Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/YewAcgp0-iKslh0LOBJYOJeBPnw.roa
File: YewAcgp0-iKslh0LOBJYOJeBPnw.roa (raw, json)
Hash identifier: ss80fQ2fAS9GBpHdBykloyRpgKGpj0iGBRbUbuz6SKg=
Subject key identifier: 61:EC:00:72:0A:74:FA:22:AC:96:1D:0B:38:12:58:38:97:81:3E:7C
Certificate issuer: /CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Certificate serial: 018A26F9607150CAEA62F35B48BC6613A589
Authority key identifier: 86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/YewAcgp0-iKslh0LOBJYOJeBPnw.roa
Signing time: Thu 24 Aug 2023 09:56:31 +0000
ROA not before: Thu 24 Aug 2023 09:56:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13020
IP address blocks: 2001:67c:20a1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Nov 2023 15:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:26:f9:60:71:50:ca:ea:62:f3:5b:48:bc:66:13:a5:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Validity
Not Before: Aug 24 09:56:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61ec00720a74fa22ac961d0b3812583897813e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:76:bb:f5:2b:82:50:e3:e0:1c:36:36:92:34:
38:37:7e:6e:5d:81:6f:55:14:0a:8f:23:8a:28:b2:
40:ea:12:29:71:17:a4:e4:34:d0:46:08:cb:01:4e:
44:21:48:0f:05:1d:0c:aa:ff:12:ba:48:ac:97:a6:
56:e8:4b:22:77:54:38:f9:c3:e8:20:3d:cd:74:cf:
5d:ba:90:3b:c5:71:1c:96:69:60:01:48:8f:77:56:
94:27:74:9e:77:4b:e1:79:04:c6:6a:4a:08:bd:b4:
e9:0b:e1:e2:5c:ae:40:d4:8a:75:56:b9:32:89:f9:
3b:03:a3:80:91:b6:5c:40:65:a0:af:3d:39:6b:b7:
d8:0a:cd:65:56:ec:48:d9:8f:2f:88:6f:e3:76:6f:
25:af:3c:45:4a:fe:b6:4c:e2:92:ba:af:34:ae:03:
0d:aa:db:08:50:76:be:37:36:96:50:42:94:b3:c8:
bb:b7:84:e0:62:71:a5:fc:11:8b:c0:58:9f:a2:a1:
78:4f:4a:ff:2f:5f:7b:3c:ba:d2:5b:23:6f:ab:68:
9a:09:44:bf:5f:a1:11:85:99:4e:be:13:ad:d6:8f:
31:3f:f4:6e:e5:ba:2f:b7:29:26:9d:f3:1a:d6:bb:
1c:1f:85:2b:94:5e:fd:dd:e0:34:50:6f:94:49:74:
68:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EC:00:72:0A:74:FA:22:AC:96:1D:0B:38:12:58:38:97:81:3E:7C
X509v3 Authority Key Identifier:
keyid:86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/YewAcgp0-iKslh0LOBJYOJeBPnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:20a1::/48
Signature Algorithm: sha256WithRSAEncryption
34:a8:7d:da:16:a8:38:6b:e9:87:27:af:14:c8:e7:9f:88:5c:
d9:d9:f8:a1:1d:d0:32:ba:5b:96:0d:3a:bc:91:82:b9:d0:01:
16:1a:5c:b2:dd:ce:ff:91:60:28:50:24:1e:0e:3d:73:09:a5:
59:22:ff:d0:30:d6:a4:5b:bc:6d:bc:a4:90:a5:ef:ee:50:19:
dc:28:a1:9e:39:4a:fa:e8:9f:98:ec:b3:1b:9b:0f:8f:84:3d:
a7:9e:b8:29:d4:d1:4e:07:d0:39:31:17:64:87:85:86:f4:3e:
0b:c5:f4:2f:9f:66:96:8d:a2:b6:4d:50:c6:00:a3:46:4e:c5:
85:76:fe:c4:39:31:f3:be:bd:15:1b:db:44:0f:1a:a9:6b:fd:
ae:b3:99:6f:59:2c:16:98:1c:44:bc:99:6c:de:3a:23:08:d4:
41:88:6f:db:77:54:47:1c:d3:e4:bf:3e:89:2e:69:bf:d3:0a:
a8:df:ba:78:68:e8:b9:ee:01:10:2b:31:da:44:f9:b6:fe:2c:
82:1b:87:16:39:c5:4b:f5:b0:00:5e:12:6d:9d:14:b1:e5:75:
be:90:68:59:b5:8f:c2:8d:b2:72:08:49:d8:81:43:8b:13:8f:
a9:7b:d1:df:b2:87:ae:a3:a5:8d:4b:54:2e:16:91:ee:6a:e0:
cf:1a:69:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org