Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/YK19Xbmew069mzcfRJioOdAirY0.roa
File: YK19Xbmew069mzcfRJioOdAirY0.roa (raw, json)
Hash identifier: o/Z/gbEM+Yn4EIx8GUKPd9EdSy3MRXYP0IZ8zkG7Bqk=
Subject key identifier: 60:AD:7D:5D:B9:9E:C3:4E:BD:9B:37:1F:44:98:A8:39:D0:22:AD:8D
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018CC56DF7789648D1D293629D2F6D5818E2
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/YK19Xbmew069mzcfRJioOdAirY0.roa
Signing time: Mon 01 Jan 2024 14:29:27 +0000
ROA not before: Mon 01 Jan 2024 14:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210542
IP address blocks: 213.145.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 07:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f7:78:96:48:d1:d2:93:62:9d:2f:6d:58:18:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jan 1 14:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60ad7d5db99ec34ebd9b371f4498a839d022ad8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3e:8b:8e:4c:90:50:d3:13:4d:03:cb:c2:db:
83:6b:a0:09:74:53:40:35:4e:c5:d8:2e:5e:84:c0:
5d:2d:14:b4:f1:03:88:86:bc:3a:f5:fd:c3:5d:81:
94:1c:eb:c2:1a:4d:2c:b3:81:7b:e5:c1:2a:0b:67:
fd:49:a9:c6:89:f9:bd:d1:1d:ec:ff:c8:70:38:a1:
d3:d3:b5:d3:c2:0f:89:96:2d:73:74:00:14:5f:4b:
95:03:d8:a5:ea:f4:d6:4e:f7:71:e8:e2:af:bc:04:
31:25:56:47:bb:ef:b0:19:8e:c1:a0:c1:6d:cf:28:
32:09:4f:1a:41:1d:e8:6f:db:e1:20:6f:bd:ff:d6:
59:1c:38:64:02:f7:da:ac:f3:bc:a9:0d:9a:ae:13:
61:56:5d:49:fc:ee:43:83:35:96:8f:e0:65:2c:72:
17:a0:fb:9d:62:cd:5b:b6:df:45:ee:3b:aa:a0:15:
9a:78:e1:ac:47:4b:cd:74:cc:b9:b7:a3:58:f5:ec:
20:bd:ca:4f:80:9d:00:45:57:b1:b8:6f:37:ac:62:
8d:40:4c:3e:40:79:ff:f2:11:1a:29:ab:73:7d:b6:
f4:a4:10:ae:bd:62:9d:bf:cd:b9:44:0c:8c:c6:28:
56:5b:7a:e3:62:1a:3a:eb:43:75:b3:71:69:7d:83:
51:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AD:7D:5D:B9:9E:C3:4E:BD:9B:37:1F:44:98:A8:39:D0:22:AD:8D
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/YK19Xbmew069mzcfRJioOdAirY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.94.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:32:e7:05:39:5a:f2:b2:6a:f4:06:0e:8e:6e:03:83:c3:a0:
69:ba:9e:25:c6:25:78:19:57:f0:4d:07:50:ee:23:09:cb:00:
b6:68:43:64:6a:d8:aa:d5:59:47:f9:84:d0:08:ba:f6:bc:83:
c5:93:a1:27:d0:26:c9:b6:55:d1:eb:96:94:b9:fa:4c:a1:bd:
27:78:73:c2:7c:1d:2f:15:eb:39:24:9c:64:8f:81:b4:72:1b:
08:2c:86:11:a2:34:45:d8:32:e2:5b:81:cd:d5:f1:98:b9:6f:
cc:0f:5e:69:e1:62:15:e2:26:84:24:71:86:fd:b8:a3:23:d0:
33:cf:f7:23:17:2a:41:2d:ba:73:54:b3:30:9e:9b:d0:3b:83:
da:90:12:cd:e8:61:98:eb:e4:82:cd:f9:50:33:1c:16:ae:27:
28:c9:e2:94:e9:36:df:47:99:b2:e6:84:5d:8a:4d:45:5e:6b:
a2:4a:4b:8d:e6:66:65:ea:23:ef:24:aa:0d:ca:c0:06:3d:e6:
d3:cb:9c:93:3d:d9:28:6b:c5:38:45:12:b3:69:92:93:fb:c5:
8d:d1:2d:38:28:c0:b4:fb:e4:44:c4:94:fc:db:3e:98:33:d6:
f2:35:cd:a4:6d:23:7b:93:5b:b5:e3:a4:8e:a9:e5:0b:63:9c:
db:22:84:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org