Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ycH6jQr9l9AJ6SZn2kAe2LMmrkI.roa
File: ycH6jQr9l9AJ6SZn2kAe2LMmrkI.roa (raw, json)
Hash identifier: bnqhwrQWCuFFafR5MoQoGYQsOP1w3SjavbJqHwn3fR8=
Subject key identifier: C9:C1:FA:8D:0A:FD:97:D0:09:E9:26:67:DA:40:1E:D8:B3:26:AE:42
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018573901566FFC0832EFD9E13B9A2D86FBA
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ycH6jQr9l9AJ6SZn2kAe2LMmrkI.roa
Signing time: Mon 02 Jan 2023 17:38:20 +0000
ROA not before: Mon 02 Jan 2023 17:38:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212831
IP address blocks: 2a0b:b87:ffbb::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:15:66:ff:c0:83:2e:fd:9e:13:b9:a2:d8:6f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9c1fa8d0afd97d009e92667da401ed8b326ae42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:43:b1:cc:b9:97:cf:77:86:c3:17:77:6e:10:
97:e2:4b:7e:c8:b7:f5:c4:ef:83:d5:a5:a0:7a:43:
86:03:1a:d1:b9:f4:8e:98:6c:2a:19:c8:b9:0d:60:
49:e4:d3:a2:99:8b:41:5e:fb:cb:53:99:1d:ed:7e:
f5:e7:35:46:62:b0:e5:30:da:a3:db:58:48:f0:9c:
3d:f5:03:f4:d4:de:97:69:b3:02:27:b6:cb:30:05:
36:7f:b8:7f:79:e5:06:2e:34:4e:b0:81:7e:42:d2:
30:07:91:94:6d:17:6a:9b:52:91:39:3d:16:45:3d:
4a:26:75:df:02:51:a0:8e:3b:33:08:71:b0:92:48:
4a:ee:96:1f:c4:f5:77:85:0f:af:6b:61:85:fd:98:
d1:59:ef:6e:f4:7d:ee:cd:cb:03:29:f1:bd:5b:eb:
c2:80:88:51:b1:d9:18:5f:26:32:72:79:30:fe:e5:
63:55:22:2d:c3:53:26:11:f1:0d:95:f8:ad:1e:23:
ab:37:f9:93:ab:1d:a4:16:03:eb:36:47:1c:81:5c:
26:91:7d:93:a5:17:d8:0a:14:07:5d:62:a5:42:04:
5a:34:75:43:2f:34:69:86:f5:03:ff:6f:db:44:a1:
10:5d:62:88:a4:c0:5d:03:23:9e:10:77:ec:68:38:
ea:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C1:FA:8D:0A:FD:97:D0:09:E9:26:67:DA:40:1E:D8:B3:26:AE:42
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ycH6jQr9l9AJ6SZn2kAe2LMmrkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffbb::/48
Signature Algorithm: sha256WithRSAEncryption
5c:84:64:b1:44:a2:d6:62:6e:38:86:0d:2a:27:cd:04:ef:b6:
ec:8b:d3:dc:ea:47:8b:aa:63:6a:f8:21:50:8a:60:93:55:d0:
b3:f5:01:d3:d7:eb:e0:19:58:3a:c8:2b:b3:bb:ea:38:d6:a3:
59:fb:9c:15:b1:4f:b0:fb:46:73:c2:c2:da:c4:bf:b9:8f:b7:
e2:fc:a8:a0:3f:90:b5:fb:75:b2:7d:1e:ef:a0:c2:4f:1c:8e:
a6:da:d3:f5:bd:cd:bc:5c:4a:13:68:7d:ba:95:34:6c:04:96:
04:c3:24:62:e7:41:08:a5:a4:85:57:1c:b2:88:e4:b4:ca:5e:
f2:15:c8:a2:a7:af:ea:e9:4b:27:ac:9f:35:79:25:a4:ee:7d:
70:df:46:f7:0f:76:61:dc:af:d7:29:13:eb:d8:c0:6d:c0:0b:
b9:45:9e:32:0f:ff:61:79:05:a9:9e:ff:da:75:49:49:47:2f:
f2:8f:0e:c2:1e:88:7c:cb:ce:ff:74:c8:e1:2c:11:61:35:55:
b6:61:b6:79:e3:9b:25:09:78:ea:e8:30:bf:24:d9:3e:35:50:
ab:1c:b2:ef:4e:20:3a:50:60:f7:66:c9:3e:30:fb:a8:e3:13:
aa:18:0e:b9:9e:e7:0e:25:4e:1e:a6:07:f9:c0:6c:48:a9:c2:
16:ed:16:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:40 2024 by rpki-client on console-ams.rpki-client.org