Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/yqh9WCfFFS-J1VcyaVvBeb7X2ZU.roa
File: yqh9WCfFFS-J1VcyaVvBeb7X2ZU.roa (raw, json)
Hash identifier: OJixQyMZbaGD/OQWVAXCBaT83EWs6oXt8G1LFrjwdxQ=
Subject key identifier: CA:A8:7D:58:27:C5:15:2F:89:D5:57:32:69:5B:C1:79:BE:D7:D9:95
Certificate issuer: /CN=bbf7bc6c7c93a3cfb1e25bbbefc4f207ae25bda5
Certificate serial: 018ACC97871DC4610EFC20A82348AD0FEB62
Authority key identifier: BB:F7:BC:6C:7C:93:A3:CF:B1:E2:5B:BB:EF:C4:F2:07:AE:25:BD:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_e8bHyTo8-x4lu778TyB64lvaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/yqh9WCfFFS-J1VcyaVvBeb7X2ZU.roa
Signing time: Mon 25 Sep 2023 13:46:37 +0000
ROA not before: Mon 25 Sep 2023 13:46:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199474
IP address blocks: 2a13:b180::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:97:87:1d:c4:61:0e:fc:20:a8:23:48:ad:0f:eb:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf7bc6c7c93a3cfb1e25bbbefc4f207ae25bda5
Validity
Not Before: Sep 25 13:46:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caa87d5827c5152f89d55732695bc179bed7d995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:eb:d0:43:25:ba:dc:37:f4:9a:aa:98:64:e7:
97:52:a0:f9:3a:22:be:74:9c:12:9c:2a:dc:1a:15:
17:34:45:7a:08:63:d3:0b:d1:0a:41:52:45:b7:c3:
41:16:ea:5f:b2:55:bf:2a:4e:90:a0:a9:4b:53:f7:
e3:67:9e:6f:08:f5:e9:d5:2f:e8:88:15:38:92:0a:
46:fa:e0:f6:b4:a8:61:ef:a0:25:f3:7f:1c:1e:63:
72:ed:44:14:a5:5b:c4:74:9f:cd:6e:cb:60:1f:6e:
6c:ae:02:79:81:91:9c:82:ad:25:96:8c:5d:a0:d1:
07:d4:71:fb:64:fb:6c:8b:a4:f8:8e:90:6b:67:03:
11:4a:91:14:18:e8:32:f7:79:11:f2:de:10:7b:7e:
04:9a:fd:af:05:43:3e:cc:46:33:a1:e4:48:35:7a:
74:18:65:0a:89:ed:47:37:de:73:33:98:f6:97:3a:
d4:37:e5:e6:d5:d1:f4:6e:50:ac:3a:cb:1f:b8:28:
96:b6:08:b4:d9:2d:3d:f4:ab:05:c8:d0:08:b3:6d:
57:9a:b3:5e:7c:49:08:9a:96:5a:e3:8b:9c:bd:a3:
0d:94:44:93:e3:a2:a3:3b:fe:ad:29:d1:a3:aa:cd:
64:6f:d1:a6:37:a4:30:6b:08:45:b6:25:61:db:f7:
58:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A8:7D:58:27:C5:15:2F:89:D5:57:32:69:5B:C1:79:BE:D7:D9:95
X509v3 Authority Key Identifier:
keyid:BB:F7:BC:6C:7C:93:A3:CF:B1:E2:5B:BB:EF:C4:F2:07:AE:25:BD:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_e8bHyTo8-x4lu778TyB64lvaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/yqh9WCfFFS-J1VcyaVvBeb7X2ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/u_e8bHyTo8-x4lu778TyB64lvaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b180::/29
Signature Algorithm: sha256WithRSAEncryption
7f:f2:86:0b:77:d5:12:0e:56:43:ee:f8:73:15:68:de:07:7f:
80:d6:55:12:75:cf:f8:42:8c:0f:8a:9e:2d:d2:c1:5c:27:79:
34:46:43:5e:47:38:5f:48:b6:23:64:f7:ee:57:4f:47:62:17:
36:65:da:2e:0f:0a:ad:b5:cb:4b:8d:41:cc:9e:fa:4a:9e:85:
c7:91:b6:e6:be:29:fa:e4:35:4d:c8:92:06:25:0a:50:61:46:
30:43:6c:aa:1e:5a:57:e7:be:82:f5:f0:b9:a8:88:52:4a:ae:
94:83:40:2a:93:3c:1e:24:7d:34:41:5e:9e:5d:39:63:ed:2d:
80:c2:74:b2:bd:b5:8e:a5:28:10:14:0c:ff:4b:f8:e6:d6:e5:
c5:dc:67:2c:ec:4b:b1:4d:0c:8e:b4:3f:a2:93:e9:30:61:a6:
40:74:f0:0d:87:3e:74:7e:27:6c:94:a0:bf:00:dc:65:0d:c4:
54:c1:b0:50:b8:2e:de:27:4a:bc:78:fb:b4:95:92:e3:4c:fa:
18:4f:2e:a5:c6:ac:1b:03:d8:40:34:4b:38:1b:0d:f4:27:96:
04:51:57:53:1c:64:af:d9:81:77:2b:62:3a:08:cc:b1:f1:d8:
94:3e:f0:98:7f:11:32:98:48:f3:6a:6f:3e:df:a0:4b:99:01:
18:c3:b1:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:04 2024 by rpki-client on console-fra.rpki-client.org