Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/Yb86sLJJnkwKEnRXB6ytF3MO1XA.roa
File: Yb86sLJJnkwKEnRXB6ytF3MO1XA.roa (raw, json)
Hash identifier: 5m4nqyI219ljQchHZATSDOIV04nhQKv+UMjXE86hS/8=
Subject key identifier: 61:BF:3A:B0:B2:49:9E:4C:0A:12:74:57:07:AC:AD:17:73:0E:D5:70
Certificate issuer: /CN=b56458576ba23921dd792dc0052f8f82867d627b
Certificate serial: 018FBC38617B93C56C89A1F44495F554A557
Authority key identifier: B5:64:58:57:6B:A2:39:21:DD:79:2D:C0:05:2F:8F:82:86:7D:62:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWRYV2uiOSHdeS3ABS-PgoZ9Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/Yb86sLJJnkwKEnRXB6ytF3MO1XA.roa
Signing time: Mon 27 May 2024 22:42:42 +0000
ROA not before: Mon 27 May 2024 22:42:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28746
IP address blocks: 185.217.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 23:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bc:38:61:7b:93:c5:6c:89:a1:f4:44:95:f5:54:a5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56458576ba23921dd792dc0052f8f82867d627b
Validity
Not Before: May 27 22:42:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61bf3ab0b2499e4c0a12745707acad17730ed570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:80:9f:9d:e7:fe:a2:bd:0f:ea:cf:fd:33:95:
4b:57:df:e3:61:12:25:f7:4e:8e:7b:36:42:9c:1d:
66:56:8b:40:58:08:5b:b3:ca:29:17:35:e7:36:70:
6c:fa:b8:b2:1f:a8:d7:3a:51:26:89:2d:86:f6:f2:
d2:b2:bb:59:dc:c8:fe:94:65:39:5d:8f:55:e9:07:
ec:58:40:fc:90:84:de:ef:93:bd:5c:11:2f:86:23:
f4:ec:28:91:d6:57:bf:55:44:b5:b2:45:62:fe:2a:
b1:e6:b4:d5:f7:eb:10:4a:01:d2:6b:d9:19:ac:9a:
08:d3:0e:0a:b4:7d:c3:0c:46:e9:9d:d7:b0:e2:e0:
87:1b:5f:c8:83:63:6c:95:fc:da:c0:a9:76:ea:96:
18:65:9c:e1:47:c5:35:52:e6:28:ee:37:6c:8f:ca:
75:43:42:cd:06:5d:b9:e7:8d:04:d7:b8:38:db:80:
6a:dc:58:ff:66:85:73:f7:4b:27:96:bd:d2:50:28:
cb:87:6a:99:48:b5:00:c5:ac:e7:3e:80:26:a3:17:
13:34:6b:1f:a7:a3:1c:d8:0b:1d:54:c2:f4:c1:00:
66:e2:cd:8e:d4:a8:35:74:c0:a7:d2:b0:54:fe:d1:
d4:5f:fc:56:d7:25:2a:37:ff:f3:6c:9f:17:69:0e:
f9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BF:3A:B0:B2:49:9E:4C:0A:12:74:57:07:AC:AD:17:73:0E:D5:70
X509v3 Authority Key Identifier:
keyid:B5:64:58:57:6B:A2:39:21:DD:79:2D:C0:05:2F:8F:82:86:7D:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWRYV2uiOSHdeS3ABS-PgoZ9Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/Yb86sLJJnkwKEnRXB6ytF3MO1XA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/tWRYV2uiOSHdeS3ABS-PgoZ9Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.164.0/24
Signature Algorithm: sha256WithRSAEncryption
58:f6:ad:1e:53:f1:23:e3:19:66:b1:b7:89:45:aa:2f:d4:7f:
c6:66:8a:2d:0d:ad:c0:a5:a8:41:30:8b:3e:b8:c1:42:42:11:
7e:e8:ba:48:01:c2:b4:f5:d1:4e:25:16:f5:99:57:c6:13:81:
95:0c:a5:4d:f0:82:fa:54:5f:21:24:d1:74:a6:8e:16:ce:fd:
9b:49:3b:27:30:69:68:a6:dd:de:7a:49:ef:aa:c8:29:8e:8c:
8f:6d:f9:73:76:ad:29:5e:0a:68:d4:a1:5d:ae:aa:3b:4d:b1:
32:5e:6a:d2:50:81:fa:2c:9c:91:72:04:87:07:f0:d2:67:41:
d2:e4:8a:42:cb:13:2b:0c:ce:13:90:88:5e:bb:48:aa:12:5d:
9c:c1:50:6f:d7:f8:a1:42:8d:3f:fc:74:a9:fb:77:96:a0:ef:
d7:bc:2c:1f:27:66:f8:4e:b6:3d:ae:ba:99:78:80:ad:64:96:
c1:a5:17:56:1e:36:ff:77:7b:a2:e0:9d:e5:32:4e:21:d4:55:
df:90:ac:e6:86:04:6c:bc:b0:94:c2:05:66:a2:02:5f:cf:51:
ff:2d:db:45:4c:a7:ed:2b:91:b6:a1:6c:26:cd:4b:fe:0c:72:
04:1e:80:42:b5:82:06:a3:68:08:0b:70:4b:e9:ce:bc:39:62:
31:ce:9b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 04:56:34 2024 by rpki-client on console.sobornost.net