Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/YRhK4LciT5LKgaKSbfq3kDQPYPc.roa
File: YRhK4LciT5LKgaKSbfq3kDQPYPc.roa (raw, json)
Hash identifier: dxmfeo4ZqNroCS0MtaEaK5HmR6VFvtz5FuD76RPyzHg=
Subject key identifier: 61:18:4A:E0:B7:22:4F:92:CA:81:A2:92:6D:FA:B7:90:34:0F:60:F7
Certificate issuer: /CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Certificate serial: 0191422B96A083C9A0CE1F4630367D3DD60F
Authority key identifier: C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/YRhK4LciT5LKgaKSbfq3kDQPYPc.roa
Signing time: Sun 11 Aug 2024 16:00:38 +0000
ROA not before: Sun 11 Aug 2024 16:00:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215569
IP address blocks: 2a07:2486:4010::/44 maxlen: 44
2a07:2486:4010::/48 maxlen: 48
2a07:2486:401f::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Sep 2024 14:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:42:2b:96:a0:83:c9:a0:ce:1f:46:30:36:7d:3d:d6:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Validity
Not Before: Aug 11 16:00:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61184ae0b7224f92ca81a2926dfab790340f60f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0a:49:47:7d:54:4e:47:46:a8:3d:8a:18:cf:
6a:ae:4e:62:26:2b:de:aa:50:26:08:0c:56:92:82:
22:fa:94:0a:e3:cf:b3:cd:48:8b:29:3a:fd:e6:33:
20:ae:c1:f7:ea:c6:fc:1e:7c:d2:82:c8:da:2a:98:
c9:74:7e:ba:4b:43:6c:4c:cb:fe:f4:45:ff:6f:a2:
4d:64:71:fe:e3:ca:01:01:a1:e4:b3:62:08:a3:5e:
60:13:08:ea:03:59:02:33:0e:fc:4e:16:72:00:e8:
ad:47:ec:4a:7e:73:be:7e:de:3b:bf:bb:e3:e5:49:
07:07:d3:86:26:5d:62:81:3b:d8:0f:42:78:d0:c7:
bf:20:b8:da:9a:58:33:58:59:d5:c8:a1:d9:d2:a1:
e7:e8:76:81:04:4f:7f:85:69:c1:55:87:83:18:68:
1e:64:01:72:5e:de:18:cc:0f:b8:64:b1:79:87:39:
76:e8:d4:1f:7a:f0:20:7a:22:16:67:b6:69:e5:87:
ca:8e:38:8e:df:93:f6:cc:f1:10:67:bc:7b:78:54:
98:36:68:26:74:56:fd:dd:24:cc:4a:83:d9:5b:85:
ca:c1:1f:20:a3:70:3f:62:1d:d8:f3:ae:3f:87:25:
a3:f4:db:c2:da:ce:3f:b0:51:5a:57:f3:2d:d1:2e:
50:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:18:4A:E0:B7:22:4F:92:CA:81:A2:92:6D:FA:B7:90:34:0F:60:F7
X509v3 Authority Key Identifier:
keyid:C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/YRhK4LciT5LKgaKSbfq3kDQPYPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/wjbowhbwWp2eAyfxIivxIZirpdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:4010::/44
Signature Algorithm: sha256WithRSAEncryption
6d:86:a7:ff:7e:c8:3d:53:fe:bc:c5:90:5e:0f:9d:3f:63:78:
45:e7:54:61:9a:77:91:ea:8b:cd:10:3c:2f:83:ec:8b:bd:94:
03:dc:f0:d3:0e:ae:5a:55:d1:2e:ea:48:b5:c1:61:72:14:62:
d2:75:33:a0:b1:ca:72:f2:00:91:bd:37:ec:1a:1b:97:6f:ab:
2a:fd:99:7f:64:5f:66:54:52:90:5b:40:86:b5:44:2f:d4:a7:
94:56:73:0c:b0:68:2a:92:2c:d7:d7:c2:59:96:93:f9:fc:e9:
22:87:b9:94:5b:d6:83:a9:72:ae:8a:f0:0c:5e:6f:93:f4:93:
6e:9a:94:c6:95:44:a6:4c:4e:00:6f:64:50:06:a9:8c:31:25:
bc:c5:73:d6:94:ce:2c:4e:c7:d4:dd:a1:fe:79:2d:fa:1a:95:
91:40:2c:86:91:99:aa:dc:87:e3:9e:d8:0c:56:9d:9a:d7:22:
64:33:04:9f:fb:3b:ed:9d:91:fe:8c:8d:4b:8d:a1:ee:de:86:
72:46:98:71:56:89:c9:aa:2f:9f:83:f1:39:56:95:91:c1:c4:
1a:21:db:47:e9:1b:c3:a3:79:eb:e2:c4:ae:31:89:84:3b:68:
dc:d1:b9:ad:7b:ba:7f:59:a9:83:c4:84:53:d2:d7:7a:a4:9b:
2c:3c:fa:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 17:40:59 2024 by rpki-client on console-fra.rpki-client.org