Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/dYkbhfzyAcs23gfFXZZerkJaBfg.roa
File: dYkbhfzyAcs23gfFXZZerkJaBfg.roa (raw, json)
Hash identifier: YhsEfLBNgJGWWz8YMYXD7UkPVvz9gzuywlDR5rB3X0I=
Subject key identifier: 75:89:1B:85:FC:F2:01:CB:36:DE:07:C5:5D:96:5E:AE:42:5A:05:F8
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 018CC64B6369DC0AE1E12F6CC91383A0BE59
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/dYkbhfzyAcs23gfFXZZerkJaBfg.roa
Signing time: Mon 01 Jan 2024 18:31:18 +0000
ROA not before: Mon 01 Jan 2024 18:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57848
IP address blocks: 2a0e:46c6:500::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jan 2024 20:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:63:69:dc:0a:e1:e1:2f:6c:c9:13:83:a0:be:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 18:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75891b85fcf201cb36de07c55d965eae425a05f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fb:a4:8e:ef:71:52:33:3a:5f:c9:c9:b5:ba:
e6:35:a7:62:f5:14:aa:d1:66:6f:73:c2:95:78:3b:
47:ec:4f:e7:98:13:2a:f6:5c:fc:ab:e8:44:5e:cf:
5d:e7:2a:1d:f6:73:b7:de:c3:00:d4:07:10:61:61:
2a:26:23:2b:48:5f:d2:d8:27:22:19:01:bf:e1:d7:
67:9c:dc:d0:ea:dd:92:ec:15:eb:67:37:b8:7e:1e:
5d:6e:f0:72:b4:54:7c:3b:e9:3d:3f:1a:7b:04:c2:
ce:79:26:14:97:64:12:44:42:5c:2a:9f:63:b8:20:
da:2d:11:6c:aa:57:f4:1b:61:ea:f3:57:ba:62:e4:
2d:2d:06:be:a3:0c:9b:ef:b8:f7:7d:e0:61:cc:67:
db:cd:c2:59:9b:b7:1d:56:2c:3d:06:bb:6c:70:1c:
ad:69:97:8e:7b:c7:77:fd:f3:e5:96:11:22:09:94:
e4:95:17:87:ff:6f:50:24:6a:25:bb:19:5c:de:58:
05:f7:9b:64:63:95:47:d0:3e:d7:ef:6f:5d:4c:c9:
06:0e:23:be:b9:b9:66:89:06:2b:3c:02:81:6a:3d:
ee:58:d2:58:fd:58:d8:58:0f:00:f9:c2:4b:ee:00:
42:18:95:2a:41:92:25:e7:d3:3d:f5:a1:6a:c8:ea:
a2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:89:1B:85:FC:F2:01:CB:36:DE:07:C5:5D:96:5E:AE:42:5A:05:F8
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/dYkbhfzyAcs23gfFXZZerkJaBfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c6:500::/40
Signature Algorithm: sha256WithRSAEncryption
5a:fa:e8:e3:6c:de:90:c1:9a:df:b2:df:c8:6a:fb:d3:5e:8f:
e6:0c:93:a9:0e:8c:ba:c9:48:01:87:41:b0:6d:8f:d4:45:4a:
dc:e7:08:a0:af:2d:01:b5:d0:19:f7:82:cf:87:a9:c7:74:a2:
7b:72:cf:38:04:57:3a:4a:dd:93:14:85:13:f9:e3:18:b5:05:
63:41:aa:4e:fb:f6:5b:09:8c:86:a5:04:2b:44:68:15:1a:6a:
b9:4b:1d:dd:2b:24:de:81:cc:3e:2e:87:7a:62:e8:12:24:fa:
23:ba:08:a3:49:b5:39:9d:55:37:9b:36:f1:8b:94:96:67:20:
da:e4:f9:e8:b2:3f:07:76:60:5e:26:58:64:fe:08:4c:55:88:
25:a1:34:f9:18:cc:16:ee:a7:18:fd:15:98:60:75:53:07:71:
53:73:70:c7:d6:bc:74:cd:b0:a7:63:21:39:37:d8:77:e4:46:
bf:a1:b1:e8:f7:7b:13:35:04:2b:17:74:a8:0d:6e:8f:92:20:
73:f1:c8:b9:d6:12:be:13:57:dd:ab:78:34:38:30:9b:48:0f:
13:0a:63:20:0f:98:c3:c1:20:91:f0:9d:8a:65:ec:3b:79:96:
fe:20:27:7b:cd:a4:3f:99:3c:80:ee:19:d9:9c:b3:d1:29:e2:
28:8f:7a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:15 2024 by rpki-client on console-fra.rpki-client.org