Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/yieH8SIO0_kdttMgryLIwEbpeVg.roa
File: yieH8SIO0_kdttMgryLIwEbpeVg.roa (raw, json)
Hash identifier: jromymCVYFJAV0kGJ7pFeOmxgKjD/p+ZoA0yfeyPEv4=
Subject key identifier: CA:27:87:F1:22:0E:D3:F9:1D:B6:D3:20:AF:22:C8:C0:46:E9:79:58
Certificate issuer: /CN=7f760952c733f6f2ee9254edcd14e0daa78b388c
Certificate serial: 0190CB7FA6EE34AC10CB408A395FD083D970
Authority key identifier: 7F:76:09:52:C7:33:F6:F2:EE:92:54:ED:CD:14:E0:DA:A7:8B:38:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/yieH8SIO0_kdttMgryLIwEbpeVg.roa
Signing time: Fri 19 Jul 2024 14:57:38 +0000
ROA not before: Fri 19 Jul 2024 14:57:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216084
IP address blocks: 2a05:6c00::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 23 Jul 2024 07:12:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cb:7f:a6:ee:34:ac:10:cb:40:8a:39:5f:d0:83:d9:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f760952c733f6f2ee9254edcd14e0daa78b388c
Validity
Not Before: Jul 19 14:57:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca2787f1220ed3f91db6d320af22c8c046e97958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:77:7d:55:6b:16:20:1f:da:fb:1f:9c:8f:4f:
a2:b2:21:0a:74:25:f3:d7:aa:55:7c:63:b7:45:5b:
d7:38:15:fb:ea:7e:a9:0e:7d:73:e0:87:1e:2c:d4:
a4:ca:37:4f:36:54:aa:b8:3c:59:77:91:23:07:b9:
6c:89:b9:0d:2b:ed:2d:72:55:0c:f6:de:7c:36:ed:
1b:cd:0e:13:a7:ef:f8:aa:38:82:38:c7:04:23:3f:
9b:a9:cd:d5:56:27:68:77:31:d9:31:a8:78:68:56:
8f:cc:09:3b:1f:d4:6a:a8:ff:b0:41:da:5f:70:ba:
6f:89:c9:a3:e6:45:3c:1e:0a:70:07:f8:18:1e:89:
57:3d:05:c7:b8:c6:36:90:ae:2f:c1:a7:c2:49:04:
50:84:a4:da:24:66:8b:03:67:a9:56:00:84:a6:b6:
fa:3f:d1:70:e4:b3:c3:b8:97:5d:65:d9:78:63:59:
88:53:33:dc:a3:6d:f7:93:3d:49:d7:84:24:c4:1a:
8f:24:df:b6:c6:2d:c2:42:f0:ec:45:cc:77:1b:d7:
52:4a:34:69:06:44:46:c9:14:6d:7c:70:d3:18:b5:
63:85:53:bd:70:a7:9e:76:3c:9f:67:0d:46:53:30:
c6:d9:bd:d2:d5:b5:22:2e:cd:11:bf:23:95:3c:de:
73:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:27:87:F1:22:0E:D3:F9:1D:B6:D3:20:AF:22:C8:C0:46:E9:79:58
X509v3 Authority Key Identifier:
keyid:7F:76:09:52:C7:33:F6:F2:EE:92:54:ED:CD:14:E0:DA:A7:8B:38:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/yieH8SIO0_kdttMgryLIwEbpeVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:6c00::/32
Signature Algorithm: sha256WithRSAEncryption
25:01:c1:1f:52:bd:b0:3d:09:49:ac:7e:01:10:73:28:62:7a:
cd:57:ad:42:4f:b2:db:b8:52:20:fe:35:d6:59:31:6d:4e:55:
33:df:b3:a4:e8:31:d1:81:37:8d:f7:9b:f5:98:6e:6f:bc:56:
ac:a5:e2:6f:fb:b8:8b:ae:e0:39:66:1d:1d:fa:c6:9f:3b:32:
e9:26:53:af:86:18:79:65:87:1f:20:22:f6:21:bb:7f:3a:77:
87:41:bc:4d:05:e1:ab:47:c2:bd:ac:22:f8:f2:37:6a:0c:7c:
c9:a9:4d:ad:fc:88:2c:6a:02:e2:37:d4:c5:77:87:7d:31:ec:
d6:47:b8:23:6a:2c:1f:98:1f:9a:07:4f:6e:8d:37:00:19:51:
11:3e:f2:41:9e:64:51:cb:d6:d7:f8:9f:0d:f3:3d:be:9d:98:
4f:25:ac:e4:6e:34:b5:c2:f6:51:10:a0:eb:73:6d:ad:91:01:
1c:b5:09:1d:2b:02:10:85:cd:94:5e:5e:b1:33:13:d0:fe:e5:
9b:7d:f0:3d:ff:cc:ba:ae:b9:05:6e:a2:60:63:90:a0:1c:cb:
94:8f:05:09:20:3d:c5:ec:47:b2:de:a9:12:fc:a7:74:6b:4f:
fb:b9:ab:05:ca:1d:9d:53:26:24:10:86:9b:84:d0:64:a1:b4:
cf:fb:cf:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 09:47:46 2024 by rpki-client on console-fra.rpki-client.org