Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/1fdf04-8b4e-4332-a4de-7793b9efb1bd/1/YMGKR8xk6G-4gXqDt3sukyulh40.roa
File: YMGKR8xk6G-4gXqDt3sukyulh40.roa (raw, json)
Hash identifier: zFQTcUmURHLdPaEEyC8zmaW77td2RLh7/VtlV23Rw6Q=
Subject key identifier: 60:C1:8A:47:CC:64:E8:6F:B8:81:7A:83:B7:7B:2E:93:2B:A5:87:8D
Certificate issuer: /CN=ae1eb280d1722846a44124c4c62d0059f61af242
Certificate serial: 018C85A53665C736A7A02204DFD46C29DFC1
Authority key identifier: AE:1E:B2:80:D1:72:28:46:A4:41:24:C4:C6:2D:00:59:F6:1A:F2:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh6ygNFyKEakQSTExi0AWfYa8kI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/1fdf04-8b4e-4332-a4de-7793b9efb1bd/1/YMGKR8xk6G-4gXqDt3sukyulh40.roa
Signing time: Wed 20 Dec 2023 05:14:06 +0000
ROA not before: Wed 20 Dec 2023 05:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42428
IP address blocks: 212.11.164.0/24 maxlen: 24
212.11.165.0/24 maxlen: 24
212.11.162.0/24 maxlen: 24
212.11.163.0/24 maxlen: 24
212.11.166.0/24 maxlen: 24
212.11.160.0/23 maxlen: 23
212.11.167.0/24 maxlen: 24
212.11.168.0/23 maxlen: 23
212.11.171.0/24 maxlen: 24
212.11.172.0/24 maxlen: 24
212.11.170.0/24 maxlen: 24
212.11.178.0/23 maxlen: 23
212.11.176.0/24 maxlen: 24
212.11.177.0/24 maxlen: 24
212.11.174.0/23 maxlen: 23
212.11.173.0/24 maxlen: 24
87.230.160.0/19 maxlen: 19
212.11.181.0/24 maxlen: 24
212.11.182.0/24 maxlen: 24
212.11.180.0/24 maxlen: 24
212.11.185.0/24 maxlen: 24
212.11.186.0/23 maxlen: 23
212.11.183.0/24 maxlen: 24
212.11.184.0/24 maxlen: 24
212.11.188.0/22 maxlen: 22
87.230.128.0/19 maxlen: 19
88.84.112.0/20 maxlen: 20
87.230.192.0/18 maxlen: 18
88.84.96.0/19 maxlen: 19
88.84.96.0/20 maxlen: 20
2a02:fc0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:85:a5:36:65:c7:36:a7:a0:22:04:df:d4:6c:29:df:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1eb280d1722846a44124c4c62d0059f61af242
Validity
Not Before: Dec 20 05:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60c18a47cc64e86fb8817a83b77b2e932ba5878d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:15:33:d2:d4:48:f3:a8:94:d2:41:1f:3c:71:
ee:f0:89:98:14:f2:1f:3c:c6:ab:72:66:5f:b2:f3:
5c:53:bb:8b:17:4f:6a:cb:b6:f4:b4:53:5b:e1:15:
ab:3f:46:f5:19:68:8e:67:ef:85:a0:cf:61:64:87:
7f:15:85:48:70:4d:07:06:13:1e:38:16:31:f4:68:
e7:8c:fd:c8:f6:1e:76:95:51:9a:53:45:b8:2f:e8:
f9:a1:df:33:a7:d2:00:ef:1c:1f:8c:cb:8b:2a:81:
95:23:2c:b6:a3:e1:6c:64:f9:a9:78:98:e4:0b:11:
e1:5f:3d:55:87:7a:95:e0:a1:2b:6d:7d:02:9a:f7:
71:e8:bd:b3:db:45:ca:10:a7:2d:e4:ee:8d:a3:0e:
d0:be:a5:4a:f5:88:6c:0a:18:67:59:a6:16:74:d2:
6d:47:e5:10:3c:3b:fc:dc:18:57:0c:c3:02:27:d0:
82:99:30:b6:a7:13:ef:f8:cb:3c:51:da:0f:3d:d8:
f9:0f:b1:57:e0:f4:89:36:14:80:83:39:9e:62:c2:
ab:a5:42:65:f0:fe:cd:6b:f9:36:c6:6c:3b:a7:b5:
62:f8:4f:f3:b6:8c:72:cf:f0:1a:b9:af:76:be:b0:
0c:f7:aa:76:48:f8:6e:f9:30:10:2e:16:a0:05:54:
80:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C1:8A:47:CC:64:E8:6F:B8:81:7A:83:B7:7B:2E:93:2B:A5:87:8D
X509v3 Authority Key Identifier:
keyid:AE:1E:B2:80:D1:72:28:46:A4:41:24:C4:C6:2D:00:59:F6:1A:F2:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh6ygNFyKEakQSTExi0AWfYa8kI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/1fdf04-8b4e-4332-a4de-7793b9efb1bd/1/YMGKR8xk6G-4gXqDt3sukyulh40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/1fdf04-8b4e-4332-a4de-7793b9efb1bd/1/rh6ygNFyKEakQSTExi0AWfYa8kI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.230.128.0/17
88.84.96.0/19
212.11.160.0/19
IPv6:
2a02:fc0::/29
Signature Algorithm: sha256WithRSAEncryption
61:59:f2:fd:02:c1:d7:0f:d8:eb:bf:e9:15:02:1d:c1:23:22:
53:39:5a:0d:d3:2d:3f:12:ef:31:e8:6c:92:01:90:2a:61:89:
ba:80:75:94:10:62:52:d4:31:2f:9a:44:e9:91:9b:ad:6d:f5:
36:13:c3:c4:a0:dc:a6:3b:cf:36:ee:11:83:af:b3:ad:f6:0f:
c2:49:f5:34:76:77:d9:00:85:84:fd:3b:5c:38:54:cd:1d:3a:
ba:98:eb:96:44:d1:d2:c3:97:6e:c7:fd:9c:e2:af:9a:02:92:
bd:d3:57:9f:1b:a5:6a:85:6e:dc:bc:05:b4:f3:a8:36:58:b5:
42:29:ce:8d:82:3a:04:94:39:f7:a1:76:60:55:4b:3b:53:4c:
de:9f:1e:c3:10:27:88:c8:fb:32:98:6b:0e:46:b9:86:07:a5:
fb:b5:5b:59:40:03:6d:e4:59:3d:aa:f2:48:5b:e9:5a:82:cc:
49:fe:5c:a4:74:dc:28:ec:11:37:f1:03:fc:97:49:c5:c8:86:
86:39:d7:89:38:e2:ac:ee:14:63:4f:4f:7c:e3:e4:0e:88:7f:
b8:1d:3c:0a:8b:ae:2f:fb:aa:ac:79:79:36:b6:43:55:7e:b4:
94:24:de:ba:e5:e6:77:bd:d6:ac:83:7d:b0:5a:b7:52:18:34:
3f:e8:95:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:46 2023 by rpki-client on console.sobornost.net