Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/Y-NQEx15QIKXdRZLWOGPJHtil4U.roa
File: Y-NQEx15QIKXdRZLWOGPJHtil4U.roa (raw, json)
Hash identifier: sinRwLW+OAut+cNc9hNa3RiCmAQXlbOTgSpGfCnGRh0=
Subject key identifier: 63:E3:50:13:1D:79:40:82:97:75:16:4B:58:E1:8F:24:7B:62:97:85
Certificate issuer: /CN=087813142b0d3f068dea6dd4341c4e0b907988ec
Certificate serial: 01856ECBA4060C10DEB3702DE137912738CA
Authority key identifier: 08:78:13:14:2B:0D:3F:06:8D:EA:6D:D4:34:1C:4E:0B:90:79:88:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/Y-NQEx15QIKXdRZLWOGPJHtil4U.roa
Signing time: Sun 01 Jan 2023 19:25:17 +0000
ROA not before: Sun 01 Jan 2023 19:25:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49825
IP address blocks: 2a0b:8fc1::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:a4:06:0c:10:de:b3:70:2d:e1:37:91:27:38:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=087813142b0d3f068dea6dd4341c4e0b907988ec
Validity
Not Before: Jan 1 19:25:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63e350131d7940829775164b58e18f247b629785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fd:c4:17:ac:bd:d8:f3:70:c5:3e:cc:03:fe:
4e:57:57:61:11:22:bb:1f:b8:dd:ab:82:a5:58:07:
35:d8:8e:3f:b0:05:29:1e:55:d6:bd:d3:2f:2e:23:
6b:c0:4c:69:91:8e:c6:2b:8e:58:67:58:b5:e6:7d:
56:ae:c1:cc:6f:1d:3d:48:33:bc:bc:e7:aa:a0:1e:
06:5c:53:3d:03:ce:cc:ee:c2:30:bc:08:70:37:76:
60:a1:0b:1a:67:fa:0a:6e:5f:48:b8:62:dd:e3:4e:
4e:9e:d1:45:31:fc:a5:57:39:d4:d4:4a:17:dd:3f:
45:7a:ee:fe:14:b0:06:4e:59:c6:7d:fb:a6:5b:bd:
8f:c2:52:e3:c9:71:38:cd:fe:e1:ca:10:26:b3:85:
6d:9d:4f:2b:59:86:90:7b:2f:f0:40:2c:5e:17:99:
29:38:09:e9:e5:dc:86:ac:cc:a2:bf:19:44:4f:96:
4e:da:68:02:d0:20:36:30:eb:ae:ff:ba:d7:2c:b3:
66:96:db:08:f6:23:37:31:f2:85:5a:87:6b:13:1a:
3a:0d:5a:ce:e7:53:69:d5:06:3b:d3:3c:fe:7b:32:
7b:8c:ac:67:55:9a:1e:32:68:f3:64:17:08:c6:3a:
e2:af:f5:42:84:3c:f8:e5:27:32:46:e3:e4:a3:98:
8e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E3:50:13:1D:79:40:82:97:75:16:4B:58:E1:8F:24:7B:62:97:85
X509v3 Authority Key Identifier:
keyid:08:78:13:14:2B:0D:3F:06:8D:EA:6D:D4:34:1C:4E:0B:90:79:88:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/Y-NQEx15QIKXdRZLWOGPJHtil4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/CHgTFCsNPwaN6m3UNBxOC5B5iOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:8fc1::/32
Signature Algorithm: sha256WithRSAEncryption
25:90:1f:da:47:fc:6e:47:a2:6e:67:8f:e2:bc:1a:ee:6f:af:
3e:f5:1b:49:f8:2c:e8:a2:55:e8:8f:f8:ba:0f:60:e6:0a:ac:
f0:3c:84:48:9b:40:b8:bc:82:e8:e6:9c:fb:4d:d4:a9:34:07:
67:1b:0f:4e:d4:16:f3:d0:e0:dd:bb:fb:4c:71:e9:16:3b:89:
62:02:e3:91:d7:89:3a:49:76:03:dc:5c:8f:33:e4:83:9e:b6:
21:c0:9c:4a:f0:44:0d:51:c4:99:51:8c:c4:48:35:7d:4f:b7:
f6:3f:21:ec:ef:75:48:b0:5c:84:b7:9c:ee:ed:c9:af:06:cc:
9a:ff:69:f0:61:9f:71:50:f1:bf:61:7d:e5:06:76:4d:d4:6a:
9d:ef:f1:e4:a9:bc:23:1f:aa:af:df:a3:f1:a1:18:7d:ce:7b:
11:f9:43:07:70:43:db:ec:5c:81:e1:7f:fb:93:45:be:74:8b:
58:f3:5e:68:10:fb:66:f1:df:4f:05:2b:33:2a:05:c7:fd:aa:
4e:9d:02:aa:93:95:3b:45:b7:3a:81:a2:1e:4b:56:27:c8:8f:
25:53:48:4a:db:0a:cb:79:f5:52:e6:9b:b8:1f:7d:a7:ba:78:
a7:1c:cb:c1:86:e4:17:05:76:bc:58:c9:b2:c8:12:2d:fc:f7:
db:7b:ce:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:12 2024 by rpki-client on console-fra.rpki-client.org