Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/BYYibF1pPGMsnhQfYfyAUil491U.roa
File: BYYibF1pPGMsnhQfYfyAUil491U.roa (raw, json)
Hash identifier: +k2AEf1MSIXKXIIVglRQNljte2eHgkOHkxuYYQZt3x0=
Subject key identifier: 05:86:22:6C:5D:69:3C:63:2C:9E:14:1F:61:FC:80:52:29:78:F7:55
Certificate issuer: /CN=68efcca8498f5d26c120af34d846c0281ff629af
Certificate serial: 01856E143FBF54A5566EB4539353D12E8970
Authority key identifier: 68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/BYYibF1pPGMsnhQfYfyAUil491U.roa
Signing time: Sun 01 Jan 2023 16:04:58 +0000
ROA not before: Sun 01 Jan 2023 16:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30931
IP address blocks: 2001:67c:1b24::/48 maxlen: 56
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:3f:bf:54:a5:56:6e:b4:53:93:53:d1:2e:89:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68efcca8498f5d26c120af34d846c0281ff629af
Validity
Not Before: Jan 1 16:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0586226c5d693c632c9e141f61fc80522978f755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:95:29:83:38:dd:7a:37:e2:9f:39:82:54:d2:
c6:a4:08:b4:5c:90:6e:b1:ec:15:dd:5a:08:e1:72:
ce:01:c0:ed:61:6d:44:c1:70:37:5a:ad:19:ed:f4:
c3:fe:2d:eb:f3:62:18:5a:48:79:91:ed:20:03:84:
b6:e7:11:ff:8b:e0:67:80:5c:a4:f1:29:8b:7e:0d:
77:62:83:34:c2:bd:5d:75:41:cc:73:0b:97:4e:12:
f6:b9:ff:c2:74:e8:d6:9f:7d:fe:14:19:aa:58:86:
19:b6:92:0a:2b:a9:6d:11:a7:a9:d9:54:1a:34:1e:
aa:c4:ce:5e:b8:ac:61:aa:82:0c:40:0f:b4:50:75:
3d:e0:ac:56:59:c9:97:0b:75:fb:c3:d3:39:3b:91:
df:53:23:1c:19:84:08:a8:d8:33:e3:ba:e2:0e:04:
41:b6:62:d3:62:5c:91:8e:14:16:de:0e:98:24:15:
65:e2:b1:ee:23:ae:57:6b:25:28:19:14:1e:fe:9f:
71:e1:7f:02:a1:dc:ee:17:b6:2a:ae:bf:30:3b:e1:
a6:49:29:bc:07:14:0c:94:2f:fe:92:ad:4d:b9:87:
47:e8:f6:45:72:71:be:6d:20:aa:c8:79:da:08:da:
cc:06:0d:8e:2c:3b:e7:9a:ad:45:32:20:84:0f:87:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:86:22:6C:5D:69:3C:63:2C:9E:14:1F:61:FC:80:52:29:78:F7:55
X509v3 Authority Key Identifier:
keyid:68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/BYYibF1pPGMsnhQfYfyAUil491U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1b24::/48
Signature Algorithm: sha256WithRSAEncryption
2e:6f:e5:2b:2c:fc:76:fc:e8:b3:ee:3a:1f:9b:92:df:22:30:
a6:60:5f:03:46:37:24:32:18:d4:0f:b1:d6:c4:53:97:d4:ce:
29:ca:b5:83:21:9b:d1:3a:e7:af:d6:33:54:18:e5:b5:e9:a5:
7f:c4:04:f2:0b:82:1f:42:ce:48:2a:c9:9a:56:c5:c4:5e:b4:
75:90:0d:90:b0:9b:21:ca:e7:ba:ab:fa:09:98:a4:b6:ae:4f:
d5:4a:e7:0e:6a:c7:4a:05:e3:65:f0:01:25:8e:dc:7b:7c:1b:
df:28:3c:cc:f3:5d:4d:17:bc:d0:5b:df:88:a7:5b:65:f1:fd:
60:51:00:5c:fd:f5:85:36:1c:9e:ae:63:f0:41:0b:e3:3b:36:
06:f5:b8:4b:bd:5e:8b:47:ca:b4:0a:26:04:8c:05:e9:88:27:
69:e9:7d:39:4f:3b:db:19:49:91:db:33:85:17:20:63:f6:fc:
c5:0f:6f:f1:f8:ce:7e:24:c1:74:30:3d:22:59:92:27:a2:48:
ba:3a:44:2d:12:74:ea:6a:84:06:f8:98:5c:8f:8d:31:26:92:
de:af:07:fc:68:1c:55:f0:16:a9:5a:e9:ef:d2:c6:33:ad:94:
ab:7c:dc:21:66:7f:da:97:54:9b:76:19:03:6c:60:2f:ef:33:
bd:d1:27:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:37 2024 by rpki-client on console-fra.rpki-client.org