Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/Ykbl0N9Noxyn71bLQn5ryKvyzx0.roa
File: Ykbl0N9Noxyn71bLQn5ryKvyzx0.roa (raw, json)
Hash identifier: zMuMI2F2aRoC/m1SBI3Eo4JYuqIes0ycz68HVvKlk14=
Subject key identifier: 62:46:E5:D0:DF:4D:A3:1C:A7:EF:56:CB:42:7E:6B:C8:AB:F2:CF:1D
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 018A4728B4310C4545BE11F8C4678A43D189
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/Ykbl0N9Noxyn71bLQn5ryKvyzx0.roa
Signing time: Wed 30 Aug 2023 15:56:04 +0000
ROA not before: Wed 30 Aug 2023 15:56:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151673
IP address blocks: 2a0f:7803:fd00::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Aug 2023 16:40:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:28:b4:31:0c:45:45:be:11:f8:c4:67:8a:43:d1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Aug 30 15:56:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6246e5d0df4da31ca7ef56cb427e6bc8abf2cf1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f2:44:ab:2c:7c:ab:58:1c:0b:e8:c8:04:02:
4b:b3:75:ae:8b:dd:ac:74:c3:31:2e:70:f5:d2:21:
7d:e1:d4:ce:71:a6:56:83:d0:f4:c9:34:dd:80:f0:
fc:73:89:9a:78:ea:f2:cf:cb:f9:68:b1:30:67:da:
b0:14:35:17:c4:4e:09:56:da:18:58:43:0d:04:a2:
fc:36:b3:b4:24:fd:2f:39:97:44:0b:75:62:f6:f5:
70:8b:fe:6b:6e:ba:d8:00:88:2e:66:ab:c0:7b:e0:
db:34:4a:bd:dc:ad:67:3d:65:7c:aa:61:33:e6:de:
97:38:5c:a9:9b:01:1c:e7:de:7e:00:40:18:48:de:
5b:ec:48:b2:1c:89:97:ae:51:96:be:82:d3:60:7d:
d9:45:04:80:d6:f5:af:cf:4d:10:4d:e6:8f:8d:da:
ae:bf:ed:48:bc:92:1a:e6:0c:13:4e:a5:de:e3:05:
40:55:57:75:e5:cd:3b:ac:44:e8:2a:a1:27:0e:40:
b0:c5:4e:55:82:79:bc:db:64:ee:73:4f:b2:cb:64:
93:ea:68:2b:6a:aa:46:14:f2:37:91:74:f4:f3:5e:
6b:14:6a:ee:d0:74:f8:18:67:51:f8:79:9f:0f:f8:
d3:32:be:a7:e7:de:2c:94:a2:6c:a2:99:c3:8e:0f:
4f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:46:E5:D0:DF:4D:A3:1C:A7:EF:56:CB:42:7E:6B:C8:AB:F2:CF:1D
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/Ykbl0N9Noxyn71bLQn5ryKvyzx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:fd00::/40
Signature Algorithm: sha256WithRSAEncryption
46:07:a4:7d:77:83:b1:0c:01:a4:61:e0:8a:9d:20:03:42:d9:
91:31:cd:79:84:4a:8d:86:41:06:76:1b:e4:5b:32:2d:49:67:
71:c4:e9:4a:1b:b6:ad:49:96:34:11:af:d3:0d:c2:e4:5a:66:
5b:a6:93:67:2f:1e:dd:b1:88:10:01:ab:f4:bd:65:f1:5a:30:
92:88:b1:84:64:59:9e:ab:d6:dd:59:73:61:a1:d2:5b:c2:df:
26:24:f7:08:3d:54:bf:56:79:b4:67:ad:f2:52:6c:ea:62:8f:
fc:ea:c7:7a:ac:4d:b5:64:8e:f3:19:de:ab:a0:2a:63:65:54:
8a:dc:09:5a:64:50:aa:ad:76:ef:f9:47:cc:06:41:08:38:2a:
a0:00:d0:51:08:4b:48:99:0c:36:07:d1:ab:03:90:89:b9:02:
de:d5:cb:94:e0:f1:c3:53:46:e7:9f:9c:ed:c0:72:58:45:1a:
b6:1a:43:86:30:fe:ba:1b:6c:ac:95:73:a5:9f:ee:f4:84:f5:
89:a5:d4:0a:4f:7a:04:57:71:36:ce:01:b1:bf:ff:46:0c:a1:
1a:9d:15:0d:a5:f7:80:46:3a:8f:8c:45:f6:f3:02:56:06:14:
2d:ab:80:df:30:d1:dd:7e:8f:ab:31:62:dc:ff:35:65:99:bf:
9d:52:40:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:29 2024 by rpki-client on console-fra.rpki-client.org