Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/YdzUGWhRpb11vKV1qE8r-_oSypM.roa
File: YdzUGWhRpb11vKV1qE8r-_oSypM.roa (raw, json)
Hash identifier: Unu4czcZeRYVrnnyLRRZ//h9iwPCq5Tv/8ThZXz1VuE=
Subject key identifier: 61:DC:D4:19:68:51:A5:BD:75:BC:A5:75:A8:4F:2B:FB:FA:12:CA:93
Certificate issuer: /CN=1e3ba4dbba523d5b0dc989203bfd69648d1d4e66
Certificate serial: 01856C5CB3B880AABF588E2CEE9E84077A98
Authority key identifier: 1E:3B:A4:DB:BA:52:3D:5B:0D:C9:89:20:3B:FD:69:64:8D:1D:4E:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/YdzUGWhRpb11vKV1qE8r-_oSypM.roa
Signing time: Sun 01 Jan 2023 08:04:52 +0000
ROA not before: Sun 01 Jan 2023 08:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13101
IP address blocks: 2001:678:a14::/48 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:b3:b8:80:aa:bf:58:8e:2c:ee:9e:84:07:7a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e3ba4dbba523d5b0dc989203bfd69648d1d4e66
Validity
Not Before: Jan 1 08:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61dcd4196851a5bd75bca575a84f2bfbfa12ca93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cf:24:94:84:b1:18:d3:42:39:01:17:67:ff:
5b:7c:7d:9b:89:c4:6b:5b:8e:58:e4:9b:1e:cc:02:
bd:07:5b:9e:1c:43:6b:67:da:3b:cd:96:6c:4b:8a:
e1:4e:24:86:92:be:cc:46:39:52:5c:e7:f7:bf:d7:
17:19:4c:5f:ed:70:ee:00:65:29:83:8c:dc:0f:a5:
6f:26:23:f9:04:9c:fe:4a:56:26:36:68:ca:f8:f8:
69:7f:91:f5:99:13:a9:a7:c3:94:ee:75:e5:8b:69:
38:86:0f:c6:65:1e:21:1c:23:1a:37:7c:07:33:68:
1c:fd:07:1e:a9:07:01:f3:60:c4:00:29:08:41:4b:
81:e9:2a:16:ad:dd:4e:9d:e1:4d:3c:55:27:1b:c5:
d7:db:3d:40:66:f0:31:f0:41:18:51:52:d0:ec:e8:
dc:21:7e:bf:f1:f1:2d:15:d3:ac:68:ca:70:b3:cf:
10:fb:3c:d9:ca:61:bd:b2:3b:54:92:f8:4a:33:7f:
0b:cd:be:9d:4c:fb:01:ab:9b:9d:57:7e:3c:68:56:
11:c2:e3:24:10:ed:f6:80:a4:23:f4:5c:79:ce:e8:
f1:fa:b4:89:ee:8c:05:a0:f8:29:f5:af:e2:fa:90:
bd:88:ae:d1:3c:64:5b:e6:4f:36:a1:5b:0b:08:a4:
40:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DC:D4:19:68:51:A5:BD:75:BC:A5:75:A8:4F:2B:FB:FA:12:CA:93
X509v3 Authority Key Identifier:
keyid:1E:3B:A4:DB:BA:52:3D:5B:0D:C9:89:20:3B:FD:69:64:8D:1D:4E:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hjuk27pSPVsNyYkgO_1pZI0dTmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/YdzUGWhRpb11vKV1qE8r-_oSypM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d2548c-bd6a-4395-95fb-12e20c875c53/1/Hjuk27pSPVsNyYkgO_1pZI0dTmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a14::/48
Signature Algorithm: sha256WithRSAEncryption
26:c5:c4:36:af:8e:39:5e:e7:f1:82:ed:f1:32:2b:f1:5a:be:
e8:12:33:53:bb:5f:e8:97:3d:9f:5e:48:62:1b:13:4c:ee:10:
4b:cf:87:e6:a2:b8:e4:d5:b0:83:f3:73:1b:a2:4b:63:06:23:
b8:0f:f0:65:b5:64:ca:ce:1f:f5:51:0e:7f:b7:ef:19:7e:41:
22:4d:15:af:c9:6e:31:ab:63:6c:0f:1b:f2:15:72:8d:87:32:
ce:15:c7:7b:18:59:89:39:da:0d:80:35:33:1e:c8:67:6c:5a:
84:eb:9d:ed:52:83:ba:78:f5:53:b3:94:b9:73:8b:01:16:20:
cd:a7:bc:a6:b4:de:21:45:90:e4:02:e6:a6:42:7b:6b:4a:5c:
5f:95:48:d3:c8:9e:70:8c:f5:c5:5d:f3:5d:ad:a5:f1:b5:e2:
ea:d1:f7:05:41:e3:54:05:49:f1:63:ad:51:6d:dc:78:55:4b:
e4:b5:85:c8:d0:ba:80:52:cd:9f:a2:d2:e6:a2:1a:e9:a8:fd:
5c:d5:e2:0d:d4:d4:f1:0f:e4:09:88:95:42:0d:ef:40:62:c4:
54:6a:3e:e7:7f:72:cb:1c:42:61:00:44:e2:b8:29:28:27:d2:
df:d4:f0:29:11:d2:25:90:e9:fd:f8:48:8b:25:fc:4c:41:39:
ac:e2:c2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:51 2024 by rpki-client on console-fra.rpki-client.org