Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/y6hG09ik1z4toLV01tNAAUbemIo.roa
File: y6hG09ik1z4toLV01tNAAUbemIo.roa (raw, json)
Hash identifier: E+7v2mkzMM/7w7SDSUNkP16JWbsOqnwGkwQ7NBVJkVQ=
Subject key identifier: CB:A8:46:D3:D8:A4:D7:3E:2D:A0:B5:74:D6:D3:40:01:46:DE:98:8A
Certificate issuer: /CN=6f2c0c66b6b4612c8949800f09291cafa3865fd3
Certificate serial: 018570D508ED3141952369FDD723D092C5CA
Authority key identifier: 6F:2C:0C:66:B6:B4:61:2C:89:49:80:0F:09:29:1C:AF:A3:86:5F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bywMZra0YSyJSYAPCSkcr6OGX9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/y6hG09ik1z4toLV01tNAAUbemIo.roa
Signing time: Mon 02 Jan 2023 04:54:47 +0000
ROA not before: Mon 02 Jan 2023 04:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206740
IP address blocks: 2001:678:2c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Jul 2023 16:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:08:ed:31:41:95:23:69:fd:d7:23:d0:92:c5:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f2c0c66b6b4612c8949800f09291cafa3865fd3
Validity
Not Before: Jan 2 04:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cba846d3d8a4d73e2da0b574d6d3400146de988a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:03:76:5e:3c:a8:c2:c3:d2:3b:5e:a2:f9:de:
0f:5e:2c:a9:14:c4:4d:56:c5:b1:04:8f:58:01:fa:
fc:ff:37:d1:34:0a:3b:66:c4:4e:ec:e6:80:bc:6a:
6e:80:fa:be:97:cc:e0:6c:49:2b:45:69:62:13:3e:
5c:05:8c:ca:24:40:2e:48:94:cb:6c:63:8c:6e:d5:
f0:1f:70:17:cf:6f:a4:6e:83:11:30:f8:90:ad:e6:
32:5c:4d:5b:af:6a:0a:36:67:85:39:16:1e:7a:aa:
b7:89:b6:28:bf:74:61:c9:2b:ce:d1:b1:dc:54:ca:
f8:fa:99:3f:ea:ba:82:4b:dc:a2:ca:fd:cd:25:39:
17:b7:60:d2:31:53:39:43:50:e1:95:2a:41:47:18:
b0:c1:bd:02:a8:9e:4e:33:79:9e:e2:0b:f3:68:ad:
b2:e9:7f:d2:f8:20:6f:cf:02:84:56:09:d7:b4:d6:
0c:e7:f0:74:34:b9:ac:83:6f:a6:b3:1b:86:14:d0:
f8:85:05:f4:d3:b8:9d:24:88:10:ea:a4:f3:f5:f0:
b1:6b:55:ae:59:4e:24:5f:ac:6d:ed:40:36:2f:eb:
74:b2:b2:ab:36:4d:4c:6f:80:25:69:ff:8a:22:22:
2c:d5:1b:f9:55:b9:84:7d:a1:83:5a:de:b7:4d:d9:
f6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A8:46:D3:D8:A4:D7:3E:2D:A0:B5:74:D6:D3:40:01:46:DE:98:8A
X509v3 Authority Key Identifier:
keyid:6F:2C:0C:66:B6:B4:61:2C:89:49:80:0F:09:29:1C:AF:A3:86:5F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bywMZra0YSyJSYAPCSkcr6OGX9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/y6hG09ik1z4toLV01tNAAUbemIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d8a74-60b8-410e-aa35-392a752464b1/1/bywMZra0YSyJSYAPCSkcr6OGX9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
5e:8a:b2:03:de:c4:aa:6e:20:87:a9:19:a3:06:ce:33:ac:a2:
20:7f:7e:ba:5f:d0:f5:fc:7c:03:67:c0:6f:52:34:16:8a:60:
6f:a7:51:f9:fa:9f:2c:68:a7:d4:f8:22:87:72:b6:e9:ef:96:
1e:3f:d5:32:78:c1:cb:72:8e:65:c6:da:ca:95:da:a2:69:58:
e2:0d:a7:fa:a4:48:32:39:cd:1a:4e:60:18:f6:5a:9c:4c:70:
b2:28:1c:96:70:54:7f:ca:8d:76:fc:a0:9f:2a:76:13:91:81:
6c:9d:67:fb:1a:21:ac:26:64:cf:d7:97:e0:21:c4:bc:c8:e2:
ac:27:20:02:86:91:09:e2:3c:a1:d0:77:22:1e:84:28:5c:c5:
5a:76:98:a7:e7:51:30:5d:66:02:dc:81:96:c6:8d:a8:1d:6c:
93:4d:c9:68:7d:b6:ba:00:69:27:82:7e:c4:92:af:20:84:80:
64:1f:43:19:28:97:a1:55:7f:76:5c:bb:6c:4d:29:ab:70:ee:
8c:8f:d8:bf:3d:f9:7a:51:b6:f2:09:f3:f4:8c:fa:01:ec:3b:
e7:f5:44:44:48:31:f2:39:bd:5c:e7:ce:11:67:5d:04:86:4f:
e2:33:56:81:f8:e0:97:82:92:9c:0c:ae:ee:70:67:c3:c5:3b:
cc:39:9e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:48 2024 by rpki-client on console-fra.rpki-client.org