Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e387ff-5348-4b32-b136-d05184c25e9a/1/GYyoL19vIvdq3SmlRXSTcNZKCSg.roa
File: GYyoL19vIvdq3SmlRXSTcNZKCSg.roa (raw, json)
Hash identifier: aqhpNEAyD/FJstlY5wbzoSzvjj03szijwlz7EtkYpkw=
Subject key identifier: 19:8C:A8:2F:5F:6F:22:F7:6A:DD:29:A5:45:74:93:70:D6:4A:09:28
Certificate issuer: /CN=633bca0ed1f9b60bc0ed423022d0389e29b6cdd4
Certificate serial: 01861F2A93940A9180ED6DDE86FDFBD8B466
Authority key identifier: 63:3B:CA:0E:D1:F9:B6:0B:C0:ED:42:30:22:D0:38:9E:29:B6:CD:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzvKDtH5tgvA7UIwItA4nim2zdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e387ff-5348-4b32-b136-d05184c25e9a/1/GYyoL19vIvdq3SmlRXSTcNZKCSg.roa
Signing time: Sun 05 Feb 2023 01:22:09 +0000
ROA not before: Sun 05 Feb 2023 01:22:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212149
IP address blocks: 2a11:5cc1:b00b::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1f:2a:93:94:0a:91:80:ed:6d:de:86:fd:fb:d8:b4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633bca0ed1f9b60bc0ed423022d0389e29b6cdd4
Validity
Not Before: Feb 5 01:22:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=198ca82f5f6f22f76add29a545749370d64a0928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9a:e9:2c:3f:d9:8c:76:7f:13:0a:83:e6:ee:
3c:30:24:25:4c:d3:c1:c0:1b:95:05:5e:70:44:0d:
a7:8c:12:de:d0:2f:77:7d:55:5c:c4:5c:74:db:40:
6e:08:b7:02:71:78:1f:93:72:62:2f:59:a9:4c:07:
83:6d:5a:c4:5f:4b:fc:a3:6c:8b:4b:27:b3:35:03:
59:9b:d5:0a:9a:36:03:08:f9:13:23:b6:0d:bb:2c:
a7:eb:07:1f:b7:af:3e:a2:c9:82:7b:5e:91:5e:ae:
db:f6:ed:76:43:2f:81:62:ef:0e:0a:25:34:97:35:
0f:84:88:fc:39:ae:7f:29:5f:3e:61:5b:7c:fc:29:
84:fe:02:f3:f4:d7:db:a7:10:ee:5c:38:02:83:37:
3f:00:51:8c:08:8d:1d:a3:0f:31:fb:87:81:36:d4:
10:8d:9b:39:5c:4d:9e:e7:f7:46:22:47:84:1e:c7:
22:48:0b:38:5d:75:c8:a4:62:b3:bd:cb:97:9d:90:
4f:f5:2f:7c:a8:e3:a7:a4:de:0b:5d:16:22:ad:1c:
45:60:3e:bf:c6:ad:f8:c0:78:29:62:47:f9:8c:a5:
ac:6a:dd:6d:9e:f6:e2:3d:a7:1e:fd:1e:1c:c1:05:
2e:0e:b5:a6:6c:54:2d:5a:09:38:85:c2:2b:89:cd:
73:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8C:A8:2F:5F:6F:22:F7:6A:DD:29:A5:45:74:93:70:D6:4A:09:28
X509v3 Authority Key Identifier:
keyid:63:3B:CA:0E:D1:F9:B6:0B:C0:ED:42:30:22:D0:38:9E:29:B6:CD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzvKDtH5tgvA7UIwItA4nim2zdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e387ff-5348-4b32-b136-d05184c25e9a/1/GYyoL19vIvdq3SmlRXSTcNZKCSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e387ff-5348-4b32-b136-d05184c25e9a/1/YzvKDtH5tgvA7UIwItA4nim2zdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5cc1:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
1c:cc:b0:9a:5b:b6:e5:ed:01:bc:c9:1c:47:eb:cb:85:f0:24:
43:67:68:a3:d4:6c:95:58:4f:81:bf:2d:62:55:7a:e4:7f:96:
c8:0c:0a:4e:1d:6e:85:b8:a0:d6:bf:94:9e:7b:53:b9:8b:2f:
c9:74:31:24:96:d4:71:de:ba:b6:f8:75:95:e4:22:24:4d:98:
f3:0a:bc:a8:a5:1e:fb:9f:29:1b:e6:06:d8:20:3a:43:06:56:
5c:8b:6a:f0:e4:02:e2:7d:1f:bb:68:36:a6:6d:b8:b6:2a:84:
6b:15:a5:b4:d7:a4:72:53:cb:5c:f7:60:d2:b9:b1:d0:52:4d:
b1:9a:c8:0e:59:2b:a4:89:97:cb:70:9e:4c:bf:27:e9:a6:b3:
53:85:fc:90:40:bf:6e:d3:1f:93:30:64:69:16:9c:24:ef:69:
e5:fb:c7:b7:32:5a:a8:1a:ed:6d:04:60:ea:d5:dc:d7:86:92:
c3:58:ca:bf:1f:b0:dc:15:14:3c:7e:6a:6c:7b:44:50:39:d5:
e8:61:9a:b2:db:92:a7:6e:71:3a:b2:0d:71:7d:74:26:bb:e6:
be:7f:de:54:40:bf:be:dd:36:bd:a7:a5:50:40:ca:c6:a2:62:
20:f3:6f:ba:5a:5f:9d:0d:78:3b:54:42:5d:1e:d5:08:ec:69:
17:ee:8b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:09 2024 by rpki-client on console-fra.rpki-client.org