Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/cyU9Fq5jjocKPRm9azwjWl4-Jl0.roa
File: cyU9Fq5jjocKPRm9azwjWl4-Jl0.roa (raw, json)
Hash identifier: BdiXtB7hM9sc/+EsCKpKV9n8pw7971qI9e25jlmhA+k=
Subject key identifier: 73:25:3D:16:AE:63:8E:87:0A:3D:19:BD:6B:3C:23:5A:5E:3E:26:5D
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 0185BF08717654E01B9437E8BD8B4E97D9EB
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/cyU9Fq5jjocKPRm9azwjWl4-Jl0.roa
Signing time: Tue 17 Jan 2023 09:21:19 +0000
ROA not before: Tue 17 Jan 2023 09:21:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51490
IP address blocks: 2a05:7b85::/32 maxlen: 32
2a05:7b87::/32 maxlen: 32
2a05:7b81::/32 maxlen: 32
2a05:76c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:08:71:76:54:e0:1b:94:37:e8:bd:8b:4e:97:d9:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 17 09:21:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73253d16ae638e870a3d19bd6b3c235a5e3e265d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4b:04:eb:2d:3a:be:20:0f:79:8b:6b:ef:a4:
cf:d9:63:8f:fc:16:45:73:66:60:e3:e5:53:15:88:
65:32:20:86:43:ad:e7:62:9f:87:a5:76:d2:7f:b9:
5c:61:8a:7a:55:f7:93:cf:ab:5d:78:26:94:34:ef:
d3:6b:4e:29:6a:16:b2:33:36:8a:9b:46:4f:f8:09:
73:05:83:60:75:fa:52:14:b5:df:8e:02:4b:ca:20:
6a:c8:d5:a1:8b:eb:fc:27:05:3f:81:47:cd:99:25:
99:04:36:51:04:3b:91:89:b6:07:d2:09:46:74:c0:
6d:7d:5d:9b:fd:56:ec:d3:d4:e0:47:2f:2f:e7:fe:
17:d0:4d:92:0d:3a:a4:e1:ab:56:4d:c8:8d:5c:5a:
07:e2:98:c1:3d:42:56:b0:af:65:7a:12:15:c6:e3:
a7:21:a6:7f:b1:46:80:8b:50:54:f4:50:2f:0b:08:
c7:7e:fd:2e:05:8c:5e:69:12:25:05:0a:84:28:35:
49:6a:15:b8:a4:e5:93:76:b1:01:89:72:6b:db:5f:
a4:a6:10:4d:55:c3:69:b2:9f:ff:4d:8d:92:26:be:
5f:69:27:55:12:6e:5a:24:48:d0:cc:22:c4:e9:5a:
0b:e0:81:7e:63:fd:e2:64:84:b6:ce:b7:dc:0d:a4:
39:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:25:3D:16:AE:63:8E:87:0A:3D:19:BD:6B:3C:23:5A:5E:3E:26:5D
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/cyU9Fq5jjocKPRm9azwjWl4-Jl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:76c0::/29
2a05:7b81::/32
2a05:7b85::/32
2a05:7b87::/32
Signature Algorithm: sha256WithRSAEncryption
4d:9f:66:2d:28:23:ad:1d:4c:9c:7a:18:d7:d0:d7:56:1c:40:
fd:b0:cf:3e:a5:a4:5b:b5:68:9c:5d:43:22:6d:e9:74:75:7b:
1a:c6:1a:6b:40:46:4f:bf:8c:68:4d:c5:83:80:b4:16:f5:de:
39:0f:a6:23:d2:23:b8:6f:f8:fe:a9:2b:57:a8:aa:1c:67:5f:
03:3f:3c:61:7a:f3:e2:ad:7e:1f:60:0d:2c:b2:f4:ab:62:94:
49:cc:f9:cc:46:c9:0f:7f:db:54:05:84:3d:de:23:9a:9b:f9:
d3:f6:f3:a9:2e:be:a5:16:14:46:76:a7:a9:f7:fb:69:e9:8a:
c2:45:e5:47:75:52:c9:46:13:35:62:da:7a:24:9b:c1:26:fa:
ba:f3:5b:f7:2b:64:32:88:20:26:32:ba:11:47:a6:94:80:5b:
5b:79:95:67:13:ab:3d:04:61:ca:8e:a3:84:2a:5b:7b:24:44:
16:fe:2d:4f:9c:00:93:b3:c1:42:51:19:ff:83:9e:c1:eb:8c:
0f:39:24:78:e2:41:52:16:62:d9:14:c1:aa:8c:1f:e8:5e:0b:
89:22:fc:f1:fe:f6:eb:2c:8f:3c:76:df:9b:08:75:c3:2d:0e:
0d:f9:29:47:8f:4d:b3:79:fb:85:f3:39:6d:d9:67:9b:c3:28:
6f:56:66:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:57 2024 by rpki-client on console-fra.rpki-client.org