Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/yfQfh4bcuG21kYqLVO0lfZOY294.roa
File: yfQfh4bcuG21kYqLVO0lfZOY294.roa (raw, json)
Hash identifier: 3Immlv4V1Y37hieQTPGN8J/gUTv8rOZm2P8EcGzBxPA=
Subject key identifier: C9:F4:1F:87:86:DC:B8:6D:B5:91:8A:8B:54:ED:25:7D:93:98:DB:DE
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 0185EE1AF3487B7571D071974C40EDF8DCD6
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/yfQfh4bcuG21kYqLVO0lfZOY294.roa
Signing time: Thu 26 Jan 2023 12:43:41 +0000
ROA not before: Thu 26 Jan 2023 12:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200169
IP address blocks: 2a0e:8f02:f056::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:1a:f3:48:7b:75:71:d0:71:97:4c:40:ed:f8:dc:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 26 12:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9f41f8786dcb86db5918a8b54ed257d9398dbde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:84:be:48:23:98:43:fa:d5:31:2c:6b:77:95:
d5:71:6a:90:52:de:d6:44:5b:07:79:f2:a6:e2:6b:
59:5e:56:b4:03:30:f7:21:7b:3f:aa:b9:91:1f:04:
03:bd:cf:42:75:da:11:cf:f8:47:cd:28:f5:6a:12:
00:9d:20:c9:5f:48:98:c1:dc:0e:6b:e7:90:ba:2e:
7b:47:f8:3f:5e:3f:d8:fe:16:dc:b9:bf:63:79:4e:
b2:49:ec:70:d5:0d:e2:ef:b8:a7:a3:4d:95:17:b4:
06:31:fe:63:89:6c:d9:6d:44:c8:d1:f1:2e:43:bb:
31:e2:b4:7c:ef:ba:60:2f:09:cc:56:25:47:9b:e9:
85:09:f8:c3:a2:b2:86:ab:8c:3b:d5:9f:a6:3d:38:
35:8d:43:28:eb:4e:8b:c7:a6:b2:ba:18:7e:39:d9:
67:f6:b0:a7:4d:4a:54:97:0c:1c:c4:46:8c:7b:38:
f1:7e:d8:9c:be:43:64:e9:a0:ec:2a:46:4e:34:b4:
e2:3f:e1:aa:c0:76:72:bb:7a:52:74:a0:47:c3:fc:
29:b9:12:76:9d:42:8a:8d:e7:66:59:55:5c:2d:7b:
58:4f:d6:24:8d:49:d5:e7:87:7a:a8:3e:3d:ea:9e:
dd:cb:58:ca:16:93:78:7c:56:0d:4b:23:b5:5c:2f:
db:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F4:1F:87:86:DC:B8:6D:B5:91:8A:8B:54:ED:25:7D:93:98:DB:DE
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/yfQfh4bcuG21kYqLVO0lfZOY294.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f056::/48
Signature Algorithm: sha256WithRSAEncryption
1f:72:08:d5:9d:76:8a:f8:da:9e:4e:c1:21:07:6f:b3:33:4c:
cc:bf:c2:09:7f:33:32:3d:64:95:5b:59:80:c3:6b:55:f7:f5:
51:e5:08:16:96:cc:49:5a:ea:6e:65:14:0b:a9:75:f5:d5:84:
33:d9:a0:ce:cc:50:d1:11:9b:19:8b:5f:08:6a:70:bb:fc:49:
46:7d:35:b8:bd:79:b5:fc:4d:f2:85:c5:17:c1:8b:6f:d9:da:
ae:7c:8c:06:20:6c:83:1b:91:06:59:92:4d:99:48:db:3a:58:
d9:1f:33:ce:58:64:6e:45:9e:a2:9a:11:b0:87:7c:7d:a3:36:
49:aa:41:f9:c9:a3:02:b3:cf:01:ff:a3:b3:bf:22:31:ba:35:
9c:49:72:53:12:1f:c5:74:ae:c1:4f:6e:3f:31:d5:3a:1a:71:
d0:e3:2f:b2:72:55:69:91:0c:d8:58:95:f0:43:35:d0:f8:16:
06:09:70:4b:40:b8:ae:d6:61:ba:07:c8:26:55:30:fb:a7:10:
15:25:c4:ea:bf:13:69:fc:d7:7b:44:fa:dd:bb:7d:4c:87:2d:
a0:b2:f6:b9:89:e8:c1:5a:5b:6a:96:a4:e2:53:01:cd:7b:d5:
71:32:97:b9:82:e5:ee:a0:da:18:b7:c7:89:b3:b5:4a:2b:85:
7e:62:ff:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org