Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/YUzGnZvOzTuaL7yEE4t9AvNV7oY.roa
File: YUzGnZvOzTuaL7yEE4t9AvNV7oY.roa (raw, json)
Hash identifier: j+KcumtfD2DSvIXNLSs8WYqvZh0gPf0z2FzVkXpQzOU=
Subject key identifier: 61:4C:C6:9D:9B:CE:CD:3B:9A:2F:BC:84:13:8B:7D:02:F3:55:EE:86
Certificate issuer: /CN=a19c643946a059397355420d73bc45f14da2a76b
Certificate serial: 0185728C6A34E32D1B4F4B4141CFDF16F0B1
Authority key identifier: A1:9C:64:39:46:A0:59:39:73:55:42:0D:73:BC:45:F1:4D:A2:A7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZxkOUagWTlzVUINc7xF8U2ip2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/YUzGnZvOzTuaL7yEE4t9AvNV7oY.roa
Signing time: Mon 02 Jan 2023 12:54:42 +0000
ROA not before: Mon 02 Jan 2023 12:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213364
IP address blocks: 2001:678:d14::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:6a:34:e3:2d:1b:4f:4b:41:41:cf:df:16:f0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19c643946a059397355420d73bc45f14da2a76b
Validity
Not Before: Jan 2 12:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=614cc69d9bcecd3b9a2fbc84138b7d02f355ee86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:03:3f:78:7c:c7:f0:38:25:36:ef:c5:cf:
98:3e:05:e7:dc:13:2b:51:d4:31:d7:7f:fc:6c:1e:
8e:ba:28:bf:51:c9:84:bc:a4:bc:31:6f:3a:f6:9a:
1e:97:39:ee:a7:0f:25:d0:0d:ac:8d:a6:61:52:3d:
4a:35:44:3a:ad:0c:0d:7d:4b:0f:87:2a:7d:1e:66:
67:d9:84:fb:08:09:a3:2c:23:8f:2b:14:8d:de:e5:
56:e1:6b:31:f4:05:2e:8d:6a:63:64:01:77:9a:80:
6e:4f:41:b5:d1:28:65:45:24:a5:7f:99:da:e0:b8:
8f:ba:6c:88:74:2f:00:d8:a8:ea:fc:6a:38:8b:a7:
a4:ef:e0:24:bc:81:94:9c:58:73:b2:74:8b:d4:b6:
cf:50:7f:20:08:c7:89:4a:e8:40:87:b3:38:32:44:
db:0f:71:c2:f1:8e:89:c1:19:38:c5:a8:bf:6c:36:
02:2c:ab:b5:13:94:59:4a:e7:87:de:f5:28:c4:36:
2d:3f:72:27:02:6f:82:d0:96:e6:b3:d9:6c:50:2f:
7b:5a:00:58:9b:29:1a:d7:8e:34:5c:e3:6b:31:01:
9e:ef:0a:df:17:bc:35:ba:21:50:cd:5e:ef:7e:d0:
69:bf:04:9e:ed:6e:3d:0d:65:20:f6:3d:6b:71:0b:
a9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4C:C6:9D:9B:CE:CD:3B:9A:2F:BC:84:13:8B:7D:02:F3:55:EE:86
X509v3 Authority Key Identifier:
keyid:A1:9C:64:39:46:A0:59:39:73:55:42:0D:73:BC:45:F1:4D:A2:A7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZxkOUagWTlzVUINc7xF8U2ip2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/YUzGnZvOzTuaL7yEE4t9AvNV7oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/eeeb85-29d4-46bb-b3f6-ac3b6a4567ba/1/oZxkOUagWTlzVUINc7xF8U2ip2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d14::/48
Signature Algorithm: sha256WithRSAEncryption
92:02:a4:64:c3:85:f8:23:b5:e5:67:b1:aa:fc:71:8e:d1:69:
bb:b0:9e:99:f9:c7:bc:9c:db:11:fa:30:ac:d8:20:96:ba:f8:
a9:ec:a5:27:02:48:62:9b:57:fa:f3:64:70:7a:b5:5d:41:e4:
df:61:60:e8:38:60:6e:fe:3a:2c:b2:8c:af:a7:e3:d8:2b:54:
58:27:97:21:85:c0:9e:77:26:61:f1:de:fc:2c:6e:cc:6a:47:
c5:95:e4:5f:29:95:88:8f:82:78:f0:ab:29:77:b1:43:74:04:
18:e7:5a:0d:62:e9:c4:c3:aa:e4:e5:f8:c8:a3:5c:43:29:97:
c8:67:6f:dc:13:90:c6:17:8b:71:25:a3:1f:ad:00:c8:6f:b0:
cc:eb:13:ab:d7:ec:81:cf:54:71:07:6b:0f:35:03:e0:59:a2:
c7:a0:ee:bf:8a:10:d5:14:41:a7:35:43:f1:32:54:9b:c7:c3:
01:07:2b:0b:9b:9c:77:30:73:9f:be:e2:b5:aa:a3:df:b1:9d:
e2:82:3e:d3:f0:df:ee:ce:c6:7a:ab:bb:13:24:2c:8c:1f:e4:
8e:96:18:e0:02:c6:af:93:7f:b8:ee:52:87:bd:3b:81:52:d9:
5f:f1:b7:dd:d9:84:10:7b:f1:54:ca:7e:e5:99:40:d7:64:da:
f6:57:dd:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:08 2024 by rpki-client on console-fra.rpki-client.org