Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/16d4b5-76bb-4324-9a86-705197507a59/1/YpXwHMi4zRoTp7xNxmM-Q2f3olA.roa
File: YpXwHMi4zRoTp7xNxmM-Q2f3olA.roa (raw, json)
Hash identifier: M6KATZGRDw0LM0stPRVM10DF+tjQeEyX3K9vVyBPJdc=
Subject key identifier: 62:95:F0:1C:C8:B8:CD:1A:13:A7:BC:4D:C6:63:3E:43:67:F7:A2:50
Certificate issuer: /CN=24b660a611980c68273139e32affb74b454a9d32
Certificate serial: 018611DCD1C573B9C105D05C399E40742F25
Authority key identifier: 24:B6:60:A6:11:98:0C:68:27:31:39:E3:2A:FF:B7:4B:45:4A:9D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLZgphGYDGgnMTnjKv-3S0VKnTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/16d4b5-76bb-4324-9a86-705197507a59/1/YpXwHMi4zRoTp7xNxmM-Q2f3olA.roa
Signing time: Thu 02 Feb 2023 11:22:09 +0000
ROA not before: Thu 02 Feb 2023 11:22:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2001:678:d10::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:dc:d1:c5:73:b9:c1:05:d0:5c:39:9e:40:74:2f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24b660a611980c68273139e32affb74b454a9d32
Validity
Not Before: Feb 2 11:22:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6295f01cc8b8cd1a13a7bc4dc6633e4367f7a250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b9:84:cf:bd:a5:71:34:c2:9f:2c:91:9e:35:
2f:9c:93:c0:b7:5d:20:31:1a:31:5b:65:13:f3:06:
31:b1:6c:50:48:76:ab:c6:26:79:05:26:7f:d1:c5:
03:ed:43:d5:2f:2a:b5:33:6f:81:bb:a6:86:70:36:
a9:1b:92:81:e8:c4:82:c1:62:53:bd:0f:5e:c0:4d:
8b:90:72:1e:2c:cb:ce:13:1a:73:2a:65:4a:6e:11:
73:b1:92:25:a5:c3:fc:ff:bd:62:d7:14:17:0e:fc:
7c:95:ec:01:27:50:f6:47:a8:62:a0:19:da:6a:9d:
2c:9e:2f:0b:7c:67:be:8d:3c:d1:8e:84:9f:29:9b:
e2:53:14:7c:d5:74:fb:a6:1f:87:40:bf:ee:c2:0c:
f7:d3:60:ed:91:62:00:39:fc:7f:9b:77:08:ad:b2:
da:5b:af:64:7f:ff:52:34:99:c2:75:7f:31:ad:c1:
df:23:db:34:2d:d7:32:f2:77:23:11:c7:ef:23:03:
39:63:90:20:27:41:06:18:ce:30:10:12:ac:dd:6f:
14:8a:95:6d:16:b0:fc:59:56:54:ce:2a:55:a3:c8:
d3:19:54:b8:be:0b:3a:61:08:61:97:4e:78:e0:0c:
db:7d:05:d7:1f:2a:fc:d3:f1:c3:03:fd:3f:ea:28:
a1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:95:F0:1C:C8:B8:CD:1A:13:A7:BC:4D:C6:63:3E:43:67:F7:A2:50
X509v3 Authority Key Identifier:
keyid:24:B6:60:A6:11:98:0C:68:27:31:39:E3:2A:FF:B7:4B:45:4A:9D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLZgphGYDGgnMTnjKv-3S0VKnTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/16d4b5-76bb-4324-9a86-705197507a59/1/YpXwHMi4zRoTp7xNxmM-Q2f3olA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/16d4b5-76bb-4324-9a86-705197507a59/1/JLZgphGYDGgnMTnjKv-3S0VKnTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d10::/48
Signature Algorithm: sha256WithRSAEncryption
00:fd:a1:5d:28:e6:4c:31:13:54:4a:f4:5c:9d:e4:00:87:1f:
65:ae:02:cd:1e:6a:1c:c8:eb:78:13:50:f7:0b:ca:37:a8:81:
64:04:09:1c:8d:a7:0b:fe:22:f5:b7:85:35:6a:ce:20:a3:a3:
0e:5f:2e:41:b7:0b:33:62:d7:6b:9a:17:35:86:70:75:09:56:
10:34:d6:6a:1a:f3:0c:9f:26:a4:e9:04:6b:f2:22:5e:f1:c9:
17:6d:86:e5:e8:7e:f1:07:4b:db:48:f1:f4:34:fd:4b:a6:08:
f5:95:45:fd:a4:de:d0:fd:3d:82:4a:1a:4b:b0:a4:bd:c3:d2:
f8:1b:93:c8:a9:4d:71:e8:83:5a:73:7d:c3:2b:f3:48:20:65:
dd:f0:b9:5f:04:4a:32:8f:4c:7d:eb:38:dc:88:a4:e2:cd:af:
78:f8:b0:d6:e9:94:cd:5b:c0:b9:44:74:ab:c6:91:a7:61:a6:
3e:fa:c7:82:c8:66:34:30:ef:42:0a:f4:08:f2:74:63:06:af:
68:6b:eb:0c:30:fd:49:91:42:c2:54:41:c8:2b:be:d3:07:ad:
8f:98:f0:c8:b1:af:50:c9:de:a1:ab:49:49:7a:6e:ef:7b:f4:
d2:1e:b7:75:06:db:e3:32:4e:2d:6d:b6:d8:9e:26:f2:59:36:
87:74:c1:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:47 2024 by rpki-client on console-ams.rpki-client.org