Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/yIwyYDBfhA0uTG6_o3CqE5Y1drI.roa
File: yIwyYDBfhA0uTG6_o3CqE5Y1drI.roa (raw, json)
Hash identifier: lSnUwhYilpDQadzd3TSM7u6aIgfAAsnva22SZtTiy6Y=
Subject key identifier: C8:8C:32:60:30:5F:84:0D:2E:4C:6E:BF:A3:70:AA:13:96:35:76:B2
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 01856FD5306B7FEC0DC8252BF08F233A348B
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/yIwyYDBfhA0uTG6_o3CqE5Y1drI.roa
Signing time: Mon 02 Jan 2023 00:15:20 +0000
ROA not before: Mon 02 Jan 2023 00:15:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 2a0a:d6c0:145::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:30:6b:7f:ec:0d:c8:25:2b:f0:8f:23:3a:34:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Jan 2 00:15:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c88c3260305f840d2e4c6ebfa370aa13963576b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a7:3e:0c:ad:1e:a1:69:ca:ae:eb:2f:82:18:
9a:45:6c:c2:9b:dc:e9:e7:b8:73:88:46:bc:40:63:
a8:8f:59:9e:ae:bc:32:89:8a:52:c4:e1:cf:ad:c7:
54:4c:44:f4:96:2f:15:22:0d:d9:95:f8:f7:fe:46:
0b:b7:60:36:66:9b:96:74:61:96:ce:61:7f:28:5e:
4a:75:98:c6:c9:46:3d:af:5d:a8:5e:53:33:2d:ca:
06:f5:aa:2a:cb:bb:e2:70:3a:f2:6b:26:db:e9:b5:
b4:47:c7:c6:61:2f:d8:04:85:f3:47:8d:4d:85:96:
ca:8c:98:6f:54:4c:68:76:84:5d:9f:cd:f4:9e:9f:
5b:89:5c:8b:cd:e6:23:e3:f1:43:b9:f4:5f:23:62:
64:c6:a6:46:3b:ba:d6:c9:84:e0:9a:41:0c:0d:65:
f7:34:c0:fb:15:39:8d:6e:00:ff:cb:61:d3:7a:6b:
83:a9:37:03:7c:81:ea:52:ff:34:33:d8:1a:6d:ba:
f3:97:03:f5:d4:b4:af:40:54:1c:b1:4f:3f:6e:85:
dc:f9:6c:d5:4c:02:cf:a8:41:cf:43:07:c7:e2:b8:
c0:14:b3:b1:b8:cd:1a:c3:62:bc:f6:bc:6f:33:ff:
0c:6e:12:d5:bd:27:04:ad:9e:3a:01:62:50:f4:13:
05:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8C:32:60:30:5F:84:0D:2E:4C:6E:BF:A3:70:AA:13:96:35:76:B2
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/yIwyYDBfhA0uTG6_o3CqE5Y1drI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:d6c0:145::/48
Signature Algorithm: sha256WithRSAEncryption
74:1b:35:69:b4:d5:72:8a:79:a2:9e:66:79:5c:4f:c8:ad:00:
25:1a:36:33:2a:43:61:0d:ae:8b:a7:22:ca:03:1d:43:7d:28:
d5:6c:6e:9e:15:cf:4e:01:de:05:56:cf:49:7b:8d:9f:7f:7f:
7a:c1:de:4c:a7:0a:f7:fd:ee:14:87:c8:05:bc:5d:c7:b7:82:
4e:c5:d3:b8:00:60:dc:6e:8d:66:f6:45:07:61:0b:e6:48:c2:
86:22:99:29:3c:54:cd:d0:6c:90:41:06:0e:37:d5:23:53:58:
e3:0e:1d:e5:cf:96:0e:50:b0:c8:2c:ef:10:7f:fb:97:65:e1:
11:c1:77:5e:0f:0e:7e:61:e7:a1:86:e1:24:62:91:9e:de:7b:
25:ea:f6:bf:29:37:db:7e:8c:bc:af:d0:02:2e:e3:ab:43:3a:
8f:16:a4:55:4d:be:3e:91:34:b5:86:2e:ab:62:34:18:fe:e2:
ef:c2:2e:ff:30:4c:eb:1b:46:48:5e:3e:71:92:bc:92:29:4a:
02:ba:f7:4b:ae:9c:db:64:b8:85:53:cf:ef:33:c2:83:03:2b:
81:85:e5:e0:e1:c2:b2:77:9b:c8:cf:f8:f1:51:40:12:43:16:
5a:5f:9c:a0:40:e2:ee:42:ff:ac:fc:c4:57:5f:cc:86:eb:16:
52:23:ab:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:53 2024 by rpki-client on console-ams.rpki-client.org