Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/Y0u7S9p2ZCWyX7bGbkMFqHlfo8k.roa
File: Y0u7S9p2ZCWyX7bGbkMFqHlfo8k.roa (raw, json)
Hash identifier: wd7I7Gw8CjJHyW6SRFFcthvbktFUVvZtHovxhKUPbm0=
Subject key identifier: 63:4B:BB:4B:DA:76:64:25:B2:5F:B6:C6:6E:43:05:A8:79:5F:A3:C9
Certificate issuer: /CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Certificate serial: 018B28D70D7C6FBE3C8F73AA1269EFD72DB8
Authority key identifier: F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/Y0u7S9p2ZCWyX7bGbkMFqHlfo8k.roa
Signing time: Fri 13 Oct 2023 11:41:04 +0000
ROA not before: Fri 13 Oct 2023 11:41:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57271
IP address blocks: 2a0c:7b83::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:d7:0d:7c:6f:be:3c:8f:73:aa:12:69:ef:d7:2d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Validity
Not Before: Oct 13 11:41:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=634bbb4bda766425b25fb6c66e4305a8795fa3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4b:62:89:ad:07:92:03:19:ce:41:92:d4:8f:
da:32:72:56:21:95:d2:ae:63:96:26:54:3d:4d:ea:
eb:68:03:77:14:42:6e:b0:49:9c:6f:f4:83:e1:24:
a4:9d:8c:ea:97:d4:b7:26:47:c2:3a:58:ca:8f:73:
cd:3c:a4:60:6b:de:06:50:61:e9:8f:7a:fe:0b:cf:
56:c5:8c:b1:ae:6b:16:ae:0b:e7:c5:1b:44:f9:a8:
84:7e:e1:dc:c6:fb:c8:f5:41:2d:48:5b:5f:f7:21:
d9:21:4e:de:91:07:7d:e5:76:29:96:6a:7a:de:1d:
4c:7e:c9:b7:0c:54:e6:ed:85:fd:ce:ba:c9:d5:db:
82:56:6d:96:df:b3:14:0a:29:d2:4f:1d:98:55:c8:
7c:58:bf:18:14:b8:21:20:e9:8f:6d:dd:d7:a3:b1:
6e:64:ba:f9:77:0d:26:dc:72:c0:0c:bb:15:62:92:
af:b0:3c:4c:1e:fb:b7:4b:d9:6c:80:08:ef:34:8e:
1a:2b:92:b6:eb:e0:05:8d:39:b9:0e:a4:67:6e:cd:
29:18:53:95:eb:ae:8c:e4:4d:ae:4c:28:8f:4d:2c:
fd:56:72:ac:36:fa:34:05:7c:be:d9:1f:a2:2a:61:
b9:1d:4c:90:da:ae:51:9c:cc:9c:97:d1:9c:d0:e3:
db:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4B:BB:4B:DA:76:64:25:B2:5F:B6:C6:6E:43:05:A8:79:5F:A3:C9
X509v3 Authority Key Identifier:
keyid:F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/Y0u7S9p2ZCWyX7bGbkMFqHlfo8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7b83::/32
Signature Algorithm: sha256WithRSAEncryption
38:2f:45:81:37:bd:a6:e1:ee:95:c0:12:7d:61:07:79:9e:f5:
ff:19:ba:7e:53:f2:d1:66:e4:65:19:31:10:74:d8:c8:fd:7c:
bb:b2:90:23:b3:c8:8e:2c:88:a8:93:93:28:31:e6:be:a0:3d:
92:b0:02:cf:56:e4:54:c6:e9:e3:1e:13:a5:ec:d3:c1:71:10:
c4:56:bd:75:2d:f0:88:f6:28:f6:1c:72:cb:12:e5:25:6e:fe:
63:8f:ca:15:25:41:83:62:3f:44:bd:61:a6:a7:43:d6:d4:bc:
67:97:d3:eb:2f:0c:91:5b:99:fc:94:f7:bf:c5:f7:d9:28:69:
a9:53:b0:70:91:11:b4:76:1e:2c:fe:82:52:b3:6a:d1:b6:d5:
c2:db:93:6e:8b:44:ba:b3:9c:55:8b:b7:de:fa:d5:44:ea:f4:
cc:b9:ef:a0:1b:f7:32:d7:3a:62:9f:d2:1a:91:a4:89:1a:d9:
53:9f:a6:6e:72:09:bb:4f:7c:96:38:b0:d5:5a:66:90:c3:f7:
df:11:a1:97:e7:38:a0:65:a3:99:44:b1:26:27:f4:64:b0:85:
36:1b:8d:56:7a:66:c8:fd:3f:a3:1a:53:60:06:a8:20:06:d1:
34:3e:3d:ff:30:39:e5:73:59:1c:ac:8b:28:78:b3:b6:96:89:
32:b6:76:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 17 11:30:37 2023 by rpki-client on console-ams.rpki-client.org