Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yNxxJUWfr0JlLKekBDwlypmqkqU.roa
File: yNxxJUWfr0JlLKekBDwlypmqkqU.roa (raw, json)
Hash identifier: CVW3mZ6XyDllO18ex2Ea+slguf0rg0uQ7Smtaa1Bnkk=
Subject key identifier: C8:DC:71:25:45:9F:AF:42:65:2C:A7:A4:04:3C:25:CA:99:AA:92:A5
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186657652653968AA48CD830478246C224B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yNxxJUWfr0JlLKekBDwlypmqkqU.roa
Signing time: Sat 18 Feb 2023 16:58:18 +0000
ROA not before: Sat 18 Feb 2023 16:58:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41732
IP address blocks: 2a0e:b107:9d0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:65:76:52:65:39:68:aa:48:cd:83:04:78:24:6c:22:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 18 16:58:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8dc7125459faf42652ca7a4043c25ca99aa92a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ba:0f:53:97:35:a0:5b:b7:19:91:ce:bb:5e:
3f:77:c9:66:12:37:17:e4:25:fd:cd:f1:65:14:e4:
ad:b8:92:ff:06:24:e7:d7:50:49:ed:be:48:c8:4b:
0d:a8:b9:2c:06:ed:bc:a0:1d:ab:ce:3f:c1:49:6c:
24:ab:73:93:45:01:8a:c2:e6:21:b0:ef:0e:23:91:
32:9d:b8:9f:5e:3c:65:c1:c6:b8:4c:d5:1c:e8:39:
33:f7:37:26:ee:b0:4b:4d:bb:5a:dc:6d:80:2f:47:
fc:f5:40:43:94:d9:c1:dd:82:82:24:5e:6b:7d:44:
26:ac:e5:bc:61:75:c3:9c:e4:c5:51:3a:f2:26:64:
f5:00:b0:4c:80:93:97:df:2e:19:b5:66:a3:c1:34:
20:fa:06:bf:39:0b:54:75:ea:9b:df:33:24:5e:bc:
fb:8d:4d:cd:6c:d6:e3:b6:b4:9c:b5:55:23:f2:bd:
fc:ac:5f:be:ad:d3:9e:a3:be:6b:37:04:89:f1:e7:
d9:34:d8:66:cf:98:ba:35:83:3b:7a:fe:bd:31:07:
ee:1c:a0:d8:88:85:11:77:03:e9:57:45:16:88:92:
ae:5b:7f:77:99:e5:85:5c:ad:02:b3:3f:6a:ea:7e:
e1:5f:ec:dc:3b:02:e9:d7:2f:25:44:d7:d8:ac:94:
03:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DC:71:25:45:9F:AF:42:65:2C:A7:A4:04:3C:25:CA:99:AA:92:A5
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/yNxxJUWfr0JlLKekBDwlypmqkqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:9d0::/48
Signature Algorithm: sha256WithRSAEncryption
8a:b6:c5:76:69:43:23:5c:40:62:29:b6:63:e1:f0:8a:8a:e3:
ab:ec:bc:6e:a8:01:81:be:bb:59:d1:d0:79:65:f1:24:c9:2c:
8b:eb:4e:be:8f:69:90:60:38:86:88:7e:51:0f:a8:eb:f8:8e:
b9:f3:ac:f8:d6:e0:bc:17:af:ed:f6:e1:73:7a:51:5c:88:16:
54:84:6c:bd:3c:f4:f9:7b:96:11:6f:9f:71:66:25:bf:a5:b2:
9c:76:af:61:81:4b:92:ba:69:6e:74:28:16:ad:7b:4d:cc:c9:
9f:ed:8e:7c:bc:29:33:10:75:a2:65:2c:0b:9f:38:0a:d0:60:
c4:c2:64:66:3b:12:2e:bb:91:57:c6:cc:83:c7:14:13:9e:5a:
67:78:86:30:84:f9:89:08:be:43:e8:f2:27:f5:9b:df:20:1d:
1c:dd:c7:04:69:60:1e:c9:01:7f:c7:f9:6a:d5:25:42:52:1f:
c2:08:82:31:4a:66:23:0f:6b:1f:e5:d5:df:ed:a0:d2:a7:3d:
96:d2:33:0d:ab:2b:c3:85:52:d2:08:5c:2d:d1:f0:b6:ee:bf:
af:18:bb:cf:31:5b:24:17:fb:6e:6e:ea:40:a3:98:67:07:46:
c6:48:d9:84:cc:d5:3a:0a:c2:98:7e:2f:c4:04:4f:02:0f:a9:
10:c5:3d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org