Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/YRj_S9n8n1GLAC-rG9X3s_jdmFA.roa
File: YRj_S9n8n1GLAC-rG9X3s_jdmFA.roa (raw, json)
Hash identifier: aSmG92iLuYZAkZCS1hw8s2RMth0TJEGvUD4b077xNpc=
Subject key identifier: 61:18:FF:4B:D9:FC:9F:51:8B:00:2F:AB:1B:D5:F7:B3:F8:DD:98:50
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 01856E26676B561CC0B637B4E9F2A812EE6A
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/YRj_S9n8n1GLAC-rG9X3s_jdmFA.roa
Signing time: Sun 01 Jan 2023 16:24:48 +0000
ROA not before: Sun 01 Jan 2023 16:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12303
IP address blocks: 2001:738:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:67:6b:56:1c:c0:b6:37:b4:e9:f2:a8:12:ee:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jan 1 16:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6118ff4bd9fc9f518b002fab1bd5f7b3f8dd9850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:69:21:07:b7:10:0d:cc:36:28:0e:79:17:c5:
40:0d:e9:1c:9b:a7:09:06:fa:4e:5a:59:f1:8c:03:
99:18:89:2b:ff:ac:31:57:8d:41:31:f2:16:8d:74:
cc:73:53:97:68:6b:6b:0c:ea:46:bf:bd:88:81:35:
de:37:16:70:35:53:a2:9b:85:25:a7:3a:74:60:38:
c8:c2:88:c0:b9:f3:aa:31:53:02:76:6c:a4:66:1f:
43:b7:d1:e4:de:ad:e0:19:37:7f:5f:b5:d8:86:8b:
c1:93:40:79:68:e4:56:22:2f:2f:6d:4c:83:aa:4e:
1a:26:a0:63:20:96:cb:2e:61:bb:a8:46:1d:b6:09:
49:80:83:68:10:ce:15:ca:a0:1c:60:66:e0:d8:9c:
18:76:36:69:00:c8:ca:e7:d5:a4:aa:24:2f:11:9f:
00:1e:9f:a2:ec:75:35:d7:94:24:2a:f7:39:76:5c:
8f:e2:cc:73:4e:e5:5d:1d:a3:3c:58:d0:1c:2a:cc:
46:db:9a:42:40:ad:1d:df:01:62:c9:d8:1d:41:86:
d6:f2:48:2f:ec:3c:fb:b1:ab:8b:bb:e8:72:a4:ee:
50:12:0c:04:c2:66:5f:a6:fb:18:82:90:42:be:88:
a2:d0:16:5b:86:d2:af:07:fa:dc:91:1a:76:f2:7d:
88:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:18:FF:4B:D9:FC:9F:51:8B:00:2F:AB:1B:D5:F7:B3:F8:DD:98:50
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/YRj_S9n8n1GLAC-rG9X3s_jdmFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:738:4::/48
Signature Algorithm: sha256WithRSAEncryption
77:f5:23:9a:bd:0c:21:3b:f5:5c:31:3e:4a:f2:7a:1e:07:ed:
73:db:36:99:6b:e7:bd:25:e8:9c:cf:78:bc:4a:8c:1d:a8:b7:
fd:fe:f7:df:52:83:85:b8:84:5b:43:2d:9a:33:84:0f:4d:22:
bf:9b:19:b4:0e:f7:e6:cc:14:b9:58:9f:14:9d:10:85:1c:c0:
39:2b:ac:2c:68:43:7d:37:37:56:2f:d3:33:c9:39:b3:ce:37:
81:3f:ab:83:9b:24:c3:c7:e8:9d:34:00:c5:e2:b2:7f:f9:71:
7f:dd:7c:19:4e:d7:0c:67:b8:37:d2:b3:ee:95:67:02:db:66:
3d:e7:29:c1:78:cf:67:c3:97:20:aa:bf:b5:5c:37:89:5e:6b:
dd:6b:af:58:7c:12:fc:8e:27:e2:37:b4:e0:fd:8a:18:7a:4d:
08:88:51:26:52:77:0c:d4:a3:90:58:47:c0:c7:16:4d:1d:ec:
f1:9d:cb:6a:99:e8:90:45:98:eb:ba:97:cf:fe:00:fa:61:f7:
33:49:2c:43:47:53:72:01:f9:8e:01:a3:db:12:2a:d0:b3:af:
3b:1f:9f:c3:9b:75:34:96:9a:80:90:2d:a6:04:6d:de:b4:bb:
89:a1:7b:45:0b:c2:88:54:1e:f4:cd:89:61:7a:8d:af:68:fd:
50:a8:5c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org