Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/YzsB2Zm97IVjemP6-pmeiiS9XE8.roa
File: YzsB2Zm97IVjemP6-pmeiiS9XE8.roa (raw, json)
Hash identifier: fyA8QpPxDOoKcTSyzuJmD3RH5w4c4oru0jmtGfQOu3s=
Subject key identifier: 63:3B:01:D9:99:BD:EC:85:63:7A:63:FA:FA:99:9E:8A:24:BD:5C:4F
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01896423BEFF4E501A905DF699332ACF6DCD
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/YzsB2Zm97IVjemP6-pmeiiS9XE8.roa
Signing time: Mon 17 Jul 2023 13:56:51 +0000
ROA not before: Mon 17 Jul 2023 13:56:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3305
IP address blocks: 2a00:ec81::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:23:be:ff:4e:50:1a:90:5d:f6:99:33:2a:cf:6d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 17 13:56:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=633b01d999bdec85637a63fafa999e8a24bd5c4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:1b:65:0b:55:64:83:15:ff:0e:44:b9:94:
1a:41:40:9f:a9:f6:06:68:5a:b9:9f:d3:90:ce:2b:
a2:31:bc:2d:32:e9:cf:2d:9c:e1:aa:ef:f5:20:05:
45:43:12:32:ef:dc:f8:20:7e:63:72:ad:ad:d6:af:
aa:c5:39:fc:ec:44:56:5e:c6:2a:be:08:96:50:8e:
b0:65:88:34:1a:c4:2c:ad:db:f7:b6:eb:d1:1e:3f:
ea:17:ad:f0:8f:5e:b3:e0:ec:06:d0:48:d9:f5:05:
b9:e9:21:9f:7f:89:a6:cd:eb:d4:51:29:74:70:b8:
11:8c:6a:fe:c2:37:92:bc:34:c6:9b:51:88:c9:1f:
6f:d5:21:b3:96:de:f4:5e:aa:6c:38:a9:50:40:9d:
e4:fb:28:65:c3:2e:ca:64:fc:1a:82:aa:de:f4:b5:
75:0d:15:6a:93:d5:2b:35:52:2b:c5:c2:b0:79:52:
7d:c1:94:63:b4:2b:aa:f5:fe:91:a6:0e:df:07:5e:
79:ca:95:91:11:ab:ed:99:1e:71:cf:e4:44:10:a2:
5e:6f:b7:e1:ea:60:14:d8:09:c2:37:b8:f4:45:a0:
f4:08:e9:75:90:58:52:06:d2:4e:5b:dd:9b:a1:28:
61:7f:67:37:fb:fb:26:c5:e2:e8:d0:e7:e0:61:91:
5c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3B:01:D9:99:BD:EC:85:63:7A:63:FA:FA:99:9E:8A:24:BD:5C:4F
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/YzsB2Zm97IVjemP6-pmeiiS9XE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:ec81::/32
Signature Algorithm: sha256WithRSAEncryption
04:fa:0f:dc:df:89:46:cd:59:b2:6f:b9:de:36:9e:0d:be:c6:
84:31:03:b9:7f:17:5e:f6:a0:90:74:6f:bb:56:a9:5e:5a:fb:
6b:b0:78:2d:4c:78:6f:34:43:0e:ed:28:31:46:4e:3c:89:18:
44:83:dc:0d:f1:ef:a6:24:18:42:6c:30:43:fb:57:44:8f:76:
b6:f1:75:84:4b:95:5d:82:87:44:db:65:37:d5:f5:be:7a:1f:
5b:b3:dd:0c:85:de:c9:2d:68:58:38:9d:e4:04:a7:0e:67:b0:
36:5d:74:dc:36:ed:ef:f8:22:7e:f2:06:63:35:e8:7a:9b:0b:
e7:04:55:87:23:28:d3:e7:94:d6:7b:55:1e:6a:a4:d2:58:b3:
0e:95:a5:90:63:44:c4:7e:00:04:12:20:63:23:45:04:26:f8:
51:de:3d:26:c6:f0:fd:1f:84:a3:eb:2f:8a:b3:31:9f:79:ef:
7c:bb:d0:c9:c3:3a:c0:c2:d7:08:f7:2a:da:6c:7c:4d:0f:f4:
da:3b:a6:ad:fa:d3:f4:ed:1e:d9:7f:0c:2e:de:d7:b6:36:c9:
f8:5e:f6:be:fa:29:bd:7a:94:1b:ae:23:a4:3d:38:77:59:b4:
84:4b:4c:d8:95:4a:d7:af:16:e9:17:c4:e7:85:ff:62:0b:0a:
d1:dc:e2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org