Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/aYZAV9dvczKx8jFxGZx-dvSjUr4.roa
File: aYZAV9dvczKx8jFxGZx-dvSjUr4.roa (raw, json)
Hash identifier: boxo+saMNtMk5PKmx3dlBxEq1yWnE3QYmT/G3nZdB88=
Subject key identifier: 69:86:40:57:D7:6F:73:32:B1:F2:31:71:19:9C:7E:76:F4:A3:52:BE
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 01887D1203D24D23B9AFE8C13699B4100F6B
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/aYZAV9dvczKx8jFxGZx-dvSjUr4.roa
Signing time: Fri 02 Jun 2023 17:05:12 +0000
ROA not before: Fri 02 Jun 2023 17:05:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203
IP address blocks: 2a03:5000:42::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 02 Jun 2023 17:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7d:12:03:d2:4d:23:b9:af:e8:c1:36:99:b4:10:0f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Jun 2 17:05:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69864057d76f7332b1f23171199c7e76f4a352be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dc:cf:cb:2f:3b:63:a4:0b:3c:fb:ae:70:05:
f7:d2:f4:b4:ec:59:d3:6d:ea:7d:07:9c:a9:b8:00:
20:98:5e:c5:7e:a0:39:09:82:a7:c7:00:4c:15:91:
44:93:ef:72:a0:d7:ab:be:52:d5:9a:ae:8a:5c:85:
5d:ed:9f:37:c0:b9:43:08:c8:4b:0c:9c:4d:1b:c4:
bd:8e:37:f3:6b:4f:c5:e9:ae:0d:e2:ba:48:29:36:
f4:17:f6:72:7d:49:27:5d:ab:a1:46:2a:08:11:7e:
ef:55:27:24:06:db:88:e1:15:15:06:68:ca:67:2b:
8d:de:a5:40:f4:2e:e2:10:a5:23:e2:7b:b8:c8:1a:
4e:e7:bb:e2:66:db:64:ae:71:52:19:12:e5:3e:0d:
d6:19:99:6d:9a:23:01:0d:58:ed:88:40:79:6d:81:
8c:2a:42:10:42:d1:5a:69:bb:8f:fe:8b:5c:9d:a4:
e9:0a:72:08:e4:7e:4c:e2:8a:ad:00:e9:81:6f:6d:
02:ba:a5:b1:e3:eb:d7:51:ec:cd:82:19:83:55:66:
a3:d2:25:92:df:10:84:7c:4e:7b:51:e1:10:ec:24:
cf:6b:df:3e:be:17:c2:d0:d5:bb:8d:b8:5b:3a:e0:
91:60:f7:0a:71:e0:1a:f4:6f:9a:6a:4f:db:4b:5d:
c2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:86:40:57:D7:6F:73:32:B1:F2:31:71:19:9C:7E:76:F4:A3:52:BE
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/aYZAV9dvczKx8jFxGZx-dvSjUr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5000:21::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:31::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::/48
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
26:5b:96:71:99:dc:72:14:db:ed:d4:8f:c2:b4:ea:17:cf:a3:
c8:e0:9a:f1:83:6e:34:35:11:6d:39:be:1f:39:82:6d:ff:32:
90:fc:2a:1b:25:f5:9f:98:aa:3e:96:39:4a:fd:0c:bd:92:8d:
7b:b0:01:78:d9:d1:be:35:d6:ae:ba:14:ce:28:b8:5b:71:ff:
38:8a:dc:4a:27:9d:4b:47:8a:09:d6:49:28:2a:64:81:e7:5a:
13:fc:61:20:15:2f:db:45:79:3d:5a:13:9f:72:21:76:62:e5:
e2:96:49:e1:2e:be:8b:b5:3a:64:9f:85:b6:26:4e:11:85:6b:
eb:64:1c:20:dc:00:55:6a:bb:20:32:a5:2e:f0:bd:dd:c3:ed:
c0:4c:8c:c7:cd:fc:8d:b4:30:e0:7b:89:02:8c:12:4b:21:7c:
a4:9e:c6:c3:28:83:02:6e:71:6e:8a:f2:66:a0:df:d1:a1:6a:
18:42:f6:bd:28:53:21:d6:e3:1d:89:ad:14:c9:7a:06:18:2e:
3d:6d:73:f9:8c:49:47:1e:1f:98:66:e6:10:d2:7b:a8:af:15:
5b:3f:61:24:bd:13:b8:91:ae:c6:09:5b:83:bd:91:07:da:cf:
81:b8:ef:fc:60:ac:0f:83:69:a8:79:4c:b7:24:30:26:01:de:
ad:3a:21:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:11 2024 by rpki-client on console-fra.rpki-client.org