Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/YFWtl8dwcyYPdIJDRluOd4vy-xk.roa
File: YFWtl8dwcyYPdIJDRluOd4vy-xk.roa (raw, json)
Hash identifier: 0pijf2FLumIzAfnUB2EVtg21KKZLWHh0FvUaGzl7xfY=
Subject key identifier: 60:55:AD:97:C7:70:73:26:0F:74:82:43:46:5B:8E:77:8B:F2:FB:19
Certificate issuer: /CN=cae74fcce41933f427c537d365d5e761d2655eb6
Certificate serial: 01856C0A5B4DA2A77E126D3773E83DCB7130
Authority key identifier: CA:E7:4F:CC:E4:19:33:F4:27:C5:37:D3:65:D5:E7:61:D2:65:5E:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yudPzOQZM_QnxTfTZdXnYdJlXrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/YFWtl8dwcyYPdIJDRluOd4vy-xk.roa
Signing time: Sun 01 Jan 2023 06:34:56 +0000
ROA not before: Sun 01 Jan 2023 06:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60111
IP address blocks: 185.126.108.0/22 maxlen: 22
2a06:c080::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:5b:4d:a2:a7:7e:12:6d:37:73:e8:3d:cb:71:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae74fcce41933f427c537d365d5e761d2655eb6
Validity
Not Before: Jan 1 06:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6055ad97c77073260f748243465b8e778bf2fb19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ad:3b:f1:5a:1d:4c:9a:a3:ef:76:0e:c3:06:
8f:f6:b0:35:c1:c2:c7:7f:48:d2:54:cd:67:24:92:
c9:cd:dc:75:ee:a6:d4:f5:fd:25:a4:7f:b4:1a:61:
f6:f9:68:8b:93:5a:97:91:03:3e:fb:92:c2:95:a0:
f9:c7:09:12:9a:43:0e:36:59:9a:29:e0:b7:7a:1a:
da:84:18:9e:52:9c:f8:2a:4a:f5:73:ac:37:26:fa:
e3:e6:42:f4:f3:13:3a:d8:52:98:4d:d3:a4:7e:53:
31:a1:ea:ac:a5:96:ec:f5:7d:df:36:b2:a5:64:27:
dc:10:02:53:61:45:2f:cf:c2:94:2d:07:6a:9c:44:
d5:7e:e0:d2:de:b8:3e:c7:97:20:49:e0:a1:89:4a:
6a:51:c0:bd:20:37:e1:68:e9:65:ca:cc:fc:0e:68:
71:c4:d2:0b:23:c1:83:f5:85:ed:bf:17:0b:1e:bd:
c2:e9:76:3f:6d:57:ea:44:57:09:85:7d:ff:e8:f3:
f5:88:c0:12:db:74:ae:ff:7e:1c:fc:58:90:ae:fe:
af:98:4c:e6:4f:f3:46:68:43:d7:d4:bc:06:cb:60:
7a:24:56:90:aa:ca:4f:46:c6:a9:98:17:90:0c:04:
56:dd:41:7d:9c:74:68:51:b1:c7:02:c7:4c:4e:9d:
de:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:55:AD:97:C7:70:73:26:0F:74:82:43:46:5B:8E:77:8B:F2:FB:19
X509v3 Authority Key Identifier:
keyid:CA:E7:4F:CC:E4:19:33:F4:27:C5:37:D3:65:D5:E7:61:D2:65:5E:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yudPzOQZM_QnxTfTZdXnYdJlXrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/YFWtl8dwcyYPdIJDRluOd4vy-xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7d0ba2-97f5-420b-8dc0-c35410b5b691/1/yudPzOQZM_QnxTfTZdXnYdJlXrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.108.0/22
IPv6:
2a06:c080::/29
Signature Algorithm: sha256WithRSAEncryption
64:cf:55:31:28:79:46:b5:da:90:96:f3:16:14:70:21:04:d7:
23:e2:93:e6:08:d2:22:d1:4e:77:bb:24:9e:be:0d:96:ca:16:
9e:78:0f:e3:dd:d3:3d:12:ff:4e:d3:44:b0:15:c4:2d:5c:7e:
13:4b:d4:ef:39:13:0e:a9:dc:96:13:cb:b2:83:3b:c8:10:92:
22:cc:c4:9a:36:6b:44:b2:f9:69:39:ab:0e:ba:2e:53:aa:69:
a3:f5:21:32:ed:67:c9:46:2d:d7:57:0e:ff:48:ee:02:7a:8b:
ab:bd:aa:5f:c1:0f:aa:0e:ec:5b:df:1e:6f:c6:56:12:0c:63:
35:ea:5f:39:01:d9:b3:21:e3:2b:4a:2a:f5:b8:0f:f0:cb:62:
4e:0b:4a:79:f3:19:98:b5:6c:a1:12:83:41:db:01:da:63:34:
0c:47:13:b9:62:ea:fc:6a:fd:ce:a6:a8:c3:15:b3:65:67:f8:
94:26:e8:9d:02:cb:76:e6:6a:1a:62:6d:8d:a6:20:69:cb:bf:
37:df:8f:33:7b:99:2a:4c:36:8e:eb:dc:a1:b5:37:ea:db:6f:
a3:16:5d:c1:dd:e1:e9:45:de:34:bf:50:76:b6:cb:31:55:24:
14:41:6d:27:98:8c:9e:9e:03:09:68:10:c3:18:c7:33:e1:eb:
ee:d6:3d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:46 2024 by rpki-client on console-fra.rpki-client.org