Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/yvkSOKz35BPsQRVXCzRBrY6TJ5M.roa
File: yvkSOKz35BPsQRVXCzRBrY6TJ5M.roa (raw, json)
Hash identifier: GqVa3GgNQavS4PTvjU0Q9gM+WeNf3rluyPKsZPyQZec=
Subject key identifier: CA:F9:12:38:AC:F7:E4:13:EC:41:15:57:0B:34:41:AD:8E:93:27:93
Certificate issuer: /CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Certificate serial: 0185701EE57699530DC3FD9BC09CEA4B7FA8
Authority key identifier: D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/yvkSOKz35BPsQRVXCzRBrY6TJ5M.roa
Signing time: Mon 02 Jan 2023 01:35:50 +0000
ROA not before: Mon 02 Jan 2023 01:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211983
IP address blocks: 2a0d:f301:43::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e5:76:99:53:0d:c3:fd:9b:c0:9c:ea:4b:7f:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Validity
Not Before: Jan 2 01:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caf91238acf7e413ec4115570b3441ad8e932793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:eb:a5:bd:78:8f:ec:25:83:32:f6:97:f7:7b:
35:af:65:b4:c6:62:ea:d1:09:01:cc:ad:8b:41:b9:
09:fb:a8:56:26:21:71:67:96:9a:0f:a9:7e:a0:50:
dd:b8:06:ec:24:60:6c:40:93:af:42:c7:6f:54:5b:
62:c0:10:a4:51:15:ab:67:e1:23:ee:18:4d:e3:6b:
72:a0:c7:34:ed:c8:b1:8d:30:03:7e:65:74:5e:b2:
f9:ee:2d:7b:56:b7:a6:9d:e6:5b:d6:70:19:64:f3:
ef:73:09:eb:d5:c5:16:cb:b8:46:70:b7:2a:cc:12:
f6:c7:94:1c:b8:54:07:fb:b9:e7:db:60:be:71:20:
dc:47:81:51:82:b7:64:01:6a:68:f3:17:e6:9d:5d:
42:8c:f6:9a:3d:69:17:00:d6:d4:18:2d:1c:32:c6:
e2:55:6e:1d:43:5d:3b:0b:1e:3c:85:b4:49:ee:66:
1a:0c:05:92:12:28:85:08:cf:b1:2d:83:d0:5f:84:
ec:25:71:6d:d3:6b:33:d6:c7:a7:41:06:6f:68:12:
7f:e3:03:cb:ff:ac:7a:fd:81:11:dc:aa:01:78:fd:
ba:6c:bb:68:a7:83:14:1e:03:34:84:06:87:b9:b1:
4e:4e:5b:c5:ad:cc:5b:a9:f3:68:c9:c3:9f:c5:5d:
df:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F9:12:38:AC:F7:E4:13:EC:41:15:57:0B:34:41:AD:8E:93:27:93
X509v3 Authority Key Identifier:
keyid:D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/yvkSOKz35BPsQRVXCzRBrY6TJ5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/1M8PvV9uF1mQPMad4NxOokwfg98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f301:43::/48
Signature Algorithm: sha256WithRSAEncryption
0a:07:01:83:28:fe:3a:5d:28:56:3c:02:28:52:95:66:23:8d:
e7:d6:ba:83:4b:83:44:58:dc:a2:aa:15:92:82:8c:c9:c0:7f:
b9:9a:c5:c4:92:3d:61:a7:9e:cb:d8:9b:a2:b8:a7:c2:6d:ae:
30:f8:ac:31:43:70:77:d0:f9:f4:6d:da:ee:d4:9b:cf:42:7d:
21:1e:10:60:69:a4:10:51:1b:58:67:76:30:ab:db:c4:c3:5f:
f5:35:55:8b:94:c9:80:ad:1b:c0:c8:d9:b8:dc:d6:af:7e:2c:
96:9d:cb:14:41:c7:8a:ac:4a:3d:c2:b4:ed:35:e8:5b:03:9d:
b3:fb:e6:e5:45:f0:0a:f7:e1:96:2a:b0:92:2a:fd:b4:51:1c:
59:25:c0:9c:90:6b:af:75:8e:7a:93:d9:bb:b7:1f:51:55:ea:
13:82:68:51:c2:72:3e:92:12:b4:fc:11:3e:29:b5:26:c2:9b:
31:43:72:de:bc:9e:b4:45:c4:3e:30:1f:8a:34:8c:20:d3:09:
9c:04:d4:24:fd:dd:92:01:df:ef:f0:64:f6:2d:b7:12:bc:33:
89:b1:cd:fa:83:c2:ce:b2:00:fe:c7:17:a2:14:34:2b:86:89:
c6:03:8c:42:b8:f7:4a:96:ce:1b:2b:cc:8e:fe:17:3c:62:8e:
82:c5:a4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 4 15:50:30 2023 by rpki-client on console-ams.rpki-client.org