Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/E_YuwBgqnG9Nq9y_xluc5PQhXW0.roa
File: E_YuwBgqnG9Nq9y_xluc5PQhXW0.roa (raw, json)
Hash identifier: 2S9CvKPhdH5s29QcBFfB37PU04zlfhN0QB2JTGubPX4=
Subject key identifier: 13:F6:2E:C0:18:2A:9C:6F:4D:AB:DC:BF:C6:5B:9C:E4:F4:21:5D:6D
Certificate issuer: /CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Certificate serial: 018CC9BC435718A79A79AE78DEF488664007
Authority key identifier: 2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/E_YuwBgqnG9Nq9y_xluc5PQhXW0.roa
Signing time: Tue 02 Jan 2024 10:33:27 +0000
ROA not before: Tue 02 Jan 2024 10:33:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 2a0d:3041::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 16 Feb 2024 10:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:43:57:18:a7:9a:79:ae:78:de:f4:88:66:40:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Validity
Not Before: Jan 2 10:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13f62ec0182a9c6f4dabdcbfc65b9ce4f4215d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:f3:3a:be:51:f8:ad:d5:ce:90:eb:06:cc:
8d:2d:68:24:f1:1c:7b:76:e0:83:11:8b:2a:15:26:
50:ef:2a:ad:64:7a:5c:b8:49:de:76:d8:39:0e:2f:
0f:7a:8f:23:c4:2f:0e:cd:28:29:d2:96:fa:e2:79:
a5:a9:1c:55:77:b6:d9:75:7c:8f:79:c5:00:01:dd:
0f:25:02:3e:16:a3:d3:d2:a4:e2:c2:71:e7:f0:ba:
74:50:c1:12:1c:7f:cd:2e:d2:99:fb:36:2e:ec:ff:
9e:c8:04:67:64:7f:66:8e:76:f6:53:2a:8d:85:2b:
a9:97:fc:e8:3f:9f:36:16:3a:83:ca:fd:1a:37:21:
57:f9:0a:91:c9:a8:89:7f:71:69:45:f0:2e:c1:a1:
c4:b6:7d:de:eb:ca:af:ed:f2:61:cf:c3:25:b0:15:
ec:c7:4e:6d:35:12:e3:d4:73:fc:b4:52:95:3c:e0:
ab:68:d7:be:dd:1d:01:51:3e:55:67:60:66:48:27:
99:49:c0:cd:4d:11:f3:fa:f0:2e:0f:e9:e5:12:ba:
f7:f2:00:76:56:d9:25:41:32:bf:d9:e3:5f:85:59:
72:66:3c:d9:cc:d4:9b:d3:ab:7b:fc:08:22:6d:a4:
45:87:35:f4:ac:dd:ce:d7:cb:50:1a:67:c9:ac:86:
89:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F6:2E:C0:18:2A:9C:6F:4D:AB:DC:BF:C6:5B:9C:E4:F4:21:5D:6D
X509v3 Authority Key Identifier:
keyid:2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/E_YuwBgqnG9Nq9y_xluc5PQhXW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/L1yrigmp_eI8ljX44WSu8J4XlIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:3041::/32
Signature Algorithm: sha256WithRSAEncryption
b4:fd:f7:33:84:52:77:b8:63:f4:70:7a:b7:94:4e:b7:be:21:
ad:76:c9:f4:ea:93:78:7d:29:55:b2:b2:5c:16:26:f9:c5:80:
a0:85:24:ff:4c:36:2d:ab:bf:92:22:c1:c4:22:a7:90:ef:2c:
10:fd:ca:24:12:84:e9:3f:dd:cb:dc:e5:d6:88:81:80:8d:24:
e6:d6:12:1b:5f:c8:d8:00:71:79:8f:47:cf:bd:17:f0:8c:b7:
19:88:a0:02:2d:ac:60:f8:50:b9:8e:c8:de:a0:bb:8e:7e:ae:
98:9d:e9:a3:96:73:7c:78:44:e9:2a:b2:39:a7:f5:52:ba:34:
75:19:c9:4b:11:5e:78:00:f3:46:45:99:68:21:93:64:e0:82:
18:10:32:da:8e:aa:44:6a:d6:e9:43:7d:76:cc:1d:0a:19:9a:
03:de:6d:d2:e5:ba:f2:47:66:9b:e3:6b:30:d4:d3:48:08:f2:
4c:c8:c4:fc:94:b9:82:5e:be:16:bb:55:ec:98:03:4f:a6:dd:
7d:9c:be:39:8d:bc:9a:72:e2:f6:3c:9d:3d:cb:dc:5d:7f:4c:
96:39:fe:01:7c:a8:51:a6:cd:3b:b3:2d:8e:4d:4b:c2:d4:b9:
82:36:6f:97:98:0f:e7:85:c8:97:e1:55:fc:68:dd:ec:ae:eb:
7b:01:07:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 16 14:45:40 2024 by rpki-client on console-fra.rpki-client.org