Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/78d528-7cdf-44c0-acdd-f533b8df80a9/1/Yyt8Pwx-v1Qqe8oWYMjHdkEdL4I.roa
File: Yyt8Pwx-v1Qqe8oWYMjHdkEdL4I.roa (raw, json)
Hash identifier: APjxB75pBgPuEib7V4jJpgxDrOlCz+/JuLwT+wE6Rqk=
Subject key identifier: 63:2B:7C:3F:0C:7E:BF:54:2A:7B:CA:16:60:C8:C7:76:41:1D:2F:82
Certificate issuer: /CN=3f3f554b80281dea2a300318aaad6d2d97f1ce44
Certificate serial: 0191B38E23A9DAE92B5E329004C06A3A8E5A
Authority key identifier: 3F:3F:55:4B:80:28:1D:EA:2A:30:03:18:AA:AD:6D:2D:97:F1:CE:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pz9VS4AoHeoqMAMYqq1tLZfxzkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/78d528-7cdf-44c0-acdd-f533b8df80a9/1/Yyt8Pwx-v1Qqe8oWYMjHdkEdL4I.roa
Signing time: Mon 02 Sep 2024 16:25:22 +0000
ROA not before: Mon 02 Sep 2024 16:25:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 185.224.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 19:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b3:8e:23:a9:da:e9:2b:5e:32:90:04:c0:6a:3a:8e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f3f554b80281dea2a300318aaad6d2d97f1ce44
Validity
Not Before: Sep 2 16:25:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=632b7c3f0c7ebf542a7bca1660c8c776411d2f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:df:64:68:be:ea:71:83:ac:f3:87:74:46:
75:57:b5:2b:ac:9f:1c:21:bd:50:24:50:5f:be:a6:
88:e9:c7:e0:85:3c:d6:4c:0c:b4:23:de:b3:c0:f1:
a3:ba:d7:cc:6d:78:a8:00:fd:8d:8d:9e:86:22:0f:
fa:01:90:3b:4b:45:43:38:47:43:02:9d:3c:78:3e:
e3:e2:6d:bc:c1:00:9b:02:70:01:9b:36:3b:13:dd:
b3:09:ff:4f:76:88:86:bb:83:fd:82:91:a5:a6:eb:
59:b8:7a:ba:1b:c2:1c:b7:ab:9a:42:fe:ce:61:fb:
ee:c8:ab:87:6f:10:1d:8b:6e:34:20:f5:29:89:93:
66:98:26:b2:fd:a4:41:b8:17:43:12:05:ee:c9:44:
79:0b:4b:36:fe:ec:4f:e1:33:49:5e:13:56:72:76:
16:4b:1a:8a:d3:60:80:95:1e:70:c7:f7:0a:e1:06:
0d:e6:9a:7b:c2:69:f5:e1:d5:54:4e:e1:8c:1d:b9:
7f:46:90:ea:b6:58:f8:60:f3:37:cd:29:e2:4b:8a:
d7:c1:f0:58:f1:ec:7c:b9:f9:68:80:4e:33:49:6e:
f4:0d:b9:4a:37:a6:26:70:d8:57:67:5e:5e:3d:81:
d3:77:17:11:87:71:07:99:52:47:b5:34:0a:ae:23:
f6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:2B:7C:3F:0C:7E:BF:54:2A:7B:CA:16:60:C8:C7:76:41:1D:2F:82
X509v3 Authority Key Identifier:
keyid:3F:3F:55:4B:80:28:1D:EA:2A:30:03:18:AA:AD:6D:2D:97:F1:CE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pz9VS4AoHeoqMAMYqq1tLZfxzkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/78d528-7cdf-44c0-acdd-f533b8df80a9/1/Yyt8Pwx-v1Qqe8oWYMjHdkEdL4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/78d528-7cdf-44c0-acdd-f533b8df80a9/1/Pz9VS4AoHeoqMAMYqq1tLZfxzkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.0.0/24
Signature Algorithm: sha256WithRSAEncryption
64:36:19:15:b3:7a:b8:f5:9c:cd:31:b3:13:17:3a:44:41:2b:
ae:e7:08:44:c0:a3:4b:cc:b5:6c:27:0e:cc:2c:2d:95:17:0c:
50:db:de:62:f3:f0:8b:7d:76:99:82:6a:99:de:39:59:07:dd:
db:52:18:21:40:bc:c3:7a:87:32:2e:32:70:a3:a4:8d:39:fa:
72:57:72:d8:8f:12:16:59:9e:c1:63:b6:ad:5f:c9:23:8d:a8:
8f:db:7d:2d:b1:bb:c9:83:59:71:76:67:a5:fc:ef:33:9d:61:
37:e5:b2:04:ab:06:a3:d9:a4:f9:74:e2:8e:2d:de:03:25:f2:
36:af:a9:17:b3:7b:61:6f:d7:5a:a9:25:de:26:7a:0d:d5:04:
32:ff:86:bc:6e:4b:76:d8:d1:45:df:c2:03:5e:a9:07:f5:00:
df:84:58:38:5c:ac:c5:83:d9:3f:e6:83:d3:3c:19:11:61:e9:
9c:b2:d6:5f:5b:3b:a0:c7:ee:9e:08:33:e2:d2:4b:b2:02:a9:
a1:79:76:05:e3:d3:b6:b4:dc:73:61:62:d7:1e:43:16:68:f2:
bd:a7:5c:64:cc:12:74:ca:7c:45:09:52:b3:e8:71:01:2b:50:
8a:83:2c:09:fc:dc:5c:9f:0d:ab:12:79:f9:66:20:31:fe:cb:
79:e2:f6:1a
-----BEGIN CERTIFICATE-----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Generated at Wed Sep 4 20:25:23 2024 by rpki-client on console-fra.rpki-client.org