Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/y4kIZvzqyl3SFCHjByMK4GqJbTY.roa
File: y4kIZvzqyl3SFCHjByMK4GqJbTY.roa (raw, json)
Hash identifier: VpV0YuILLuaeg7YyF52YxsKKhK93PYHcKGdHZQQmjj8=
Subject key identifier: CB:89:08:66:FC:EA:CA:5D:D2:14:21:E3:07:23:0A:E0:6A:89:6D:36
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 01856C813DAF83C0F5AC259D32056F2E650D
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/y4kIZvzqyl3SFCHjByMK4GqJbTY.roa
Signing time: Sun 01 Jan 2023 08:44:47 +0000
ROA not before: Sun 01 Jan 2023 08:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:27c0:10::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3d:af:83:c0:f5:ac:25:9d:32:05:6f:2e:65:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Jan 1 08:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb890866fceaca5dd21421e307230ae06a896d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:13:19:8f:66:66:7a:d6:a4:b2:0b:8b:bc:8e:
de:29:45:fc:dc:8c:cb:72:aa:5c:37:17:58:b1:ea:
1d:d6:50:53:ab:0f:46:39:6e:bf:7a:a1:99:9a:fb:
51:69:68:25:2b:2d:17:f2:ad:e0:bd:fc:ee:bc:af:
a2:dd:ab:5c:75:1a:af:a0:e6:0e:45:83:d5:d1:e2:
40:4b:8e:53:72:3d:fb:4a:42:07:20:be:4f:49:fe:
0c:a7:86:50:5d:96:80:52:0d:8d:05:73:c5:6e:89:
88:4f:86:49:c5:2a:37:d8:e2:17:e9:0a:f8:79:a4:
2e:79:e6:05:1c:ba:b2:ef:80:3b:f9:50:57:fc:ce:
f2:6e:2a:5b:f6:17:d6:9c:80:8c:17:cc:f0:e8:61:
58:4b:52:f9:f7:c7:f2:44:8e:3a:0f:20:2c:21:cc:
a0:c0:9b:98:08:f4:2a:76:d2:03:c4:f4:93:d7:7e:
18:ee:d0:35:52:8e:5f:b5:a3:9a:df:34:50:60:fa:
c2:bb:67:22:07:3c:0d:3f:8f:b5:68:9c:2b:fb:b7:
79:c3:46:8d:74:a9:89:18:f0:6b:80:7d:f8:a0:bd:
99:cf:a4:de:e6:44:d3:4e:8a:e0:ba:39:34:23:0c:
77:8e:95:c4:e2:93:a8:5a:66:ac:82:af:cd:ae:bb:
dd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:89:08:66:FC:EA:CA:5D:D2:14:21:E3:07:23:0A:E0:6A:89:6D:36
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/y4kIZvzqyl3SFCHjByMK4GqJbTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:27c0:10::/44
Signature Algorithm: sha256WithRSAEncryption
c2:31:7c:c0:9f:3d:99:8c:b7:59:74:95:07:e0:bf:10:f8:5f:
dd:ce:75:96:46:c3:0d:ad:8d:d9:0e:e2:8a:0e:36:28:05:15:
02:2c:b2:dd:a7:24:9f:84:dc:52:7c:17:92:cd:bd:be:8e:3b:
ff:8f:93:43:40:a7:80:c9:a8:a6:87:96:a2:79:71:e0:90:45:
f4:20:91:93:a3:bd:d4:78:32:5e:c8:5f:64:2d:78:cb:8e:b8:
45:7b:98:a2:56:c2:44:e9:64:5d:4c:49:6b:57:51:e3:21:b1:
fb:4c:ee:d5:12:45:57:a5:1c:8a:e3:a6:f1:d9:4d:da:8b:09:
31:2f:8b:2e:28:9b:0b:a7:cd:36:64:8b:22:57:0f:1a:d4:00:
d9:2e:a7:1b:ed:89:85:b3:ad:86:49:00:f3:11:29:5c:fd:b2:
fd:02:55:ba:9a:6b:a2:43:b4:89:17:2f:69:cc:d7:fd:76:12:
1f:bb:ff:60:bb:e8:8c:4b:dc:07:cc:5b:dd:8e:bb:b1:47:81:
d2:ac:a3:6b:d3:a6:56:b9:46:1e:8d:d5:ac:39:9b:f5:77:79:
95:d9:8f:34:8e:a3:88:74:db:7e:ab:91:30:5b:26:b3:1c:b1:
29:8b:e6:a1:af:3d:a7:a5:54:6e:d7:59:05:34:68:54:8c:bb:
2f:b6:c1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:57 2023 by rpki-client on console-fra.rpki-client.org