Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/eYbF1wCHwqDdCDUQvYYS7Aq2eFI.roa
File: eYbF1wCHwqDdCDUQvYYS7Aq2eFI.roa (raw, json)
Hash identifier: 95Qy7xEGPqPLE11V1WbqCe3Fwt2XPz50LvwONi2kUDo=
Subject key identifier: 79:86:C5:D7:00:87:C2:A0:DD:08:35:10:BD:86:12:EC:0A:B6:78:52
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0187DCB504946441AD689B55503DA00294DA
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/eYbF1wCHwqDdCDUQvYYS7Aq2eFI.roa
Signing time: Tue 02 May 2023 13:44:23 +0000
ROA not before: Tue 02 May 2023 13:44:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205413
IP address blocks: 2a0f:5707:caca::/48 maxlen: 48
2a0f:5707:ca00::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:b5:04:94:64:41:ad:68:9b:55:50:3d:a0:02:94:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: May 2 13:44:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7986c5d70087c2a0dd083510bd8612ec0ab67852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:e8:1d:91:5e:0a:5a:2b:40:18:4c:4c:25:
41:7a:30:d9:1d:d9:8f:ed:ad:a3:37:61:ea:3a:bd:
92:74:46:0d:e4:91:e0:ed:66:7f:b2:a8:ef:ed:dc:
5d:e2:f2:0c:17:73:2f:95:4b:d8:b9:4c:98:65:d9:
97:d4:c6:5d:be:0e:46:a9:19:63:89:d8:20:97:18:
23:37:04:29:27:f3:7b:83:ae:00:6a:9e:36:a6:d1:
33:fe:f8:5a:7d:c0:e4:44:ac:db:11:47:de:70:20:
99:0b:df:dc:58:a6:87:51:0b:27:0d:05:7b:ac:24:
6e:7b:e7:b8:58:e2:18:df:be:16:35:1b:94:1c:84:
09:6e:2c:4f:fa:d5:ef:a1:75:92:8f:c2:71:7a:fa:
2d:bf:b2:19:0b:4f:1e:79:33:ed:cf:f0:d7:4f:22:
c3:61:74:21:27:4e:52:0f:03:ea:0c:d3:92:5b:8a:
8e:dc:91:31:aa:56:b6:18:27:f9:5f:5a:c5:94:77:
4b:53:d2:b1:e8:34:ab:d6:21:e0:dd:fd:b1:11:c3:
ff:f2:8c:d2:f5:c3:4a:d5:83:a9:42:43:85:0f:35:
c7:9a:88:9c:af:89:1b:76:65:80:18:8c:7d:fc:aa:
9e:3e:c1:a0:d4:68:8a:71:9c:d0:b2:c6:73:08:2b:
8d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:86:C5:D7:00:87:C2:A0:DD:08:35:10:BD:86:12:EC:0A:B6:78:52
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/eYbF1wCHwqDdCDUQvYYS7Aq2eFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ca00::/44
2a0f:5707:caca::/48
Signature Algorithm: sha256WithRSAEncryption
a7:3a:bc:18:d9:cd:82:44:ea:6c:26:0d:6e:b7:98:dd:ea:e3:
51:d0:e9:54:62:c7:50:85:aa:b3:76:d6:8b:3a:d8:c6:e5:dc:
f2:a2:c3:96:60:8f:20:bd:f1:02:6e:32:3f:f2:29:77:9e:14:
2d:c1:95:2e:74:4d:90:09:63:1f:fb:6e:ff:bc:9a:93:58:93:
0e:01:7a:c5:9e:b1:9e:47:0a:f9:18:64:9c:7b:50:8c:6e:28:
b8:7a:62:17:08:8e:aa:f0:bb:55:94:fc:74:e2:d6:3f:02:02:
73:55:d3:a1:6a:8d:1a:ed:69:0e:50:64:3b:dd:4a:de:80:61:
99:ca:03:75:76:9a:83:08:51:4d:f9:7f:29:d8:05:a0:9b:cd:
d5:52:35:97:03:0b:0c:f7:74:4d:2e:5e:65:40:2a:59:60:e7:
5c:62:64:93:56:2a:be:be:46:b1:5a:5a:16:78:c8:3d:23:62:
6a:7d:94:ab:7c:91:a2:4a:cc:7c:9e:cf:12:6c:37:9b:f4:af:
f8:f7:d8:5a:55:0b:93:34:54:9f:76:8d:f6:0e:1f:50:1e:b5:
f2:1a:74:9a:88:1e:00:c0:2d:31:5a:ea:af:cd:ba:49:72:6d:
9a:1c:5d:69:41:8a:cc:54:55:bc:ae:ac:04:9b:eb:0e:36:3a:
8e:69:5b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org