Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/cf7c19-1c7d-4ebe-b4dd-cbccf90455fe/1/yQpEupZ0nTUBmDtmqDx5XxVVphE.roa
File: yQpEupZ0nTUBmDtmqDx5XxVVphE.roa (raw, json)
Hash identifier: yasder9yowOVbj2WoYRUgyDAMbVAXgkBj6d8YTdvv78=
Subject key identifier: C9:0A:44:BA:96:74:9D:35:01:98:3B:66:A8:3C:79:5F:15:55:A6:11
Certificate issuer: /CN=2d2d7d9743de2efa2f633378a268f58f2aa16050
Certificate serial: 01856EB8F5A75FD69B1158F3E365C516AD52
Authority key identifier: 2D:2D:7D:97:43:DE:2E:FA:2F:63:33:78:A2:68:F5:8F:2A:A1:60:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LS19l0PeLvovYzN4omj1jyqhYFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/cf7c19-1c7d-4ebe-b4dd-cbccf90455fe/1/yQpEupZ0nTUBmDtmqDx5XxVVphE.roa
Signing time: Sun 01 Jan 2023 19:04:53 +0000
ROA not before: Sun 01 Jan 2023 19:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197424
IP address blocks: 2a0f:e580::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:f5:a7:5f:d6:9b:11:58:f3:e3:65:c5:16:ad:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d2d7d9743de2efa2f633378a268f58f2aa16050
Validity
Not Before: Jan 1 19:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c90a44ba96749d3501983b66a83c795f1555a611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4d:04:d0:3c:75:f9:4e:b2:50:f9:d8:75:68:
66:e5:5d:d7:58:7c:b0:dc:52:8f:8a:80:8a:52:84:
4a:be:2b:3f:75:27:c3:88:5c:06:2a:50:4e:8f:ae:
e3:f6:04:fe:89:72:2f:72:ab:d6:73:13:06:93:40:
0d:90:36:7a:e0:30:36:26:90:6c:ac:4b:c5:e1:1f:
47:e4:c3:f5:98:31:ef:55:b8:30:e9:7a:b1:87:41:
d0:cc:eb:63:6e:4d:ed:39:b4:1f:8b:ab:f5:35:c0:
9a:d5:b4:94:27:03:28:79:bd:d5:78:56:1e:82:63:
89:33:b6:c1:ab:ab:63:61:76:b9:37:81:67:32:4c:
71:f7:41:be:7e:a8:14:93:c9:13:b2:62:62:6e:54:
9a:75:b6:1e:f8:10:0c:29:71:da:99:63:a8:11:13:
a0:93:0a:4f:34:66:f1:55:0e:13:05:0c:73:db:65:
2f:2e:18:db:fe:0b:02:fa:95:fa:61:38:4e:47:99:
ed:cb:8e:8e:52:91:7e:09:91:4e:b8:c9:c8:27:8b:
74:92:0a:03:f6:ca:12:d9:c3:07:fe:35:fd:eb:dc:
cc:f7:a5:c9:7d:88:22:19:fc:ce:97:c4:e8:de:85:
1a:ba:2c:77:2a:56:45:49:d5:26:5b:c6:de:1f:ec:
91:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0A:44:BA:96:74:9D:35:01:98:3B:66:A8:3C:79:5F:15:55:A6:11
X509v3 Authority Key Identifier:
keyid:2D:2D:7D:97:43:DE:2E:FA:2F:63:33:78:A2:68:F5:8F:2A:A1:60:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LS19l0PeLvovYzN4omj1jyqhYFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/cf7c19-1c7d-4ebe-b4dd-cbccf90455fe/1/yQpEupZ0nTUBmDtmqDx5XxVVphE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/cf7c19-1c7d-4ebe-b4dd-cbccf90455fe/1/LS19l0PeLvovYzN4omj1jyqhYFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e580::/48
Signature Algorithm: sha256WithRSAEncryption
6f:4d:72:e0:d4:52:6d:fc:ce:82:56:2b:f2:30:f6:a1:5f:fb:
e9:47:3d:51:3e:de:94:d5:50:4e:f2:e8:b2:fa:03:87:fb:e7:
16:8b:10:c1:3b:79:0d:22:c6:6a:69:b5:cc:a8:32:17:33:7c:
cd:24:35:bb:b6:c0:b1:86:f4:e7:37:4c:a6:55:be:fe:6e:ad:
bb:47:60:ad:1b:e3:6f:93:5f:74:e8:92:41:6b:dc:9c:ac:bb:
1a:0e:30:46:72:e0:b6:ef:11:6f:e6:11:cf:06:8b:cb:2a:97:
bf:03:5f:b7:d3:3e:78:9a:df:61:fa:a4:6e:b7:e2:b1:a6:1c:
02:0c:a9:ab:bc:ab:a5:36:85:85:a9:5a:aa:cf:94:57:d7:38:
15:4f:ef:bf:f0:99:60:e0:bb:14:de:af:80:ea:4b:1b:1b:68:
c7:8c:10:45:0c:bd:28:24:6e:62:87:7f:a5:2c:bb:7f:f1:2c:
7e:57:da:f9:6f:c5:20:e5:0e:f5:0d:69:33:ca:09:bc:53:0d:
ba:6c:cc:26:5c:15:e1:34:43:59:ad:5b:36:ee:49:38:4d:62:
41:54:c4:35:7a:85:7f:0d:44:44:82:37:5d:db:cb:db:89:1e:
c0:a3:57:bf:a5:aa:55:f3:ff:e0:af:3b:2e:8d:e5:73:8e:c5:
14:6a:e0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:19 2024 by rpki-client on console-fra.rpki-client.org