Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yGTCMdHmUdMmlrrJdyzLLjw5CL4.roa
File: yGTCMdHmUdMmlrrJdyzLLjw5CL4.roa (raw, json)
Hash identifier: yoj+hqAaf3M+uPGifLKPaAfVGonoiL38TKReaMX8d2Q=
Subject key identifier: C8:64:C2:31:D1:E6:51:D3:26:96:BA:C9:77:2C:CB:2E:3C:39:08:BE
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F79707B65E7B654E9FFE5CC141B9A85
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yGTCMdHmUdMmlrrJdyzLLjw5CL4.roa
Signing time: Sun 01 Jan 2023 22:35:07 +0000
ROA not before: Sun 01 Jan 2023 22:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6233
IP address blocks: 2a07:e340::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:70:7b:65:e7:b6:54:e9:ff:e5:cc:14:1b:9a:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c864c231d1e651d32696bac9772ccb2e3c3908be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7e:ff:7f:26:15:37:dc:c3:71:74:a2:9b:04:
b2:f8:ce:54:d9:67:b2:9b:f7:ce:2a:d7:64:af:aa:
9a:13:4a:83:50:c7:95:87:9b:79:03:24:f5:fc:04:
5e:6b:df:7d:98:9b:1f:ae:5d:d8:56:bc:5c:05:9f:
31:65:12:5a:7f:a5:57:de:49:5c:0f:40:91:21:dc:
05:0a:41:e6:b6:44:45:db:aa:5b:41:22:79:f6:a3:
f2:9b:11:49:e0:d8:54:52:4c:39:1c:b5:e3:87:e5:
8a:e0:50:33:3e:33:ee:b6:b5:4d:d9:0e:ab:39:32:
c5:3d:e9:ef:7b:92:dd:7f:7f:87:d6:fb:94:9e:6a:
dc:9e:da:0e:5a:9f:9b:1b:cf:96:22:ed:9e:e9:be:
cf:c9:dc:b6:7e:a5:c8:96:6f:0a:e0:9b:17:45:23:
47:4d:fe:1e:0d:54:4b:a8:01:16:c0:92:ee:05:6d:
10:b8:a3:f0:a5:81:91:22:35:30:df:bc:15:62:4f:
6b:98:68:c9:63:f5:1d:f8:c2:1d:3a:40:40:b3:a5:
49:64:cd:14:2f:75:5d:a1:69:10:1d:c0:e0:dc:8d:
33:52:53:6a:03:63:a5:ff:e8:a5:15:12:a4:8c:3a:
77:4a:fc:89:a9:97:ff:3c:fc:c9:1a:62:6f:43:3f:
f7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:64:C2:31:D1:E6:51:D3:26:96:BA:C9:77:2C:CB:2E:3C:39:08:BE
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yGTCMdHmUdMmlrrJdyzLLjw5CL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e340::/32
Signature Algorithm: sha256WithRSAEncryption
a8:fe:df:bb:3d:77:83:b2:56:41:3c:0b:89:68:0b:ba:c3:65:
31:e1:fd:70:0f:76:0a:c1:65:98:bb:5f:c8:f7:5d:d5:57:a9:
69:5a:d6:f5:e2:8f:cf:e7:37:33:39:14:03:36:6b:4b:27:a9:
ad:45:95:02:9b:4a:5a:af:12:c0:dd:92:9d:e6:93:9a:f9:13:
ab:08:9d:87:25:ef:1b:a8:04:36:ba:19:8d:4c:ae:65:90:a7:
33:34:63:25:13:bc:85:b1:b6:ce:b8:b2:86:fc:0a:4a:1c:06:
6c:7a:ab:2d:5f:5a:bc:7f:f4:60:06:1e:94:2b:df:67:3e:3c:
e3:c5:55:1e:e4:32:2c:a3:20:fa:8e:59:6e:d8:27:77:71:6c:
28:8c:60:af:2a:e6:3b:de:7d:24:96:9d:52:ab:d3:0b:16:a1:
d5:96:6d:52:77:53:40:45:fc:9d:4e:5f:26:35:8b:9b:d2:0f:
7e:dd:24:54:81:41:94:25:ec:67:dd:4f:4b:58:07:77:e9:a9:
c3:f9:fc:c1:f6:af:77:33:63:77:05:be:af:c2:37:05:9d:49:
8f:0d:2c:d0:21:61:80:06:ba:f4:b4:08:23:10:7e:ce:b0:4f:
47:25:b4:37:63:55:21:c9:f0:14:db:ac:f9:a9:a1:60:dd:8b:
c1:9c:0c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:57 2024 by rpki-client on console-fra.rpki-client.org