Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/yxzjYJ8ZnztKkmE3okqeRFsAZjg.roa
File: yxzjYJ8ZnztKkmE3okqeRFsAZjg.roa (raw, json)
Hash identifier: bH4uSi5n6gfO4A4eVOAWiiGnn8mWIMv2xU8q6u+ZYWM=
Subject key identifier: CB:1C:E3:60:9F:19:9F:3B:4A:92:61:37:A2:4A:9E:44:5B:00:66:38
Certificate issuer: /CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Certificate serial: 0188D4EE8E6471924C8275CD42E1AEFE452A
Authority key identifier: DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/yxzjYJ8ZnztKkmE3okqeRFsAZjg.roa
Signing time: Mon 19 Jun 2023 18:33:03 +0000
ROA not before: Mon 19 Jun 2023 18:33:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:7c40::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d4:ee:8e:64:71:92:4c:82:75:cd:42:e1:ae:fe:45:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Validity
Not Before: Jun 19 18:33:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb1ce3609f199f3b4a926137a24a9e445b006638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:63:4f:ad:46:e7:93:51:8f:02:fa:ef:cc:6d:
ef:04:56:66:8b:00:1a:2f:02:33:9f:e3:a8:57:0b:
84:fd:be:e3:73:b6:19:11:23:7e:01:e8:e5:a6:90:
0a:c6:cb:b7:d8:2b:23:36:0c:27:4d:87:ef:4f:76:
0f:91:69:1d:46:8a:f0:cf:ea:40:98:8b:41:4a:ca:
d6:04:fb:ee:3c:da:50:c6:ce:b5:38:7c:d2:5c:32:
17:9d:e6:d0:57:49:c4:f8:95:94:53:d0:36:bb:5f:
6b:7c:b6:82:64:e5:c2:2e:85:75:6d:cc:62:2b:8b:
23:b5:d1:f6:39:46:76:af:22:2a:a1:f5:d4:5c:40:
a4:65:b3:8e:f8:cc:7c:73:d2:fe:f6:9d:14:b7:d9:
21:94:14:8f:e3:00:0c:62:8a:e3:9e:bf:e0:d1:f7:
1c:aa:62:0f:01:25:9f:c8:f3:6d:69:b2:b3:93:4e:
4d:f5:db:22:84:9f:2a:29:ab:d3:a5:cc:94:5f:f5:
9c:4f:cf:36:0b:eb:4a:80:cc:a9:5b:85:b2:2f:82:
ce:4c:86:72:c7:1a:17:f2:03:2e:6e:e5:d7:f7:2e:
12:bb:ba:92:2f:b4:33:e0:8b:ee:4a:59:e6:40:62:
2e:be:0b:9c:00:57:e9:b9:c7:8c:8f:95:fb:7b:5e:
63:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1C:E3:60:9F:19:9F:3B:4A:92:61:37:A2:4A:9E:44:5B:00:66:38
X509v3 Authority Key Identifier:
keyid:DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/yxzjYJ8ZnztKkmE3okqeRFsAZjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7c40::/32
Signature Algorithm: sha256WithRSAEncryption
31:68:83:2e:c2:dd:c4:40:26:f0:99:09:de:cc:37:65:ac:f0:
70:46:16:2f:2c:d4:95:c7:ad:1e:15:c6:ff:e8:fe:94:19:ac:
15:8a:fd:b9:2f:ff:28:b1:76:68:ac:58:c9:15:f3:02:0c:16:
eb:23:2f:65:25:02:1f:91:1c:e9:d9:83:63:0f:ef:fc:f4:58:
a3:05:45:69:cf:ae:bb:2a:20:d5:e6:6e:6f:ff:d8:28:0b:6a:
b6:2c:09:40:cf:b7:d9:7c:c3:e5:76:0a:60:3e:91:00:bd:ce:
9f:30:ff:47:7b:02:11:67:a2:0b:df:cc:b2:80:45:36:2b:3e:
75:c1:08:85:fb:ca:2a:e3:27:21:55:82:7f:fa:b5:29:e5:d4:
21:e6:5f:98:b5:ee:df:89:9c:3d:bc:eb:34:69:d3:f6:dc:90:
fe:29:d7:f3:5a:17:88:bd:6f:bc:ac:c6:c0:d2:47:1a:72:32:
f9:34:93:ba:51:f7:19:40:f7:4e:2e:ce:0c:bc:b4:26:9a:67:
8a:0f:87:60:1e:2b:93:54:75:96:f0:48:9e:a7:13:66:c1:f4:
bb:a1:f8:47:32:41:26:b3:ca:29:94:56:e3:53:1a:01:04:2a:
96:40:69:17:03:fc:20:f9:8f:26:be:e7:39:5e:c4:31:01:3e:
1d:c7:be:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:23 2023 by rpki-client on console-fra.rpki-client.org