Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/YhngB29kZ0fQi5w37xjalHYAzGM.roa
File: YhngB29kZ0fQi5w37xjalHYAzGM.roa (raw, json)
Hash identifier: gC6QIDAK/q92BT2B2kV0a6CS78qQbqLsTI/7fgkx+us=
Subject key identifier: 62:19:E0:07:6F:64:67:47:D0:8B:9C:37:EF:18:DA:94:76:00:CC:63
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 01856BDC5D08AD0C52E4A16583919B7F1AE7
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/YhngB29kZ0fQi5w37xjalHYAzGM.roa
Signing time: Sun 01 Jan 2023 05:44:41 +0000
ROA not before: Sun 01 Jan 2023 05:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213204
IP address blocks: 2001:678:d50::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:5d:08:ad:0c:52:e4:a1:65:83:91:9b:7f:1a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Jan 1 05:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6219e0076f646747d08b9c37ef18da947600cc63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8d:b8:75:a2:90:20:8d:00:34:5b:82:9e:83:
3a:e6:0c:0c:19:8e:ca:f6:a4:1c:05:12:af:c2:b9:
25:c5:2c:39:30:1a:7f:bd:ea:5f:e7:bd:a8:66:27:
0e:78:15:ef:df:38:a1:63:c2:7d:f1:48:11:cb:ca:
4b:c1:ab:4c:d3:c6:5f:43:dc:81:9c:70:0c:41:a4:
84:33:26:9b:62:88:41:7d:76:2c:8c:6b:cd:a4:6d:
f1:fe:38:16:be:a2:37:3a:6f:87:48:24:44:86:fd:
09:d9:24:ee:a2:08:fd:da:c1:8a:da:12:f9:0e:7d:
95:81:7f:74:70:74:d2:4e:9e:f7:1a:d1:f1:1b:42:
21:23:dd:59:89:3f:fd:39:fd:0b:b1:ed:1c:b4:7f:
85:02:f8:6a:10:b1:c7:f6:0c:d5:68:d6:37:a4:d9:
4a:2e:fe:aa:78:2e:9f:55:9f:2c:74:48:b4:0f:57:
50:71:df:1b:2f:cb:51:04:d0:be:a7:a7:36:ac:3f:
3c:7c:06:f1:07:d9:09:be:66:91:a3:54:f6:ca:d3:
1c:0c:ec:b2:99:61:14:78:43:d7:9a:6c:e7:1b:e0:
44:10:03:b5:fa:33:6f:dc:51:2c:14:5a:3f:86:97:
91:7c:1c:a8:45:ea:4d:fa:af:f2:89:3a:3b:69:6e:
f6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:19:E0:07:6F:64:67:47:D0:8B:9C:37:EF:18:DA:94:76:00:CC:63
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/YhngB29kZ0fQi5w37xjalHYAzGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d50::/48
Signature Algorithm: sha256WithRSAEncryption
2a:0b:e9:70:f8:c5:36:a1:d7:96:78:74:22:9e:92:26:36:6e:
4e:4f:cd:1a:c2:d0:81:79:ba:fa:ad:c8:b5:72:06:11:de:92:
6a:59:04:04:bb:a1:50:9e:89:1b:89:43:a5:13:68:e0:1e:32:
6d:10:da:37:dd:92:e9:90:78:45:f7:25:d9:e5:51:db:f9:7f:
0c:4e:b3:66:37:23:fd:51:62:8a:0e:29:1f:f3:94:1c:8e:9d:
32:bd:96:04:be:a6:1c:4f:9b:66:8f:52:70:03:e7:95:c1:21:
26:44:5d:fe:58:72:67:77:75:d1:f6:00:ce:f4:d1:66:3d:7e:
36:6c:be:08:2a:8d:1f:53:17:93:39:43:37:e3:8c:6a:e6:8e:
76:3c:1e:54:20:aa:0d:ca:aa:a7:a4:97:c3:f9:9c:c0:7f:8f:
ab:20:7d:c3:53:51:f6:d7:35:cb:61:1a:e3:1c:cc:cd:97:ab:
99:45:01:84:5f:fb:9c:b6:ce:b4:68:a2:63:f0:69:8b:22:3c:
65:34:cb:b5:85:c6:f6:ee:db:30:8a:3c:5f:dc:a4:7a:a0:87:
71:61:e7:0e:46:e8:b8:cd:6f:c3:ac:3b:9f:70:91:f3:83:b5:
9c:38:4c:00:47:14:24:4d:4f:54:51:24:c6:a1:61:91:d4:08:
03:10:81:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:00 2024 by rpki-client on console-ams.rpki-client.org