:f2:b4:71:c1:d7:01:b7:95:27:
43:5f:2b:7b:0a:3a:57:88:7a:e9:ac:34:24:5a:14:
38:e4:96:8f:8d:fe:ad:20:95:01:35:22:39:c3:23:
d8:97:ed:37:38:0c:5e:56:e8:ba:ee:5f:f3:7c:65:
7e:09:64:56:8d:7c:1e:96:38:43:7f:d6:10:2f:a0:
7b:fd:a9:84:cb:3f:23:79:02:c8:0b:7e:76:e4:f5:
8a:b8:43:a7:76:a6:b3:10:8f:3f:08:d6:86:3d:8c:
d8:fa:12:ac:d8:1f:97:1f:4f:d7:ea:85:7c:8d:00:
85:70:3d:a5:79:76:ba:a5:42:33:0b:21:53:6e:5f:
6c:ae:08:ca:63:69:e7:66:fb:fd:e4:5d:84:83:07:
b9:b7:dc:eb:1a:e6:b1:5b:86:b0:48:8d:37:69:44:
03:25:ec:30:ce:ec:71:2f:f3:1b:66:bb:ef:ed:8c:
78:dd:db:23:10:f2:7f:83:1f:76:7f:47:82:e1:d0:
d1:eb:c5:07:29:cd:69:a9:47:30:eb:d3:71:df:ca:
77:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EA:46:44:23:7D:0D:92:BB:50:B5:3B:16:9B:83:6E:2E:DB:06:9E
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/YepGRCN9DZK7ULU7FpuDbi7bBp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.226.0/24
45.149.5.0/24
45.149.7.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ef:4e:7c:5c:da:15:b9:b8:af:54:cd:03:30:ce:39:a4:33:
03:e1:0a:30:6a:a4:d5:4a:52:cb:5c:17:f0:11:f3:3d:39:99:
8c:a2:7e:4d:0d:26:83:f5:4a:0c:31:a6:31:49:f9:e4:00:f7:
9a:e0:d3:c2:cd:a7:26:8d:a7:bd:a1:65:3d:ff:38:66:98:9d:
03:1a:cf:17:cb:13:12:43:75:29:f5:1a:e0:25:3d:ba:a7:4c:
93:5c:5b:a1:87:4a:e3:a9:44:11:32:3c:ef:b5:da:9f:41:5c:
f1:06:be:fb:17:5c:f4:17:c1:e2:21:64:56:c5:03:cc:fa:b1:
cd:9c:9d:58:15:ba:c7:d6:97:41:9c:02:87:87:e4:4a:5f:38:
3d:51:ef:be:4d:9c:b4:16:a7:e6:44:a1:d3:eb:10:72:23:64:
82:9e:af:c5:c3:db:a6:62:70:9a:28:8b:ea:fe:1a:ff:e5:ad:
1c:d0:b5:2e:7d:8f:4e:77:53:d5:35:58:b2:5d:86:5f:f5:77:
77:11:b9:25:d8:ff:6c:9b:49:fe:ed:c0:96:56:26:29:48:bc:
ac:b3:12:ea:15:8a:07:ec:31:ec:39:fe:b8:6d:da:32:29:e7:
d0:01:5e:1b:41:53:a3:7e:06:80:15:c4:c1:ce:d9:27:b1:01:
3f:25:89:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 23:00:12 2024 by rpki-client on console-fra.rpki-client.org