Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/lyk4C5gQmO-0K0wxqBm18UYuWW8.roa
File: lyk4C5gQmO-0K0wxqBm18UYuWW8.roa (raw, json)
Hash identifier: gW8YchW4lm3bL2YrMpsgTLSX1cxUOO3Oiii+IoF5ob0=
Subject key identifier: 97:29:38:0B:98:10:98:EF:B4:2B:4C:31:A8:19:B5:F1:46:2E:59:6F
Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Certificate serial: 0186DFF16E87A48CA2D657ACD950B03290E5
Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/lyk4C5gQmO-0K0wxqBm18UYuWW8.roa
Signing time: Tue 14 Mar 2023 11:46:27 +0000
ROA not before: Tue 14 Mar 2023 11:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199459
IP address blocks: 2a13:b487:1900::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:f1:6e:87:a4:8c:a2:d6:57:ac:d9:50:b0:32:90:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Validity
Not Before: Mar 14 11:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9729380b981098efb42b4c31a819b5f1462e596f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:93:f0:ac:3c:7e:5e:02:cc:44:81:35:f3:11:
31:2a:dd:d4:f6:ac:c0:02:2b:6f:f8:28:0c:0d:e6:
89:d0:f7:08:a2:4b:a1:97:84:6e:38:13:a9:5c:0b:
b5:89:7f:82:7e:4e:4e:fa:b1:60:53:5f:95:d9:f3:
0f:13:15:9d:55:5a:fe:d2:ac:04:11:16:d4:d7:68:
8b:a2:b6:7b:8f:15:59:bc:2c:70:02:cf:87:d4:78:
11:81:e6:09:8c:d6:42:39:45:17:fa:21:30:dc:00:
fa:73:13:f1:34:18:0e:5a:e6:93:5d:d6:c0:f2:06:
63:22:ba:fc:6b:fa:c1:b0:19:6e:b6:79:78:02:39:
28:80:a5:8d:9f:67:b0:56:29:d2:e6:98:6f:51:6c:
a9:a8:06:1f:6f:b3:b5:ad:d7:80:cc:2f:31:2e:18:
bc:d3:b2:76:ad:91:4d:35:77:e3:9d:20:67:a3:27:
d8:24:99:92:21:f8:76:4b:55:47:ed:ca:45:b2:5f:
08:22:3a:dd:6a:4b:bc:f5:d0:6f:fe:c8:e7:3a:14:
62:9f:dc:83:24:7a:53:7f:a5:0d:28:ae:9d:ff:f0:
dd:60:1a:e4:16:25:a1:3a:bb:38:d2:5d:59:cf:a5:
09:04:84:24:23:f6:91:92:03:e5:54:10:27:36:0d:
70:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:29:38:0B:98:10:98:EF:B4:2B:4C:31:A8:19:B5:F1:46:2E:59:6F
X509v3 Authority Key Identifier:
keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/lyk4C5gQmO-0K0wxqBm18UYuWW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b487:1900::/40
Signature Algorithm: sha256WithRSAEncryption
a9:02:4a:5b:08:28:36:c2:1e:84:11:70:d5:fe:4e:24:d1:12:
1a:50:32:cf:8b:8d:17:9e:ac:77:67:8d:78:53:80:82:74:c2:
0f:98:c2:b2:ff:bd:de:2d:41:f7:d7:a5:97:55:47:94:56:51:
fb:99:4c:17:f6:e8:7c:e2:e3:fd:40:53:d5:5f:40:21:f7:3d:
2c:19:8e:6e:4d:bf:64:3c:91:70:fd:a3:a8:d2:84:ee:42:80:
74:e8:2b:9f:a2:b9:78:2e:bc:8b:a0:19:49:0e:c4:ff:91:b6:
46:01:27:8e:c8:4a:d1:6f:91:15:f5:af:de:92:3a:ed:65:24:
fa:5f:1b:23:32:2c:eb:14:1b:82:c3:83:71:94:85:3f:06:b8:
b3:ff:7c:17:3d:51:b7:41:f4:04:5a:38:a7:85:64:fc:70:b4:
a0:81:86:20:a6:71:e2:53:84:1d:bb:6a:9f:2d:7f:c9:e3:25:
44:20:bc:fc:84:4a:06:1d:19:a0:6c:fb:23:8b:8e:9d:82:01:
63:fc:97:bc:b4:18:75:ba:d5:f7:d4:38:3d:ce:40:a1:e1:f5:
4c:34:34:88:20:a3:7b:03:51:2f:92:9e:de:af:53:ec:17:35:
8d:2d:78:25:f7:3d:cb:48:b3:d1:dc:a1:26:9b:c1:b2:c2:4e:
1c:e1:81:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:25 2024 by rpki-client on console-fra.rpki-client.org