Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/Y-msNcG0n6U6--1HqlXS9fSkGFM.roa
File: Y-msNcG0n6U6--1HqlXS9fSkGFM.roa (raw, json)
Hash identifier: 96UtvvWWNaFWtgplg8nAHc2Z9aQk7YZ3D7IgYL2HAhY=
Subject key identifier: 63:E9:AC:35:C1:B4:9F:A5:3A:FB:ED:47:AA:55:D2:F5:F4:A4:18:53
Certificate issuer: /CN=5289a5765a9e836fd0fa811f760f0dcebe8f18ce
Certificate serial: 01856F14BB4F2FF0BC45391E1D81B10F22C8
Authority key identifier: 52:89:A5:76:5A:9E:83:6F:D0:FA:81:1F:76:0F:0D:CE:BE:8F:18:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uomldlqeg2_Q-oEfdg8Nzr6PGM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/Y-msNcG0n6U6--1HqlXS9fSkGFM.roa
Signing time: Sun 01 Jan 2023 20:45:07 +0000
ROA not before: Sun 01 Jan 2023 20:45:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197996
IP address blocks: 2a03:1880::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:bb:4f:2f:f0:bc:45:39:1e:1d:81:b1:0f:22:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5289a5765a9e836fd0fa811f760f0dcebe8f18ce
Validity
Not Before: Jan 1 20:45:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63e9ac35c1b49fa53afbed47aa55d2f5f4a41853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3b:80:2e:35:1f:f3:3a:9f:50:65:7f:e8:7e:
97:9e:16:4c:d2:91:77:66:c3:0e:fe:10:82:37:ef:
d3:93:e2:9c:a6:0f:84:be:d4:00:83:2b:44:e9:7d:
b7:ce:98:f9:09:42:06:e3:1c:da:8e:95:0c:f4:ac:
2a:45:2d:8a:3e:a1:64:44:10:ef:0f:56:41:1f:6d:
a7:90:36:71:4c:e9:13:c4:17:a1:75:a9:17:c9:88:
18:af:c5:bf:63:26:75:d5:b7:bd:50:21:d1:13:ee:
b9:52:06:c7:90:c1:03:b6:f6:e1:a2:d1:1a:bb:39:
3b:ce:93:4e:56:a4:4d:27:f1:65:5f:e1:45:fa:02:
99:17:7e:72:1d:20:4b:b2:82:98:b9:3e:1f:75:ef:
35:12:b0:74:61:e1:58:02:67:47:e3:c0:2e:40:6e:
bd:5a:a4:c7:69:d9:af:27:08:95:02:00:2b:69:36:
d1:63:fd:4d:8a:52:82:40:87:33:ab:c5:4a:81:f8:
17:87:51:e9:0e:4d:40:a3:7e:c5:d5:38:9a:4a:00:
18:06:93:ed:54:0b:02:f8:40:78:b4:00:98:35:e0:
25:18:3c:a8:a3:b9:fb:55:af:f1:d2:ca:1c:01:7f:
09:b0:06:47:58:7a:52:48:ac:4c:b9:44:a1:b1:71:
64:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E9:AC:35:C1:B4:9F:A5:3A:FB:ED:47:AA:55:D2:F5:F4:A4:18:53
X509v3 Authority Key Identifier:
keyid:52:89:A5:76:5A:9E:83:6F:D0:FA:81:1F:76:0F:0D:CE:BE:8F:18:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uomldlqeg2_Q-oEfdg8Nzr6PGM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/Y-msNcG0n6U6--1HqlXS9fSkGFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/826b7c-4754-4abd-9875-e1b20077ed93/1/Uomldlqeg2_Q-oEfdg8Nzr6PGM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:1880::/32
Signature Algorithm: sha256WithRSAEncryption
03:65:99:93:9e:cf:3f:c4:5f:2a:88:4d:86:51:4e:b5:fb:7c:
fd:5f:bf:2a:ce:72:1b:56:53:72:80:06:2c:3f:c3:8c:18:fa:
82:7f:74:a9:c6:1f:33:1d:9e:11:58:e3:91:64:ec:2e:de:06:
44:d8:54:d6:e2:b4:8b:4a:ee:83:ba:6b:17:ae:3d:83:49:e0:
a5:19:d7:b7:f0:7d:71:f7:39:0c:6e:f4:39:62:56:d7:d1:df:
42:b5:65:6b:fa:43:10:1b:e8:fd:b6:6e:63:21:30:ba:ad:61:
b8:e7:b7:c5:78:49:b8:40:62:1d:f5:75:1a:ea:2c:13:a2:b6:
2c:0b:b2:95:03:6c:9e:9d:1f:fb:63:84:8c:0b:60:1a:44:87:
3b:00:9f:3d:b6:3c:a5:04:a4:51:27:34:ef:e7:03:a2:b0:d0:
d8:05:72:bf:66:ff:00:2b:27:d9:27:6f:6f:b7:05:bb:63:2e:
80:f1:58:bb:2a:ea:f9:0c:c7:7f:60:9f:bc:7a:88:af:92:f9:
5e:85:24:e1:d3:c4:03:05:a6:dd:29:14:6b:ff:ab:7b:96:2c:
ab:47:6d:09:be:24:34:52:5d:85:a0:a2:56:be:62:da:28:79:
6e:20:a2:ea:08:4d:48:e3:8b:ac:c6:de:27:83:03:88:15:1a:
65:dd:24:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:11 2024 by rpki-client on console-fra.rpki-client.org