Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/yJeYKo61j9dK9FEo3kGWDd6yTBs.roa
File: yJeYKo61j9dK9FEo3kGWDd6yTBs.roa (raw, json)
Hash identifier: NSo1cULvx0/RbdbCtVwf+9KiDXeUdI343LIrsBXUrhk=
Subject key identifier: C8:97:98:2A:8E:B5:8F:D7:4A:F4:51:28:DE:41:96:0D:DE:B2:4C:1B
Certificate issuer: /CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Certificate serial: 018799FC3808AA8A6349341E40DA3322A887
Authority key identifier: 73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/yJeYKo61j9dK9FEo3kGWDd6yTBs.roa
Signing time: Wed 19 Apr 2023 14:47:36 +0000
ROA not before: Wed 19 Apr 2023 14:47:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210896
IP address blocks: 2a0c:d540:1111::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:99:fc:38:08:aa:8a:63:49:34:1e:40:da:33:22:a8:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Validity
Not Before: Apr 19 14:47:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c897982a8eb58fd74af45128de41960ddeb24c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0b:e0:20:22:7b:a9:b2:90:b4:88:73:16:0c:
5f:81:3e:a8:7c:0f:9e:bc:c4:54:f8:d6:13:6c:32:
4c:fb:c6:b7:73:60:f1:7f:d5:6c:9a:64:bb:80:8a:
91:5a:69:c7:88:02:75:98:6c:4b:07:67:32:7c:b6:
00:5f:d0:dd:88:8f:c0:d4:e4:5a:67:53:bf:e5:03:
68:a1:c3:53:f8:e1:78:50:1b:0c:37:67:4c:35:62:
ad:cb:e6:d5:f2:37:c5:f9:62:85:19:24:04:e3:38:
93:77:79:47:1c:3d:ae:07:15:8e:9c:6f:4a:88:0f:
cc:9e:b3:64:2e:ec:6c:d0:9e:f8:a2:bf:ea:b3:5a:
ea:a5:d9:18:a2:52:ba:27:5a:63:10:73:2d:9f:10:
6e:4c:3e:25:da:0b:48:f4:76:4e:8f:22:80:35:f2:
a0:9e:9f:71:0e:2a:c4:ef:99:d0:eb:c1:ed:34:7a:
7a:ad:a3:20:ff:2b:c5:de:50:d8:2c:c8:9d:cb:81:
99:ea:bb:c6:8f:50:4e:57:ae:5d:ed:6e:75:a4:ec:
3c:f7:d5:26:f4:fd:4a:db:c8:59:9b:e7:6c:66:c3:
3d:5e:f1:37:4c:f2:23:03:7e:79:a6:a1:ec:23:ef:
5e:cc:ea:c1:83:2f:bc:d1:db:09:b7:c1:81:a2:43:
f2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:97:98:2A:8E:B5:8F:D7:4A:F4:51:28:DE:41:96:0D:DE:B2:4C:1B
X509v3 Authority Key Identifier:
keyid:73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/yJeYKo61j9dK9FEo3kGWDd6yTBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/c9_uqcfeJG5tfRpQdAYoWyJvkoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:d540:1111::/48
Signature Algorithm: sha256WithRSAEncryption
37:dd:2c:8a:c3:63:ac:eb:dd:17:2e:b7:3d:57:f9:22:e8:0a:
fd:86:68:1c:1a:d7:64:72:2f:34:0b:bd:97:56:eb:17:7c:18:
0e:92:7b:a7:6b:1a:8e:b4:9d:e6:c3:7d:72:ca:a9:e6:86:fc:
18:91:85:ef:30:5e:01:f9:b3:32:7f:15:5f:85:09:88:5c:20:
9b:a4:46:d4:9b:da:c5:87:76:2c:95:62:64:45:5d:ca:c1:73:
88:af:9a:5b:18:d3:0c:c1:0b:9c:c8:45:1d:53:21:ba:20:7e:
15:58:68:fa:1f:3a:20:b2:e0:2a:38:cf:25:73:6f:c0:bd:80:
12:00:28:ba:12:89:e3:48:09:30:30:34:f4:a3:33:8e:4e:48:
82:07:8f:00:0a:b1:d5:72:30:aa:c5:f9:9b:c6:d3:9b:d7:11:
31:47:ad:73:74:e2:ad:10:b0:3c:03:81:69:fb:c7:c6:13:d7:
14:b5:4e:dd:ff:48:ef:2c:2a:be:4e:8f:88:78:34:a5:62:6f:
af:27:f3:76:20:40:4c:b4:cf:f9:01:7d:e3:47:c7:3a:1c:53:
30:00:4e:a4:63:70:78:b3:0d:ce:a1:35:e5:fe:1a:ca:86:98:
e4:57:7b:06:fd:35:66:62:31:99:56:28:b7:cb:8f:2f:1f:48:
4a:62:f0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:46 2024 by rpki-client on console-fra.rpki-client.org