Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/Y5OwfuoRDFMH8rLtBDhfckVCZNk.roa
File: Y5OwfuoRDFMH8rLtBDhfckVCZNk.roa (raw, json)
Hash identifier: KTjld13iesd2DahXrdjiHO4mVAChbGKu7O0oYtmTpaM=
Subject key identifier: 63:93:B0:7E:EA:11:0C:53:07:F2:B2:ED:04:38:5F:72:45:42:64:D9
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 01857070752674DF71671B6356F0CEEA98FA
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/Y5OwfuoRDFMH8rLtBDhfckVCZNk.roa
Signing time: Mon 02 Jan 2023 03:04:56 +0000
ROA not before: Mon 02 Jan 2023 03:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48976
IP address blocks: 2a12:e100:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:75:26:74:df:71:67:1b:63:56:f0:ce:ea:98:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Jan 2 03:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6393b07eea110c5307f2b2ed04385f72454264d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:89:0c:c6:95:34:70:45:09:f2:99:18:36:9a:
b4:3b:d7:13:4e:e8:62:35:7a:ab:ad:7a:19:bc:6c:
82:38:6f:47:e0:5f:c5:0a:11:1a:12:9e:88:9f:4f:
34:b1:db:b3:90:e0:68:d3:14:14:52:c7:17:36:bb:
4d:81:61:be:f6:84:0b:a3:b2:34:99:78:de:7c:a9:
fb:a2:4f:f6:0b:b0:3a:e9:20:df:66:5d:07:26:18:
2e:d4:ae:85:37:28:86:e3:39:19:b0:48:23:7a:83:
58:28:d0:2e:85:2b:4b:ea:27:09:20:1b:65:04:9b:
92:c0:7d:76:54:19:cb:40:e8:db:18:72:03:e8:cc:
4d:78:c2:b1:24:3c:11:ca:f7:3d:49:fa:c1:53:96:
cd:01:c2:6f:ff:e0:ac:da:15:9a:86:80:00:6c:c3:
6f:22:a8:60:47:0d:93:af:7b:dd:be:46:2a:37:5f:
87:e9:c0:6e:05:46:99:d4:9c:f9:23:2f:9b:d0:26:
e6:8b:1e:15:25:9e:74:f3:5a:91:61:13:97:84:ae:
3b:b5:51:dd:d2:ab:c5:17:97:37:5a:d0:8e:d1:f8:
d9:3b:bd:00:83:8e:a6:6c:6e:e5:24:28:bd:63:bb:
ff:c3:67:db:bc:69:82:8c:a2:c7:6f:8f:d0:3a:03:
27:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:93:B0:7E:EA:11:0C:53:07:F2:B2:ED:04:38:5F:72:45:42:64:D9
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/Y5OwfuoRDFMH8rLtBDhfckVCZNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e100:4::/48
Signature Algorithm: sha256WithRSAEncryption
d1:bb:a6:12:ea:14:7a:b8:1f:7c:8f:65:36:d3:60:44:4e:03:
49:72:cf:28:0c:e8:c3:e8:47:09:60:44:f8:19:28:e2:9f:3c:
53:66:8a:14:a3:8e:35:a5:68:28:2b:9c:9c:ed:77:b7:9a:fe:
50:0c:0b:c6:b0:9a:9c:e0:62:95:6e:79:4b:3d:59:e8:45:e6:
18:d1:32:0a:f0:92:7c:9f:12:f9:46:fc:34:3e:f4:a7:6a:28:
a2:d8:e5:bf:d8:0c:96:6f:be:b1:a7:39:5c:b6:98:de:17:c0:
f4:4f:c5:f3:53:01:70:cc:13:1a:ef:9d:9e:5e:f4:6f:7c:c0:
db:c8:fe:e1:49:dd:f9:f4:ef:22:5e:1c:4b:1d:65:2f:4e:cd:
1e:5c:8e:55:a2:5b:b9:6e:0a:57:84:65:35:16:b2:f4:c9:c5:
3d:17:2e:6f:b6:87:0a:30:e1:3a:e5:c5:f0:a9:6c:6f:a8:8f:
0e:d5:0f:78:96:6e:c7:78:d6:5a:a0:0a:9e:1a:5e:bb:d4:10:
b5:67:1f:96:8c:89:87:fa:9c:73:b5:26:0a:c9:e3:83:5a:9c:
95:3f:db:c5:58:fa:f4:eb:82:09:49:90:49:16:48:94:f2:36:
bb:98:0a:c8:8e:2a:9c:48:f4:22:8b:0b:32:f8:fb:29:9d:37:
af:bb:2b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:10 2024 by rpki-client on console-ams.rpki-client.org