Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0bf8fb-1604-4cd1-9da6-1bb27c5d397e/1/yMR4qpW4o4M72avfSOlEJA4zMAE.roa
File: yMR4qpW4o4M72avfSOlEJA4zMAE.roa (raw, json)
Hash identifier: wQxC7Yjx2nyjbJSsilWqo59yzw9AE+Ve5979o9qmeSE=
Subject key identifier: C8:C4:78:AA:95:B8:A3:83:3B:D9:AB:DF:48:E9:44:24:0E:33:30:01
Certificate issuer: /CN=34e110b59362f673eae33b66ee7aea3c4028294e
Certificate serial: 018BB90D976824850298FBFDF7F7285973D9
Authority key identifier: 34:E1:10:B5:93:62:F6:73:EA:E3:3B:66:EE:7A:EA:3C:40:28:29:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOEQtZNi9nPq4ztm7nrqPEAoKU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0bf8fb-1604-4cd1-9da6-1bb27c5d397e/1/yMR4qpW4o4M72avfSOlEJA4zMAE.roa
Signing time: Fri 10 Nov 2023 11:45:57 +0000
ROA not before: Fri 10 Nov 2023 11:45:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198485
IP address blocks: 2a02:2308:50::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:0d:97:68:24:85:02:98:fb:fd:f7:f7:28:59:73:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34e110b59362f673eae33b66ee7aea3c4028294e
Validity
Not Before: Nov 10 11:45:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8c478aa95b8a3833bd9abdf48e944240e333001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f7:14:3a:eb:ab:f9:0f:f0:d4:39:87:70:bc:
b6:46:06:00:de:0c:c0:73:c3:5c:8d:4e:49:42:e9:
5f:dc:91:d0:e9:5e:ee:dc:3d:dd:d7:5d:f7:c1:52:
a7:d0:be:49:1d:e0:1c:36:03:3f:a7:28:50:8e:02:
96:22:2d:24:0a:74:d0:65:0b:50:fd:6b:7d:80:04:
60:da:7e:98:8a:92:5b:ce:60:35:de:e7:23:ae:b0:
32:d8:f5:fd:04:cd:71:eb:80:f0:20:b1:9b:7e:10:
b4:13:bb:91:b1:73:c5:db:a8:fd:5e:a5:5b:da:80:
47:d2:0b:bf:39:20:2d:3d:81:dc:8e:0d:33:f8:47:
46:c3:5d:d2:33:ee:b5:a4:88:a0:76:15:80:fe:f3:
57:ae:7d:b8:dd:d2:f6:89:f7:13:cf:ec:75:fe:c1:
89:e6:e3:5d:ca:db:35:72:2e:9e:d8:76:75:b9:3b:
42:d1:e1:98:77:d7:c7:2e:37:78:34:b3:0c:72:57:
f3:30:56:97:6b:27:cd:34:eb:a0:a1:d9:fb:4d:84:
bc:e4:43:30:33:4a:df:b4:e2:21:e1:e2:90:f3:f2:
da:82:36:53:de:87:1c:0a:de:7a:53:19:af:ef:19:
b5:37:de:58:89:3e:59:94:ef:60:1b:bf:54:ff:1e:
7b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C4:78:AA:95:B8:A3:83:3B:D9:AB:DF:48:E9:44:24:0E:33:30:01
X509v3 Authority Key Identifier:
keyid:34:E1:10:B5:93:62:F6:73:EA:E3:3B:66:EE:7A:EA:3C:40:28:29:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOEQtZNi9nPq4ztm7nrqPEAoKU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0bf8fb-1604-4cd1-9da6-1bb27c5d397e/1/yMR4qpW4o4M72avfSOlEJA4zMAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0bf8fb-1604-4cd1-9da6-1bb27c5d397e/1/NOEQtZNi9nPq4ztm7nrqPEAoKU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2308:50::/48
Signature Algorithm: sha256WithRSAEncryption
0e:3f:7b:7e:fc:d4:86:9a:66:01:91:54:47:8f:41:e1:ff:39:
af:dd:c1:81:1b:16:da:a6:63:46:10:e4:5d:04:ca:1f:50:84:
bc:e6:6e:0e:dc:97:a5:bf:8d:c8:a1:6e:83:36:6f:fe:e7:5d:
aa:6e:b1:ac:8b:15:7e:d6:81:11:b7:9f:20:60:57:a4:f8:b1:
b4:15:24:33:12:bb:d0:23:58:fe:43:63:e7:f0:07:f7:e1:ea:
5c:ee:7c:0e:04:c0:84:47:84:07:92:84:06:a7:b4:96:eb:eb:
be:5e:04:a9:da:71:c3:50:ea:a2:f3:2c:b0:3c:bc:5a:63:77:
18:41:74:4e:2f:0d:4b:eb:68:37:5e:51:42:fe:36:81:02:28:
e4:6f:6e:f5:60:fb:17:6b:f4:9f:49:99:39:50:41:d8:49:f7:
8e:76:31:9b:b7:4b:ee:fc:3c:68:05:a1:56:58:7e:02:76:92:
13:8d:09:ee:ac:ff:20:98:48:fd:47:e3:7a:d4:fa:35:1e:ef:
6a:b5:3c:2e:c7:1c:24:21:87:bb:3b:f7:67:4d:ee:be:44:9b:
75:b3:9d:c0:57:58:53:f0:9b:89:70:08:94:d3:ca:37:1f:15:
29:e4:7d:92:ad:d0:99:5e:87:c4:c4:92:68:8e:48:cf:e2:95:
06:da:a3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:26 2024 by rpki-client on console-ams.rpki-client.org