Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/JYtQoTWD5ZV3ya9i5uhiPWAU03Q.roa
File: JYtQoTWD5ZV3ya9i5uhiPWAU03Q.roa (raw, json)
Hash identifier: f/ExHT3M8jAY9gNZ1ADzHnA0xmZ1pIz42SkQtawqJl8=
Subject key identifier: 25:8B:50:A1:35:83:E5:95:77:C9:AF:62:E6:E8:62:3D:60:14:D3:74
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B1F516863BA341F3AC3BECAB1E08D
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/JYtQoTWD5ZV3ya9i5uhiPWAU03Q.roa
Signing time: Sun 01 Jan 2023 18:14:49 +0000
ROA not before: Sun 01 Jan 2023 18:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21100
IP address blocks: 2a0d:5a80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:1f:51:68:63:ba:34:1f:3a:c3:be:ca:b1:e0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=258b50a13583e59577c9af62e6e8623d6014d374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:da:65:1f:f4:c5:c6:d2:c4:3d:d2:0d:1e:d8:
db:f6:04:e3:9d:9e:e2:0d:a9:6b:cb:11:e4:9a:32:
a5:e8:d6:36:57:00:c2:76:00:44:e8:27:7e:f2:a1:
5a:d1:18:2a:76:b7:08:dd:fc:50:58:55:72:f0:99:
21:bf:9f:aa:e8:b6:91:f2:e5:d4:2b:85:eb:98:8a:
b5:57:46:9b:78:f8:3f:5f:fe:be:9b:de:42:7b:9e:
42:59:e4:c2:59:93:55:18:47:2b:de:e9:94:4d:f6:
53:aa:36:4a:35:bd:ec:63:59:c9:91:71:8c:04:41:
74:0c:b4:7f:17:10:64:05:97:cc:de:04:0a:38:da:
aa:77:4e:5f:31:05:ad:05:72:1d:4f:ea:eb:cc:69:
67:ee:5b:e5:2d:45:45:c6:e7:90:93:cc:76:6e:b4:
a8:8e:50:02:f9:59:48:2a:21:82:a2:7c:6d:d0:47:
4b:42:8a:e7:35:26:da:29:21:ad:80:28:00:4a:a6:
f0:44:07:c4:32:82:ba:64:3d:f7:e4:84:3e:28:77:
65:08:f9:43:98:51:2f:69:3b:e3:92:3f:61:76:96:
65:32:93:cb:12:7c:03:69:55:46:ab:6d:9f:80:12:
db:78:da:4d:c4:b4:fa:93:a2:d3:b7:57:df:e0:0d:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8B:50:A1:35:83:E5:95:77:C9:AF:62:E6:E8:62:3D:60:14:D3:74
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/JYtQoTWD5ZV3ya9i5uhiPWAU03Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:5a80::/29
Signature Algorithm: sha256WithRSAEncryption
76:4a:bf:98:81:cb:ad:19:74:e5:ca:f0:6b:4c:f8:29:36:d2:
6e:9c:93:4f:12:da:d9:e6:80:0c:4d:a7:f0:ab:58:e1:c7:be:
09:39:57:44:51:e9:3f:3e:59:cc:77:9a:17:08:8e:b0:25:43:
85:14:f6:86:9a:f6:80:16:84:f8:a4:9c:33:0b:50:5f:fc:e0:
0c:a0:18:56:4c:52:26:97:41:80:42:c5:2a:a3:f1:a9:a0:72:
0a:b8:1d:b7:f9:04:5e:31:20:11:0d:9f:73:af:41:d7:6e:a5:
09:27:fd:6c:7b:37:0d:d8:51:46:3e:f2:86:0d:87:10:fd:51:
f6:ff:0b:9b:61:73:98:22:dc:0f:2f:55:55:46:8a:de:09:e1:
9c:c0:79:24:18:a5:2c:ba:18:16:25:b3:a1:1e:70:4d:4f:05:
dd:a3:89:e9:41:80:6b:19:6d:6d:18:9a:af:30:eb:db:0f:93:
c0:54:5a:0b:82:09:9e:08:66:f6:b8:a6:d9:16:45:9f:83:4f:
74:e1:27:3e:1d:f4:16:7d:5c:fd:cf:70:52:5b:2a:fb:22:15:
39:c5:22:a0:39:5e:96:19:e5:18:f0:48:53:7b:ad:a7:52:69:
73:92:11:76:b6:11:64:11:fc:e9:77:ec:57:0d:52:01:73:6a:
06:ce:45:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:58 2024 by rpki-client on console-ams.rpki-client.org