Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/y0NTtyPSLramNwHrXDR0Aziw-Js.roa
File: y0NTtyPSLramNwHrXDR0Aziw-Js.roa (raw, json)
Hash identifier: CSyrnMc8QJu/AffSaLeutu50icHaheYSKLJCxx2ahuw=
Subject key identifier: CB:43:53:B7:23:D2:2E:B6:A6:37:01:EB:5C:34:74:03:38:B0:F8:9B
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 01856D0180EEDA18255AF13A997956A9A3E8
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/y0NTtyPSLramNwHrXDR0Aziw-Js.roa
Signing time: Sun 01 Jan 2023 11:04:53 +0000
ROA not before: Sun 01 Jan 2023 11:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60633
IP address blocks: 213.3.80.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:80:ee:da:18:25:5a:f1:3a:99:79:56:a9:a3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Jan 1 11:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb4353b723d22eb6a63701eb5c34740338b0f89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f2:35:5f:13:16:0e:6d:31:61:5d:65:f1:c3:
0a:56:bc:d5:60:35:e8:cf:b4:79:59:cd:dc:7b:da:
bd:e0:bb:9d:84:ef:08:96:93:6e:88:2b:14:56:93:
4b:ec:50:50:db:89:39:29:8a:23:1f:0a:c7:ca:70:
57:76:92:4e:ab:0b:6a:08:a5:9b:9a:27:d3:f1:f2:
a8:e9:c2:2e:37:82:08:5d:d1:90:5d:60:45:b9:5a:
6e:4a:86:f5:b5:fd:b3:be:cd:b6:90:c7:60:fa:3c:
cc:7c:42:23:ac:6f:23:2d:11:55:6f:9e:83:67:c7:
e8:bf:98:22:3c:71:27:79:51:26:9d:9c:77:eb:df:
2c:59:d6:c6:44:2c:46:5c:a4:27:30:4a:84:a7:8e:
d6:44:9d:3f:66:a3:52:2a:81:9e:1e:47:6c:22:59:
4d:e8:ba:7a:dd:c7:b9:e1:ca:ac:da:22:63:81:a4:
78:39:ec:35:c8:3e:56:09:a4:c3:5e:7c:54:a8:fc:
e8:31:36:90:1a:bc:60:c1:ea:a9:90:2f:1e:fb:5e:
85:14:f8:e8:c2:f5:01:11:97:42:93:4c:12:ec:d0:
b2:67:a9:f5:d5:6f:e1:ab:b9:25:a8:98:97:6d:7f:
b4:d7:80:48:c2:34:06:7b:73:10:ed:ca:c0:1a:a8:
db:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:43:53:B7:23:D2:2E:B6:A6:37:01:EB:5C:34:74:03:38:B0:F8:9B
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/y0NTtyPSLramNwHrXDR0Aziw-Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.3.80.0/21
Signature Algorithm: sha256WithRSAEncryption
68:77:b1:32:0a:a0:84:16:05:19:84:2d:53:e7:cb:81:f8:32:
35:1d:48:5e:11:2a:92:a4:f0:c9:9b:20:8c:30:be:60:c5:83:
d1:e9:19:4c:e6:95:a0:44:58:8b:93:16:8f:44:65:4f:24:7e:
ee:01:c5:68:4b:00:a1:11:09:bc:30:ee:5a:41:f4:95:87:50:
ba:52:7a:af:c4:a7:39:a7:55:fb:f4:a2:99:12:5f:8b:ff:ad:
93:0d:72:50:3b:10:ab:47:fd:44:84:20:2a:9d:f6:15:5d:b2:
b1:96:0a:13:60:55:5a:70:4b:22:ed:f7:2f:e9:78:5c:e1:a0:
44:83:39:73:d9:e2:64:08:f6:a5:a4:39:29:6f:c2:c7:fe:2f:
88:85:3c:bf:75:8e:11:b4:0b:1a:86:9c:d0:e2:dc:ed:26:4d:
a4:da:46:cb:ad:71:53:fd:c7:6a:b2:a5:40:34:dc:28:4f:a0:
f6:c4:6d:d9:30:5f:1c:ea:a7:4c:10:c0:1a:92:5e:78:96:ce:
c2:7a:fc:32:e2:f1:0f:32:8a:43:aa:7e:33:79:11:9e:52:e0:
8b:17:4d:7e:c3:8a:a9:d2:3c:ee:8f:7f:3d:6f:8b:19:52:2a:
b7:89:46:19:35:7e:52:aa:7c:58:cd:de:e4:9c:c2:33:9b:f6:
3f:8e:06:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:32 2024 by rpki-client on console-ams.rpki-client.org