Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/ylJipyIV6D3K2DuGAlZnUd6FfiE.roa
File: ylJipyIV6D3K2DuGAlZnUd6FfiE.roa (raw, json)
Hash identifier: ysJa/r+FIsgSeFjQVsukglzxJmR9cmUhXWgyuWEQSkE=
Subject key identifier: CA:52:62:A7:22:15:E8:3D:CA:D8:3B:86:02:56:67:51:DE:85:7E:21
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 01879A6FA7E39E1360E86F81EC2FFFA66DB4
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/ylJipyIV6D3K2DuGAlZnUd6FfiE.roa
Signing time: Wed 19 Apr 2023 16:53:41 +0000
ROA not before: Wed 19 Apr 2023 16:53:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57025
IP address blocks: 2a13:db00::/30 maxlen: 30
2a13:db01:1000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:6f:a7:e3:9e:13:60:e8:6f:81:ec:2f:ff:a6:6d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Apr 19 16:53:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca5262a72215e83dcad83b8602566751de857e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:35:92:c5:c6:94:89:fd:27:0a:3c:05:4f:02:
51:8e:1c:67:d8:6b:e7:1e:fb:6c:f8:93:2f:d4:af:
13:ff:ee:7e:8f:d6:1b:34:fd:d3:f2:87:00:16:a9:
91:b6:bc:24:35:22:18:3a:c4:34:dd:9c:76:0b:2c:
6f:e2:62:b7:4a:58:db:f4:7c:75:1c:2b:42:a8:33:
93:b0:40:7a:dd:62:a5:90:b0:27:d2:09:bb:cf:9c:
45:84:db:f1:c9:c8:75:f0:bc:df:2b:e3:53:55:f4:
80:7a:50:16:12:86:94:b2:a2:15:98:2e:36:3f:1b:
fe:a3:1b:5e:10:27:46:80:60:f2:28:36:e0:c7:c5:
5f:ad:6d:f7:99:08:54:d8:8f:7c:e1:b1:91:6e:9a:
80:09:13:47:0c:ea:ae:f7:f2:16:79:14:a7:8e:eb:
96:e4:dd:6b:94:11:5b:81:7d:0d:88:4e:0b:e1:fe:
5c:4a:2f:bf:84:17:cd:97:6e:88:99:ba:3c:98:a3:
47:3f:27:fa:ee:4c:a3:45:67:34:83:5b:39:a3:b0:
d6:5a:54:a6:de:1c:50:10:3f:69:e8:5e:25:e7:90:
e7:cf:a1:44:a1:47:6b:3d:90:e0:9b:5a:e9:52:fe:
57:14:a0:5d:54:bb:f6:ab:eb:6f:20:4f:13:22:6e:
58:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:52:62:A7:22:15:E8:3D:CA:D8:3B:86:02:56:67:51:DE:85:7E:21
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/ylJipyIV6D3K2DuGAlZnUd6FfiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:db00::/30
Signature Algorithm: sha256WithRSAEncryption
25:0a:78:0b:b6:9b:3e:d9:d6:31:3c:3a:98:f0:d3:2e:ca:e5:
99:0b:ca:e6:1d:80:85:43:f8:17:40:94:6d:2c:4d:c2:36:17:
4e:e0:7d:59:89:98:99:f6:f7:12:cb:0e:9f:56:35:2e:ee:65:
d3:3e:33:26:c8:bb:8d:f1:82:9d:5c:79:ae:ac:6d:c5:fc:ce:
e0:9f:3e:72:ac:38:5f:34:55:71:72:5e:fb:fb:e5:88:2b:d9:
9b:bc:8b:45:c9:99:6b:ec:d5:f9:31:77:61:c4:02:bf:f8:30:
e0:ff:63:6f:6c:06:51:49:cd:eb:39:15:4d:4c:a4:9f:bb:3f:
20:a6:e4:7d:dc:b6:9c:87:aa:e5:2f:9c:49:02:30:b5:80:bf:
04:ab:88:8c:39:3a:45:01:b3:be:b9:a1:d1:e4:d8:7a:ed:83:
d3:96:7f:ab:8c:ba:a9:da:24:6d:49:7c:de:e1:2b:5d:ce:fb:
10:63:05:a3:05:cc:22:33:69:68:0e:8b:43:2d:7b:8e:76:e8:
d9:78:b7:4b:bb:b2:18:ad:28:00:51:b0:d0:a9:b5:81:8b:37:
04:52:68:dc:93:86:bb:f2:a8:79:f3:38:2c:b4:d5:2e:cc:10:
24:15:b2:1a:13:7a:d3:b7:c9:fc:c5:0d:cd:a3:a7:78:46:57:
9b:b7:10:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:13 2024 by rpki-client on console-fra.rpki-client.org