Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/y8AO2AkHUR6tG5f_93uIQHpi-4U.roa
File: y8AO2AkHUR6tG5f_93uIQHpi-4U.roa (raw, json)
Hash identifier: 1+5XGF0Y2X468lvJzRHkOShTf4rRjhMLwWVwihlpUak=
Subject key identifier: CB:C0:0E:D8:09:07:51:1E:AD:1B:97:FF:F7:7B:88:40:7A:62:FB:85
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 01856F392A5D3225981370E7DF74D23B2072
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/y8AO2AkHUR6tG5f_93uIQHpi-4U.roa
Signing time: Sun 01 Jan 2023 21:24:55 +0000
ROA not before: Sun 01 Jan 2023 21:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202585
IP address blocks: 2001:678:d64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:2a:5d:32:25:98:13:70:e7:df:74:d2:3b:20:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Jan 1 21:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbc00ed80907511ead1b97fff77b88407a62fb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:e5:e5:7b:8a:b7:b1:5e:0a:89:b9:d5:58:
fb:86:e2:40:f8:d3:95:ba:6d:c2:e2:1c:90:65:2d:
0a:b9:86:a8:8a:7d:b8:59:e5:bc:39:81:e7:53:ce:
55:2a:80:2d:aa:e0:1e:e1:98:a6:72:46:1d:65:ff:
02:18:1d:19:08:60:ce:18:ca:6d:9e:08:9e:16:e8:
27:82:92:dc:2c:91:25:24:ec:c4:18:44:82:b8:64:
38:c4:ce:be:3c:bf:eb:a8:64:f9:03:52:f1:17:ee:
76:80:ca:ed:38:e4:07:8e:f6:2e:1d:50:30:2c:05:
61:27:06:20:3f:19:50:f5:6d:ab:b3:52:2e:79:22:
d9:26:cd:73:6c:49:c9:47:5f:3f:6b:68:d6:b9:60:
e8:1d:48:cd:0d:8f:32:de:ce:2f:51:cd:25:18:42:
e0:99:47:7b:66:4d:79:29:bb:c1:93:a6:60:57:ef:
76:b7:08:71:6f:18:6e:75:74:5b:02:16:91:b2:a5:
22:6c:51:b4:84:af:d5:20:0a:29:3d:bb:92:87:c0:
6d:88:12:8a:be:66:1b:09:8e:21:12:77:22:51:4f:
e5:bb:72:43:d8:c6:1d:3e:81:9a:41:0f:5d:65:37:
0e:db:75:69:d6:82:ff:ba:6a:e7:c4:be:e6:94:b4:
dc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C0:0E:D8:09:07:51:1E:AD:1B:97:FF:F7:7B:88:40:7A:62:FB:85
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/y8AO2AkHUR6tG5f_93uIQHpi-4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d64::/48
Signature Algorithm: sha256WithRSAEncryption
34:07:54:11:e2:1e:99:95:da:9e:15:0b:bd:67:a8:2f:00:70:
4e:36:b2:de:01:00:73:7a:f1:28:c9:57:b5:2c:dc:c1:bc:e3:
01:ee:85:c0:0a:19:6c:25:8f:b3:ed:69:cc:b1:96:0c:3a:c8:
5d:78:6d:76:8d:db:19:87:0a:b8:0a:a5:cc:4f:36:9b:70:39:
a4:7e:ea:ea:61:b6:d9:99:1c:d6:f5:05:23:e9:8c:19:51:78:
2d:94:03:b8:aa:c2:d5:6f:28:60:9d:18:b4:d8:bd:2b:e8:df:
c9:f7:f7:bd:c5:62:bf:62:5c:2d:73:de:71:3c:1f:33:92:67:
96:91:c1:00:80:af:03:46:ab:35:60:66:d3:df:c0:d6:cd:00:
f6:3f:39:bc:ab:b8:16:4c:ab:0e:28:b9:7a:b9:69:ea:d0:c8:
f6:fd:99:6e:29:69:a9:75:33:01:86:ed:2e:46:41:3c:ae:16:
8a:a2:5c:a6:dd:d3:cf:c5:1c:f5:cc:cd:3d:6b:99:83:65:d6:
58:2d:c8:bb:dd:a7:34:91:a9:54:fe:60:d1:2f:2b:b4:22:d9:
5d:81:d6:da:ce:40:b2:ff:1f:61:0e:20:58:7f:5b:90:3c:af:
89:d5:ea:d3:56:a9:3b:e8:31:bc:4d:c3:0f:1f:91:68:c3:b7:
af:fe:da:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:28 2024 by rpki-client on console-fra.rpki-client.org