Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/yoo1BCUnzORtUPZ9vO5j8-V6fqQ.roa
File: yoo1BCUnzORtUPZ9vO5j8-V6fqQ.roa (raw, json)
Hash identifier: RgG2RlQ/kMHYJESS6n0vTYtAE6qlBFdmqdXCk7twDD4=
Subject key identifier: CA:8A:35:04:25:27:CC:E4:6D:50:F6:7D:BC:EE:63:F3:E5:7A:7E:A4
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0191195B13CF57986048D07E91F7A865956A
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/yoo1BCUnzORtUPZ9vO5j8-V6fqQ.roa
Signing time: Sat 03 Aug 2024 17:48:04 +0000
ROA not before: Sat 03 Aug 2024 17:48:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51431
IP address blocks: 185.41.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Aug 2024 14:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:19:5b:13:cf:57:98:60:48:d0:7e:91:f7:a8:65:95:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Aug 3 17:48:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca8a35042527cce46d50f67dbcee63f3e57a7ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:54:bf:07:a9:b3:22:09:0a:ed:fd:8b:9e:
ec:d7:c3:53:b6:42:c5:43:5c:79:aa:ba:3d:bf:fb:
9a:2e:8e:56:08:40:12:33:f8:82:4f:ad:c4:40:93:
c2:01:75:34:f6:fb:31:c6:1d:cf:bc:2c:43:b9:ab:
d9:12:09:5b:e4:38:52:12:17:31:b4:01:b4:82:07:
ae:9d:b4:0e:ba:ea:0e:cb:97:88:d6:ad:be:c7:e7:
ee:c2:33:e3:be:24:da:f4:e4:b8:78:29:0d:5e:e4:
b4:21:76:c6:d4:21:58:d2:7c:4e:05:ae:7f:26:a9:
0e:1d:39:73:11:b5:2e:db:a6:c6:43:54:4d:cd:a2:
fb:0e:74:63:52:60:3d:cc:ad:fa:05:4d:fa:0d:6d:
e4:72:71:2e:05:b5:7f:ad:4d:2f:02:d2:30:6d:da:
7d:fb:ce:5a:0d:b9:46:64:49:fe:62:16:e6:a7:08:
ca:0a:79:5c:ba:e6:72:b0:c7:77:77:95:45:3c:d4:
c3:c3:20:29:48:a9:43:35:18:b5:6d:f3:4b:d4:ae:
41:7e:89:e6:64:a4:69:97:7c:6b:64:c5:d7:10:39:
9c:13:3d:73:56:d8:99:c5:ac:a9:2d:05:49:a5:60:
48:ec:54:db:74:5f:0b:c4:a4:61:2b:1c:3e:bf:b7:
07:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8A:35:04:25:27:CC:E4:6D:50:F6:7D:BC:EE:63:F3:E5:7A:7E:A4
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/yoo1BCUnzORtUPZ9vO5j8-V6fqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.0.0/24
Signature Algorithm: sha256WithRSAEncryption
22:77:76:9a:1d:60:68:79:03:19:e2:6c:3c:76:50:64:5f:08:
19:a6:76:29:0f:4c:51:52:c7:8c:da:fc:f1:0d:35:62:e6:98:
5d:4c:dc:7a:0d:64:cc:10:dd:e4:7b:b7:32:72:29:75:5e:11:
d4:6e:12:2e:b8:88:72:a6:d4:2e:a1:70:fb:4d:99:db:e3:4a:
3a:79:12:af:46:87:4b:37:b6:d0:30:0b:ca:f8:df:77:f2:82:
fe:be:84:73:07:a0:31:c9:ac:ae:56:64:51:46:63:3b:2f:ed:
a0:5f:91:fb:77:08:aa:bf:8e:9d:f8:8f:d7:f6:dc:0a:6e:7e:
d2:c9:a4:f5:ea:8e:2f:33:0b:2b:a2:74:cc:2d:2d:b3:59:16:
91:58:0f:08:e4:99:a2:37:3c:ad:1e:e3:6a:d7:e0:2f:6f:49:
7f:bb:e4:5f:7b:1d:cc:43:be:55:ce:e0:e1:f6:d5:52:b8:d2:
53:02:83:23:b5:86:d7:6d:16:cc:8b:ff:b9:c5:99:bc:5e:52:
7d:35:b7:a2:50:7e:0e:a7:cd:6b:14:60:27:39:47:20:73:88:
14:bb:c8:2f:bd:21:ac:da:c7:8b:24:a0:93:06:37:95:19:cf:
f1:04:bc:d7:13:7b:26:e9:77:2c:a6:74:33:de:ab:09:d4:eb:
22:41:52:c0
-----BEGIN CERTIFICATE-----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Generated at Sun Aug 18 17:27:30 2024 by rpki-client on console-fra.rpki-client.org