Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/45a9c8-a257-47c3-be6f-677f51ebbd85/1/oyjlc3lf1RacDj3jBOyvgXofKpA.roa
File: oyjlc3lf1RacDj3jBOyvgXofKpA.roa (raw, json)
Hash identifier: 9bBs7XLV1XFy06/bTCNSJ8e+kbOkX2n/k0M4TWlG5KM=
Subject key identifier: A3:28:E5:73:79:5F:D5:16:9C:0E:3D:E3:04:EC:AF:81:7A:1F:2A:90
Certificate issuer: /CN=459478e9f1f30b24fd17198d1cac835bc1e4dfaf
Certificate serial: 018B8593C5CCD3BA7973BE33C0B9513027B3
Authority key identifier: 45:94:78:E9:F1:F3:0B:24:FD:17:19:8D:1C:AC:83:5B:C1:E4:DF:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZR46fHzCyT9FxmNHKyDW8Hk368.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/45a9c8-a257-47c3-be6f-677f51ebbd85/1/oyjlc3lf1RacDj3jBOyvgXofKpA.roa
Signing time: Tue 31 Oct 2023 11:52:15 +0000
ROA not before: Tue 31 Oct 2023 11:52:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20677
IP address blocks: 2a13:fbc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:93:c5:cc:d3:ba:79:73:be:33:c0:b9:51:30:27:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=459478e9f1f30b24fd17198d1cac835bc1e4dfaf
Validity
Not Before: Oct 31 11:52:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a328e573795fd5169c0e3de304ecaf817a1f2a90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:48:12:f4:2b:b5:01:df:21:73:9e:d7:72:82:
1b:36:a5:4f:6f:c3:2e:c5:a4:f6:a8:c9:18:a0:3a:
9a:21:02:97:8b:ea:c2:ed:01:e4:c8:64:91:09:a6:
56:f7:e6:a5:53:5a:21:80:29:f9:4c:ab:c4:59:82:
dc:b1:20:2e:44:3b:ea:b9:47:59:98:c2:2d:74:3e:
68:45:69:03:8d:b2:ac:b4:c0:f2:e6:51:2a:d5:c8:
5d:8d:49:c6:ff:02:4a:e5:85:d4:53:40:81:cb:0a:
91:d7:45:84:e3:c4:2a:28:34:b9:b7:1b:20:64:08:
1e:fb:74:b6:8b:c8:9b:dd:46:17:fc:62:26:6c:56:
b7:91:ce:12:36:c8:21:2f:2c:c8:d7:36:3c:85:15:
96:1a:0d:7d:c4:ad:61:21:c9:79:e5:33:ee:c8:80:
5c:b0:f3:cd:2c:e9:e8:26:3d:a5:4a:d0:04:6b:45:
0c:ba:8a:58:69:6b:22:cb:c9:11:6f:02:8a:83:6a:
51:45:4b:dd:fa:1c:c4:a0:ec:25:81:75:55:c7:a8:
08:6d:b3:66:d9:8c:14:0b:a0:77:52:57:2a:f2:98:
72:f7:93:c9:3b:46:7c:7c:c6:80:13:84:64:0d:7e:
45:b9:23:cd:19:41:d8:3d:78:9c:dd:3a:5a:62:43:
06:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:28:E5:73:79:5F:D5:16:9C:0E:3D:E3:04:EC:AF:81:7A:1F:2A:90
X509v3 Authority Key Identifier:
keyid:45:94:78:E9:F1:F3:0B:24:FD:17:19:8D:1C:AC:83:5B:C1:E4:DF:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZR46fHzCyT9FxmNHKyDW8Hk368.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/45a9c8-a257-47c3-be6f-677f51ebbd85/1/oyjlc3lf1RacDj3jBOyvgXofKpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/45a9c8-a257-47c3-be6f-677f51ebbd85/1/RZR46fHzCyT9FxmNHKyDW8Hk368.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:fbc0::/48
Signature Algorithm: sha256WithRSAEncryption
82:33:05:9d:a2:cd:67:ce:07:e4:4d:1a:cd:67:18:63:fe:97:
89:3a:ca:2c:99:f9:39:9a:e8:05:5b:4f:1f:08:65:d0:ed:d2:
8b:fd:70:fb:dc:7f:26:7f:ad:ac:09:a1:c6:cf:ce:84:9e:77:
4d:48:8f:69:81:4a:da:67:4a:94:7c:f7:99:46:0e:f8:41:5f:
3e:d0:82:94:f5:f0:4d:41:9a:7c:6e:d2:9d:cc:cc:4b:d8:c3:
6e:2a:41:29:23:4a:2f:73:b0:90:c3:9e:4a:97:31:75:68:70:
96:bd:e7:2b:cf:56:e0:77:d9:dc:fc:8a:d4:d7:51:dd:4b:a8:
fc:45:82:42:12:17:f5:5f:29:f1:b2:d1:99:5c:cb:cb:15:a5:
0c:03:d2:60:17:4f:d1:f0:88:68:95:86:8e:d9:16:ba:dd:fb:
3d:2d:f7:06:0f:cb:78:9f:a4:db:5c:4a:c9:5e:fa:4d:c8:18:
6a:cc:6e:a4:1d:dd:9d:5c:7b:27:53:fb:5c:ce:27:8a:b0:33:
7d:13:d0:cf:b0:56:31:00:01:0c:f6:37:8f:ae:28:c5:54:f7:
8e:0f:f0:82:97:6c:ec:38:a3:4f:f5:6b:46:5c:13:4e:9d:c3:
09:8a:66:52:dd:f7:b9:cc:98:84:9a:78:26:56:fa:50:b3:d8:
62:87:5c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:32 2024 by rpki-client on console-fra.rpki-client.org