Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ySW7xpixqol5nXNlNtLFwpU9GRE.roa
File: ySW7xpixqol5nXNlNtLFwpU9GRE.roa (raw, json)
Hash identifier: XJVt9oSmqSrJMW5iYL/WHiPhmLrRm8EVfDwPodIIOZo=
Subject key identifier: C9:25:BB:C6:98:B1:AA:89:79:9D:73:65:36:D2:C5:C2:95:3D:19:11
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE74E6AF66A5CBD1FC63381EB4EBE
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ySW7xpixqol5nXNlNtLFwpU9GRE.roa
Signing time: Sun 01 Jan 2023 10:05:14 +0000
ROA not before: Sun 01 Jan 2023 10:05:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208328
IP address blocks: 2a0e:800:fff0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e7:4e:6a:f6:6a:5c:bd:1f:c6:33:81:eb:4e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c925bbc698b1aa89799d736536d2c5c2953d1911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0a:fb:82:c4:f3:08:45:a8:43:c1:06:f7:fc:
2f:36:ec:1e:79:f6:32:62:83:a4:41:73:1b:49:fb:
c5:4d:43:54:e3:07:4f:0a:7d:ef:ed:7d:fd:9d:cf:
e6:e5:2b:60:99:cd:c9:e6:c9:9a:90:4e:e5:f5:cd:
fc:cf:f0:ff:f4:b7:76:1e:a4:29:0f:21:9c:35:46:
7f:a1:39:a1:8b:c7:25:d9:2e:86:d1:8a:a0:09:b3:
ce:58:df:56:0d:9d:d3:ff:d5:96:33:a6:6a:c8:a0:
85:61:ba:b5:8d:7b:a4:38:64:c6:0f:04:4c:e6:aa:
54:f0:80:dd:2b:d7:9e:e0:b1:34:0d:da:13:18:cb:
2f:b9:05:19:f4:d5:ee:1b:ae:b5:1f:f6:db:fe:ac:
8a:f6:56:58:57:b4:18:32:e8:2c:5e:3b:a5:d8:51:
65:b9:60:98:b8:2c:61:c1:58:39:57:35:f2:99:3c:
68:2d:1e:4c:d0:15:60:f3:c6:6e:9d:8f:2f:b4:11:
6e:7d:08:38:6d:e9:9d:31:fd:dd:a4:d8:84:ca:ef:
8f:1c:8f:0d:7a:28:c5:d0:47:9b:78:bc:6c:93:36:
22:b5:c3:f4:55:d5:e3:cd:6c:20:80:e6:80:fc:01:
5f:dc:d4:c1:a2:3f:6f:fe:b3:94:c1:d3:67:34:ea:
db:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:25:BB:C6:98:B1:AA:89:79:9D:73:65:36:D2:C5:C2:95:3D:19:11
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/ySW7xpixqol5nXNlNtLFwpU9GRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:800:fff0::/48
Signature Algorithm: sha256WithRSAEncryption
12:a9:a0:c9:46:25:82:21:43:14:3c:76:0e:fd:45:d4:84:5d:
48:04:bf:3a:d5:ad:6c:ef:18:d4:43:7d:5c:e0:79:59:fa:61:
e8:2a:96:16:e9:9b:53:14:9f:8d:3b:86:53:3a:1f:eb:09:f8:
43:32:47:cc:4c:9a:b9:e8:56:5e:ef:c3:11:86:ac:2a:fa:f7:
07:89:89:c6:35:79:ae:4d:72:e9:50:db:f7:3f:ca:48:03:59:
e2:95:d4:6e:44:cf:c2:b7:20:38:41:f3:a4:92:4b:a2:a6:fa:
f0:d2:5a:59:40:8b:bf:ae:ab:f8:b0:ed:77:78:c2:97:8e:24:
ca:a4:37:d6:23:5e:10:a2:63:27:d3:be:ef:33:94:28:d9:74:
3d:c4:81:53:2c:ab:ce:b9:f5:85:cc:3f:3a:ef:94:25:d5:eb:
98:fc:6d:64:53:34:8e:c3:33:c1:27:57:19:c7:1a:d1:e8:68:
d3:9c:06:47:f8:60:4a:92:78:b4:b2:b8:47:4c:7e:6d:2f:81:
c7:55:a0:51:fc:5c:d5:12:99:06:8f:90:86:8f:4f:45:c7:25:
26:19:52:53:b0:3d:15:99:4e:6c:71:ef:36:63:ef:27:2d:49:
57:1d:72:f2:ab:b1:09:a4:90:42:8b:75:60:38:94:32:15:5d:
77:63:3b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org