Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/tyKUEhaLIvAjBVnPuRIF6S71fa0.roa
File: tyKUEhaLIvAjBVnPuRIF6S71fa0.roa (raw, json)
Hash identifier: n1rQfZUa8rzfjSc6PBpAUiMJ7rMzdjkrhuPuKozv1no=
Subject key identifier: B7:22:94:12:16:8B:22:F0:23:05:59:CF:B9:12:05:E9:2E:F5:7D:AD
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018CC79475E14E79A2AB84BB7C1F0209996E
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/tyKUEhaLIvAjBVnPuRIF6S71fa0.roa
Signing time: Tue 02 Jan 2024 00:30:44 +0000
ROA not before: Tue 02 Jan 2024 00:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 2a0e:fb43::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 12 Mar 2024 17:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:75:e1:4e:79:a2:ab:84:bb:7c:1f:02:09:99:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Jan 2 00:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7229412168b22f0230559cfb91205e92ef57dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c3:42:53:60:e8:e2:9d:09:dd:45:02:56:5e:
a7:61:58:8b:fc:79:73:c6:76:72:f5:60:d6:80:72:
35:e6:60:56:82:e9:7d:c4:74:bf:8f:4c:bb:bf:4b:
ce:cc:fe:32:47:f4:82:25:c8:88:fc:f9:e9:9f:f1:
70:b8:71:4f:a9:8c:8a:9a:ce:b5:e9:7f:ca:17:99:
9d:a6:86:2d:d0:25:87:0f:90:cc:30:c1:0f:df:a4:
f7:1e:b9:6e:17:d0:c8:80:93:ca:82:3d:ed:79:96:
5f:87:b9:cb:d0:d4:91:30:79:6e:16:33:d5:f1:c6:
88:73:b8:27:5a:8c:d8:85:d9:57:f8:d6:c0:0b:c5:
2e:f1:9d:bd:a7:d3:17:e8:29:f3:6b:be:08:00:59:
30:7b:d6:e7:14:85:1e:f5:f6:67:2d:20:a4:90:07:
82:2e:5f:ff:0d:1c:54:67:30:3a:67:64:ed:7f:b3:
67:2c:56:a2:79:95:33:d2:82:0c:f7:0d:2c:c7:98:
6d:37:22:9b:3b:0d:05:ae:66:47:71:ba:47:9a:5d:
d1:1a:fa:53:47:fc:ac:10:e8:a6:b6:d5:fc:96:95:
2c:d2:fd:bc:1d:30:19:c5:87:68:ba:d4:5c:c0:67:
ca:67:0f:29:7c:86:d8:68:20:0b:87:26:f1:ef:1b:
76:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:22:94:12:16:8B:22:F0:23:05:59:CF:B9:12:05:E9:2E:F5:7D:AD
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/tyKUEhaLIvAjBVnPuRIF6S71fa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:fb43::/32
Signature Algorithm: sha256WithRSAEncryption
26:ec:39:e6:c3:29:5c:ed:a8:c0:13:eb:5b:81:4d:13:16:82:
07:ac:1e:22:65:99:3b:80:ed:58:36:25:0d:ee:46:17:3a:d8:
0c:e1:97:34:1c:d7:08:83:b9:30:46:8f:1a:74:d3:d4:c8:e1:
a2:38:e0:93:0e:2d:b3:5f:87:dd:98:76:98:2f:3c:dc:c6:59:
bd:01:a8:51:d5:95:e9:68:fa:a8:80:d2:29:52:60:11:4a:7f:
d5:41:bf:8a:d6:dc:f2:04:ae:4b:d2:93:b7:e5:f0:2c:e2:e1:
fb:79:6b:43:64:c2:03:c0:4d:43:9c:16:f8:d6:f1:c0:3b:14:
72:35:73:dd:06:08:11:0a:ad:9e:4c:48:2e:f0:43:aa:55:c5:
2c:ea:bb:03:5a:9f:e8:95:13:9e:0a:6c:d8:18:39:e9:ca:bd:
44:ae:00:19:13:90:1c:e4:32:31:ec:e8:a4:18:ab:c9:1e:07:
ad:e7:c3:2c:1b:b7:21:b9:36:ee:9b:c9:e4:6d:f3:a7:29:8d:
52:37:01:9b:6e:91:32:90:e9:ce:45:b9:bb:0f:e1:eb:c7:fc:
e4:4b:b6:9e:fe:e1:8b:89:7a:2e:58:a6:f4:7f:c8:a4:37:45:
e0:fb:7c:b1:77:08:1c:e7:65:89:cb:72:a6:34:6b:58:f1:b9:
8e:2b:af:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org