Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/yd3ijCuSUh3DLELHvujEQKYYKZo.roa
File: yd3ijCuSUh3DLELHvujEQKYYKZo.roa (raw, json)
Hash identifier: isVslQ9w9HZnaZG546CeUPVj7LIN4PG0tvzj+8407gw=
Subject key identifier: C9:DD:E2:8C:2B:92:52:1D:C3:2C:42:C7:BE:E8:C4:40:A6:18:29:9A
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01856ED4C331063230075A1BCB5D59906B9E
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/yd3ijCuSUh3DLELHvujEQKYYKZo.roa
Signing time: Sun 01 Jan 2023 19:35:15 +0000
ROA not before: Sun 01 Jan 2023 19:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39827
IP address blocks: 2a04:3a40::/33 maxlen: 33
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c3:31:06:32:30:07:5a:1b:cb:5d:59:90:6b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 19:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9dde28c2b92521dc32c42c7bee8c440a618299a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3a:20:4a:e4:c6:f2:76:39:61:6d:2d:83:36:
a6:35:e6:fc:50:1e:0a:45:93:1a:e9:64:40:a6:fd:
dd:76:6f:a4:61:ee:8b:13:0a:65:b0:fd:50:f7:4c:
d6:00:22:67:2f:0c:e0:fd:4c:be:89:f4:00:27:dd:
70:52:80:0f:5b:90:02:76:a3:de:a1:63:47:fb:06:
51:47:33:84:e2:02:5b:07:7a:53:25:3e:b0:2b:57:
83:23:01:3c:5b:45:c1:c1:42:f5:19:a1:10:a5:4b:
9b:2c:fa:5e:86:f9:18:ae:d3:9d:8d:ef:db:23:93:
83:10:ee:04:f3:26:b6:24:a5:cd:b2:d4:51:e6:50:
06:c3:fd:7c:25:e2:65:fb:56:81:3c:7a:34:8e:1e:
0d:ec:70:5d:21:ce:59:d6:3f:f1:21:4e:9f:97:27:
e8:e5:f2:ed:09:f1:08:f2:59:ca:0f:af:ac:f6:e7:
76:93:fb:42:f4:15:fd:1c:83:28:fe:9f:9c:b1:56:
cd:2c:3c:52:44:a4:14:9b:e3:2b:c0:f7:41:81:44:
23:e0:2d:3b:26:80:3d:44:45:39:b5:b4:b3:92:d5:
31:9b:74:12:36:ca:46:f1:bb:9f:64:e4:4e:d2:55:
ab:4d:17:fb:89:c3:57:97:ab:7b:9e:6a:d7:8e:91:
22:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DD:E2:8C:2B:92:52:1D:C3:2C:42:C7:BE:E8:C4:40:A6:18:29:9A
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/yd3ijCuSUh3DLELHvujEQKYYKZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:3a40::/33
Signature Algorithm: sha256WithRSAEncryption
02:12:f0:69:ec:cb:1d:3b:5a:e0:f8:09:9d:93:3d:03:f7:21:
6b:f6:c2:df:95:7d:29:d0:59:02:9f:f6:ed:45:9d:1e:94:5a:
3b:51:c0:fd:98:e3:4d:38:81:40:a0:e6:ef:e1:94:bc:bb:50:
c8:4e:36:fc:e2:8f:1a:50:bd:d5:b4:dd:db:a6:d6:38:6b:5a:
a2:b9:3b:3c:c9:07:80:e1:00:3c:ef:1a:f3:7d:1a:9d:d7:e7:
92:ce:a9:01:53:98:c6:e6:6a:d3:00:4d:d0:3d:92:05:31:2e:
a8:58:de:ac:9b:12:28:ac:f3:d2:48:3f:11:64:df:8f:8d:7c:
56:ad:39:20:31:b3:d4:74:6c:49:23:cd:a9:08:02:5f:aa:49:
34:ba:1a:6d:0c:38:71:fb:7e:7c:f2:62:0b:58:d1:18:1c:7c:
f2:fd:aa:65:30:8e:0b:f9:b6:1a:36:70:77:76:d9:06:44:bf:
f1:da:a8:8f:eb:02:5a:7c:cb:e6:3b:84:45:36:77:84:45:18:
96:cf:7e:37:06:7b:40:85:8c:1a:87:72:29:76:3b:86:26:2a:
54:d9:51:4a:40:f3:87:e9:16:51:ad:54:fb:65:f6:30:bd:31:
23:e6:1e:99:c7:9b:e1:c3:05:0f:d1:6e:3f:5e:80:90:53:4a:
8a:70:a7:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:47 2024 by rpki-client on console-fra.rpki-client.org