Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/l_CYDNuFegq_RecuALryHASPm1E.roa
File: l_CYDNuFegq_RecuALryHASPm1E.roa (raw, json)
Hash identifier: mmSsQlOPG/b68wR1gMYX19fnlS6m5GqLtXPKSwPUsI4=
Subject key identifier: 97:F0:98:0C:DB:85:7A:0A:BF:45:E7:2E:00:BA:F2:1C:04:8F:9B:51
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E3B01549260220C7304605DBDBFD5
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/l_CYDNuFegq_RecuALryHASPm1E.roa
Signing time: Mon 02 Jan 2023 06:14:44 +0000
ROA not before: Mon 02 Jan 2023 06:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 2a0c:b642:1a08::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:3b:01:54:92:60:22:0c:73:04:60:5d:bd:bf:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97f0980cdb857a0abf45e72e00baf21c048f9b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:65:bf:d0:7e:16:8c:23:be:dd:ca:e1:67:3c:
f1:1a:a0:c3:ae:e2:80:1a:06:dc:5c:b9:f7:24:10:
db:b1:63:9e:34:d3:3a:8b:be:f5:32:3b:86:45:eb:
c9:e6:f5:16:61:41:55:73:c9:06:86:85:90:78:43:
54:a4:2e:26:fd:60:ea:8d:f0:6b:92:11:4e:15:1d:
90:f0:0e:31:be:f7:72:e5:68:f8:ff:8a:8d:87:f3:
1d:95:36:36:da:d7:7e:f3:ab:a5:0d:f7:41:ee:f6:
84:25:ac:49:c6:7e:d3:91:59:f2:a5:98:5a:fd:18:
cc:c4:d2:7f:4a:ef:2d:e1:7d:23:27:2d:89:89:8b:
a5:9f:f5:3c:bf:1e:70:df:3f:b6:c6:05:4c:cf:c3:
63:0a:08:36:bc:91:93:c5:81:0e:6e:1c:3e:86:05:
65:2b:ad:68:a1:54:33:e0:72:17:98:9c:b2:57:21:
f3:55:09:c6:aa:cc:ce:78:28:39:e5:5a:d7:49:76:
be:2c:8a:92:f2:ba:67:74:8e:8b:0c:1a:4f:8e:e2:
53:10:3f:ef:62:d7:a5:56:ae:0b:67:c0:7d:4f:0f:
b6:9e:74:a2:45:17:11:0b:25:19:1c:c4:1f:6b:c3:
5e:24:41:d7:06:c7:72:7a:5f:f9:d2:55:71:02:06:
52:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F0:98:0C:DB:85:7A:0A:BF:45:E7:2E:00:BA:F2:1C:04:8F:9B:51
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/l_CYDNuFegq_RecuALryHASPm1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a08::/48
Signature Algorithm: sha256WithRSAEncryption
32:96:e5:2c:c8:eb:89:eb:c9:37:ca:f7:d9:00:09:b9:9f:3d:
56:3c:d3:40:e7:9c:10:ab:91:03:f0:40:41:e5:13:e0:89:e0:
17:e9:b6:02:5a:4f:83:38:c2:81:0d:a0:62:9e:3a:a4:a8:98:
34:05:e4:74:29:3c:57:7c:f6:a6:c9:e6:ea:31:0a:dd:42:8a:
09:3a:e9:20:b6:0a:77:3c:0c:33:f4:6d:03:db:8a:0e:0a:d8:
17:d9:0b:87:1a:a0:50:c5:44:b6:2e:0e:7a:22:4d:9d:cc:65:
ed:ce:e4:e3:5f:68:50:eb:59:12:83:f0:58:33:ac:47:1f:12:
37:38:05:60:b1:13:35:f9:86:a0:91:2c:3d:9a:84:59:63:2c:
c3:0f:83:ec:e5:f7:bf:2f:e9:99:76:94:5a:b5:10:cd:10:bf:
d5:87:79:bb:59:e4:7a:3c:fa:91:8e:c6:70:ae:af:46:fe:3d:
11:8c:34:79:e7:f9:24:2d:30:d9:88:18:4d:c1:8c:e1:c5:4f:
7e:13:bc:d7:4c:e7:b5:71:dc:f6:42:b8:5b:d7:dd:47:d8:41:
98:07:ab:85:3a:c9:b1:79:49:cb:7e:1c:42:47:06:ea:0c:8b:
0c:c3:cd:80:bd:1b:fc:78:17:e0:97:79:42:e5:5d:e0:0d:4b:
e7:2a:61:31
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHjsBVJJgIgxzBGBdvb/VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2YwOTgwY2RiODU3YTBhYmY0NWU3MmUwMGJhZjIxYzA0OGY5YjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgmW/0H4WjCO+3crhZzzxGqDDruKA
GgbcXLn3JBDbsWOeNNM6i771MjuGRevJ5vUWYUFVc8kGhoWQeENUpC4m/WDqjfBr
khFOFR2Q8A4xvvdy5Wj4/4qNh/MdlTY22td+86ulDfdB7vaEJaxJxn7TkVnypZha
/RjMxNJ/Su8t4X0jJy2JiYuln/U8vx5w3z+2xgVMz8NjCgg2vJGTxYEObhw+hgVl
K61ooVQz4HIXmJyyVyHzVQnGqszOeCg55VrXSXa+LIqS8rpndI6LDBpPjuJTED/v
YtelVq4LZ8B9Tw+2nnSiRRcRCyUZHMQfa8NeJEHXBsdyel/50lVxAgZS6wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJfwmAzbhXoKv0XnLgC68hwEj5tRMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvbF9DWUROdUZlZ3FfUmVjdUFMcnlIQVNQbTFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgy2QhoI
MA0GCSqGSIb3DQEBCwUAA4IBAQAyluUsyOuJ68k3yvfZAAm5nz1WPNNA55wQq5ED
8EBB5RPgieAX6bYCWk+DOMKBDaBinjqkqJg0BeR0KTxXfPamyebqMQrdQooJOukg
tgp3PAwz9G0D24oOCtgX2QuHGqBQxUS2Lg56Ik2dzGXtzuTjX2hQ61kSg/BYM6xH
HxI3OAVgsRM1+YagkSw9moRZYyzDD4Ps5fe/L+mZdpRatRDNEL/Vh3m7WeR6PPqR
jsZwrq9G/j0RjDR55/kkLTDZiBhNwYzhxU9+E7zXTOe1cdz2Qrhb191H2EGYB6uF
OsmxeUnLfhxCRwbqDIsMw82AvRv8eBfgl3lC5V3gDUvnKmEx
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org