Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/yuitpcLX6blTc83AJ-W3MQLkpy0.roa
File: yuitpcLX6blTc83AJ-W3MQLkpy0.roa (raw, json)
Hash identifier: TIkCCCKaZVDgATDeQRoXEbSFWy9jE9m+b3tdfhR5vZw=
Subject key identifier: CA:E8:AD:A5:C2:D7:E9:B9:53:73:CD:C0:27:E5:B7:31:02:E4:A7:2D
Certificate issuer: /CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Certificate serial: 018CC56ED4DDB0CD24CF390A1099EA1128F1
Authority key identifier: 78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/yuitpcLX6blTc83AJ-W3MQLkpy0.roa
Signing time: Mon 01 Jan 2024 14:30:24 +0000
ROA not before: Mon 01 Jan 2024 14:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60566
IP address blocks: 2a06:1301:4160::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Mar 2024 18:54:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d4:dd:b0:cd:24:cf:39:0a:10:99:ea:11:28:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Validity
Not Before: Jan 1 14:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cae8ada5c2d7e9b95373cdc027e5b73102e4a72d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:61:43:17:74:cc:1c:ae:b3:09:ab:39:4a:c6:
d3:7c:00:d5:75:50:dd:0f:58:c8:3e:6a:0d:fa:b1:
94:26:e7:7b:d2:2b:1b:e0:72:27:32:24:85:7b:ac:
92:7b:b6:bd:88:ca:82:e6:09:55:8f:b3:5d:15:c2:
9a:ea:68:25:24:3a:5c:f5:c9:ed:5b:b8:db:26:1d:
67:b4:90:80:0f:b3:49:85:2b:9b:48:01:c6:f1:25:
4f:af:3a:23:1f:4c:cf:b7:23:21:9f:4f:cd:32:93:
42:65:93:2e:60:9a:d2:5d:9d:77:b1:db:48:5d:48:
84:93:34:09:c1:02:04:6c:b1:47:94:64:c9:64:ca:
bd:f1:ce:8e:32:45:bb:e4:2a:2f:0e:7e:30:06:f6:
ca:48:ac:74:a5:f3:7a:bd:aa:fa:55:a4:bb:46:d2:
ad:0d:85:77:4b:af:dd:6a:26:36:fa:14:9c:08:5a:
be:4e:1e:b1:78:0c:7b:28:9b:1c:0e:1b:15:11:a8:
51:01:5b:17:ce:23:2c:97:42:f1:c1:13:f9:84:46:
5a:ae:a8:af:4b:39:e0:99:18:47:d0:97:9a:ec:86:
2f:55:49:d6:87:b2:63:79:36:d2:a1:e1:84:2c:2a:
c3:d6:5e:e0:fe:29:37:76:44:e6:b8:23:3e:f9:cd:
fc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E8:AD:A5:C2:D7:E9:B9:53:73:CD:C0:27:E5:B7:31:02:E4:A7:2D
X509v3 Authority Key Identifier:
keyid:78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/yuitpcLX6blTc83AJ-W3MQLkpy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/eANVjqblFls4dgl691vx6SoULPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1301:4160::/48
Signature Algorithm: sha256WithRSAEncryption
8d:79:4b:92:34:9d:a7:49:27:b0:06:d9:4a:05:5e:93:a4:df:
27:df:77:ef:f4:34:f5:c9:40:6d:3c:cf:f0:3b:9c:62:24:3e:
dd:28:e4:49:80:ce:61:a6:ec:6e:28:dc:60:e6:94:db:74:52:
75:9a:03:d3:f8:34:b4:60:4a:24:3f:ae:73:14:4b:4f:99:62:
8c:c0:db:3c:24:df:fb:9c:2e:cc:31:53:53:bc:55:1c:73:c6:
11:19:25:46:4f:84:e9:ce:ac:56:71:f8:13:57:51:90:a8:d0:
12:bd:71:bf:07:dd:44:24:06:d9:d0:40:f6:c3:91:2e:80:38:
95:2b:58:57:36:6d:f6:9d:e8:37:96:44:01:40:65:66:25:18:
73:50:55:e6:df:63:19:c2:f7:a9:98:16:5a:d2:f4:2f:d2:18:
05:b3:4e:42:41:74:a9:c2:f4:85:03:56:aa:00:18:28:76:29:
6a:ca:9a:25:64:02:51:b9:07:1d:b5:53:19:69:2c:bb:e8:5a:
5e:6a:bc:87:48:7f:10:4e:c7:00:0b:b2:bc:2a:4f:d6:50:71:
03:97:94:d8:41:5c:be:a0:6b:d3:2d:a1:4a:c9:a3:a6:c1:db:
df:d7:4e:0b:0c:42:c9:c7:0d:3e:8f:be:a8:9d:ff:e2:ba:d2:
65:dc:08:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:56 2024 by rpki-client on console-fra.rpki-client.org