Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/yvGBRBkAxwZ1XM5qif-GvBN4D4s.roa
File: yvGBRBkAxwZ1XM5qif-GvBN4D4s.roa (raw, json)
Hash identifier: /g9QZW5QrTFOou5GDLyENVVZEvf1nFk+sYNS8XZbqQ4=
Subject key identifier: CA:F1:81:44:19:00:C7:06:75:5C:CE:6A:89:FF:86:BC:13:78:0F:8B
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FF6E283B0E238D667340CF3D83C5E
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/yvGBRBkAxwZ1XM5qif-GvBN4D4s.roa
Signing time: Sun 01 Jan 2023 21:14:52 +0000
ROA not before: Sun 01 Jan 2023 21:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208993
IP address blocks: 2a0e:aa07:f040::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f6:e2:83:b0:e2:38:d6:67:34:0c:f3:d8:3c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caf181441900c706755cce6a89ff86bc13780f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:f4:fa:a0:0c:d5:c8:43:4e:82:c6:cb:43:
a6:be:95:91:1a:c2:73:c3:87:8f:45:b0:f9:83:fe:
1f:08:e4:0f:b6:ea:6c:bd:fd:1d:e3:12:06:75:82:
38:ed:4a:19:26:23:da:1d:20:4e:1a:da:c1:24:b2:
61:f0:54:f5:49:27:f5:21:29:6f:a9:45:25:64:a6:
34:3d:74:07:ec:ce:95:bf:87:e5:9f:24:62:92:05:
0e:73:d1:ba:05:65:86:0c:84:c5:3c:fa:67:6d:de:
82:e4:9a:73:77:59:88:24:08:29:13:0e:30:e7:92:
cd:fb:5a:04:d2:59:dd:d2:a9:43:38:2f:49:ac:72:
1e:7e:3d:3c:e3:ee:e0:b8:db:42:4b:3c:a1:b0:af:
f2:2e:c8:dd:39:4c:79:2b:e3:7f:e4:59:b7:90:58:
bc:4b:54:73:3c:40:11:78:0b:df:a2:28:4d:23:fc:
3c:9a:a3:03:87:58:af:15:3d:fa:9a:ee:3a:74:8c:
33:25:8c:3f:0a:ca:38:03:b8:1f:21:f5:7f:2a:43:
3c:67:12:26:ce:73:a3:87:7c:33:73:44:77:6e:87:
be:f3:08:b7:86:45:79:d3:38:44:f6:78:e8:6e:f6:
4b:5c:6c:c7:49:d0:85:a3:d8:87:df:4d:b2:3a:d4:
66:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F1:81:44:19:00:C7:06:75:5C:CE:6A:89:FF:86:BC:13:78:0F:8B
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/yvGBRBkAxwZ1XM5qif-GvBN4D4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f040::/44
Signature Algorithm: sha256WithRSAEncryption
90:f7:a7:4c:2c:52:1f:c7:e2:a2:df:c0:6e:0a:55:c3:5a:04:
1b:28:82:37:c8:a8:42:22:6d:23:27:52:05:73:18:84:4a:1a:
3a:f9:d9:bb:2d:a7:0f:cf:87:ea:8c:eb:62:54:b0:23:a4:01:
2a:e0:8c:2d:70:12:12:7b:a9:1b:c9:ba:ae:08:6e:e2:dd:7e:
33:38:dc:e7:8b:2b:65:72:49:b3:a6:25:88:99:9d:92:61:ec:
52:dd:88:32:3b:5b:8f:91:ac:55:a2:34:47:f5:00:b0:51:0c:
b5:1e:5e:08:1a:c8:d1:0e:6f:94:8c:7b:e5:5e:f5:e3:7d:44:
a8:fc:80:e9:ee:0f:c4:2a:93:80:bf:4f:2c:eb:52:e7:5a:7f:
69:70:00:bf:a9:c4:62:c0:d0:8b:7d:26:fd:5e:cf:2f:49:14:
f1:88:8c:4b:08:bf:fe:bb:34:3d:50:31:2d:5b:36:3b:5d:d3:
a8:5e:c6:85:9e:00:18:f2:ce:73:a5:b5:19:ec:df:c0:bb:96:
9b:29:5b:cf:d4:d6:02:22:7e:ba:c6:90:ab:57:40:78:6f:79:
a0:c9:31:77:7b:fa:b6:a2:d3:23:18:7b:9f:15:a8:57:6e:9f:
b9:b7:77:3c:cd:ae:b8:47:80:f7:80:f0:cc:13:77:bd:16:8c:
3a:cc:2a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:03 2024 by rpki-client on console-ams.rpki-client.org