Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/y1TQQyykUGkCpiGyxP59Rj4D0fM.roa
File: y1TQQyykUGkCpiGyxP59Rj4D0fM.roa (raw, json)
Hash identifier: LHQK9XpYE8N2IXPRRWUgQ6PtUJfxOQ1nAt4g29/qqUQ=
Subject key identifier: CB:54:D0:43:2C:A4:50:69:02:A6:21:B2:C4:FE:7D:46:3E:03:D1:F3
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 01856C6F0DD17A9DF7DBC567D8D765D2DFDF
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/y1TQQyykUGkCpiGyxP59Rj4D0fM.roa
Signing time: Sun 01 Jan 2023 08:24:55 +0000
ROA not before: Sun 01 Jan 2023 08:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211579
IP address blocks: 2a0e:46c4:2400::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:0d:d1:7a:9d:f7:db:c5:67:d8:d7:65:d2:df:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 08:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb54d0432ca4506902a621b2c4fe7d463e03d1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:05:8e:84:39:68:fa:c0:56:f5:9d:d4:ec:fc:
05:27:39:4c:fb:8b:76:ec:11:9d:07:18:bd:ed:1c:
33:c6:b5:c5:4a:1a:80:f9:2f:f4:29:47:69:8c:ec:
be:e5:08:91:de:4a:a2:ff:d3:fc:0a:57:8b:07:3f:
7e:8a:ac:52:8f:63:f3:53:de:c6:71:d0:56:c9:98:
0d:4b:c2:e9:62:51:5a:a3:9c:00:07:78:a6:85:2a:
b6:de:dc:21:b7:e5:25:1e:4f:3b:5d:d8:ee:86:17:
c6:77:dd:a9:f6:35:fa:2b:14:ed:d3:62:fe:2e:10:
39:d2:4f:cf:98:f6:86:cb:3a:58:36:10:3b:71:28:
4b:ee:3e:bf:68:fe:77:ca:35:33:58:18:dc:c4:28:
b9:b6:5b:61:b8:97:29:5d:3a:08:b5:86:e9:70:f8:
9a:db:87:85:c7:b9:71:68:45:46:c2:d6:e5:ac:d0:
d2:5e:d1:23:aa:99:8f:1a:10:e3:f9:42:69:c0:f3:
0b:77:62:a5:2e:05:d4:c0:98:87:4c:31:86:d5:ab:
3b:ac:34:0a:37:57:fc:6a:e2:eb:05:69:19:21:a2:
c9:28:97:03:16:6e:e8:ec:b6:3a:1e:de:41:63:51:
b0:73:43:33:5d:26:1a:8e:3b:e8:41:22:65:26:cb:
c5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:54:D0:43:2C:A4:50:69:02:A6:21:B2:C4:FE:7D:46:3E:03:D1:F3
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/y1TQQyykUGkCpiGyxP59Rj4D0fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2400::/40
Signature Algorithm: sha256WithRSAEncryption
63:d0:2c:53:f0:00:2f:97:5e:04:5e:eb:fa:ef:11:aa:cd:0e:
07:8f:09:3d:65:5d:2e:10:fa:aa:42:3a:0b:ca:16:04:9c:41:
2c:4d:76:63:ca:94:41:db:7c:a3:8f:d8:d7:9d:00:ce:de:12:
d0:ef:76:dd:0b:e6:35:14:b4:cc:ef:4b:65:4e:7c:42:7c:5a:
2f:52:1a:bb:09:71:c5:4d:84:74:f2:a9:07:27:bd:d2:d1:49:
4c:eb:a3:1b:23:ba:1a:f5:1e:b5:ff:73:95:46:38:db:3a:4a:
d2:db:28:d6:cf:1b:ff:05:a7:30:6e:dd:64:9a:ea:8b:10:de:
0a:e6:20:c9:05:10:4d:a2:f7:4b:3c:64:2e:02:1b:15:79:4e:
73:7d:06:62:bd:70:8b:31:68:e5:64:d7:c8:86:b5:4d:e2:3c:
1c:9f:9f:61:40:67:b2:de:2e:98:08:c0:16:71:f6:5e:61:72:
6e:79:3f:c4:ac:88:e8:30:1c:e4:ca:f4:18:76:0a:27:fb:83:
80:e0:dc:87:2b:a3:1c:48:87:4e:14:28:da:94:6a:e7:5a:cd:
b2:a8:e5:bd:d6:53:3c:5a:3f:e1:3e:67:85:d3:9a:83:eb:89:
92:dc:7a:10:6a:0d:43:5b:25:79:95:4c:74:3a:6e:e8:dc:d3:
7b:3c:05:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org