Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/y_t55ylHQqIMthEu5YYYuKHiHP0.roa
File: y_t55ylHQqIMthEu5YYYuKHiHP0.roa (raw, json)
Hash identifier: K/S1wR+70vf8lssHmO/+aODnAiantA3vTzJ6QxzL2KQ=
Subject key identifier: CB:FB:79:E7:29:47:42:A2:0C:B6:11:2E:E5:86:18:B8:A1:E2:1C:FD
Certificate issuer: /CN=e2d73ffc3f37c4fec4bd35ad1c595cd056baecfd
Certificate serial: 018CCA9A0B31BE523D8FA2392D08FA96E4AC
Authority key identifier: E2:D7:3F:FC:3F:37:C4:FE:C4:BD:35:AD:1C:59:5C:D0:56:BA:EC:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tc__D83xP7EvTWtHFlc0Fa67P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/y_t55ylHQqIMthEu5YYYuKHiHP0.roa
Signing time: Tue 02 Jan 2024 14:35:42 +0000
ROA not before: Tue 02 Jan 2024 14:35:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52209
IP address blocks: 2a13:9dc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 08 Apr 2024 13:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:9a:0b:31:be:52:3d:8f:a2:39:2d:08:fa:96:e4:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d73ffc3f37c4fec4bd35ad1c595cd056baecfd
Validity
Not Before: Jan 2 14:35:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbfb79e7294742a20cb6112ee58618b8a1e21cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:18:20:19:f1:26:13:e5:41:d2:98:d4:f9:fd:
58:48:77:ec:fe:6d:64:32:02:66:e3:7f:d1:b6:9f:
cc:e2:ec:19:7b:3d:05:22:0f:c6:fa:bf:b5:77:fc:
4d:11:43:b6:91:d1:da:22:5a:9b:e2:06:4b:c3:0e:
ee:9a:07:25:42:7d:95:9a:ac:e4:87:0f:be:09:e9:
e9:27:d0:e8:15:e3:ed:9f:bd:45:61:54:18:a0:09:
ce:ec:55:15:47:3d:82:92:2f:94:2d:96:c5:f0:3c:
06:07:a0:9c:ca:b7:33:8e:b6:cc:49:a9:19:24:ab:
4d:34:39:39:1f:d4:2a:30:a5:0e:cd:f4:1a:16:e2:
29:ec:8d:cf:ed:15:9b:32:49:8c:8a:73:b2:30:55:
be:f1:a6:97:a2:cc:83:56:db:04:47:44:c0:5e:fa:
06:29:e6:7a:61:ae:69:c0:09:07:31:fa:2a:ba:70:
7d:42:f6:1b:fe:a8:03:49:ea:1b:cf:c3:26:06:6a:
16:6b:51:57:4c:fb:5b:b5:32:11:71:f5:1e:d0:82:
9a:8a:db:22:fc:8e:52:b4:06:b5:ad:6a:22:0e:b9:
7d:35:44:1b:a6:c3:e8:a6:53:1f:ed:11:10:c8:72:
96:ed:df:99:ea:24:68:26:57:96:53:df:ee:c0:f9:
fb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:FB:79:E7:29:47:42:A2:0C:B6:11:2E:E5:86:18:B8:A1:E2:1C:FD
X509v3 Authority Key Identifier:
keyid:E2:D7:3F:FC:3F:37:C4:FE:C4:BD:35:AD:1C:59:5C:D0:56:BA:EC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tc__D83xP7EvTWtHFlc0Fa67P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/y_t55ylHQqIMthEu5YYYuKHiHP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/4tc__D83xP7EvTWtHFlc0Fa67P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9dc0::/29
Signature Algorithm: sha256WithRSAEncryption
2b:dd:da:55:b8:df:2a:ee:0c:23:4e:62:a8:33:bd:2c:bd:fc:
60:ce:35:1c:d6:2e:53:12:56:43:6e:39:05:5b:c1:15:7d:3b:
4f:4e:ab:b5:76:9d:15:3b:0a:6d:9c:4a:cd:c7:6f:43:78:04:
f9:64:ee:fe:14:d0:b2:3a:64:69:94:c5:ed:8d:ed:1e:ed:3c:
23:29:99:c2:09:19:7d:9b:91:e1:7e:3e:23:74:e1:ea:c6:7d:
9f:a7:0f:5b:4a:f2:00:e0:2d:e2:53:ba:fa:9e:fe:47:c1:73:
3e:31:53:41:c0:e7:13:bf:a8:d0:0f:dc:14:e4:d2:1e:a6:23:
d1:04:00:0d:31:dd:1e:ae:41:ee:dc:87:69:8e:f9:01:32:f8:
e8:8a:dd:5d:ec:38:75:6d:93:a0:42:c5:c2:13:d7:ff:92:74:
bd:b6:df:d3:7b:19:3e:aa:69:5b:af:6c:fc:c5:f9:de:04:02:
de:6d:ab:98:83:5d:92:91:b2:72:84:3a:97:c1:d6:2d:62:6e:
ca:f3:d1:61:f9:81:27:b0:b2:2c:1d:63:0e:80:62:c3:0e:6d:
8a:ea:47:68:ef:9c:21:b0:35:b7:34:32:16:d2:7d:11:12:60:
90:b5:32:47:e6:09:71:2f:4d:9a:da:d1:e2:0e:84:04:11:09:
9f:67:73:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:26 2024 by rpki-client on console-fra.rpki-client.org