Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/yOUskKgXw4Hu2-WcAJ7Mwk4Ct9Q.roa
File: yOUskKgXw4Hu2-WcAJ7Mwk4Ct9Q.roa (raw, json)
Hash identifier: uWuTo/kD/Xm30xIImG7b9lhaecqrVyf66O9IfdXxnlU=
Subject key identifier: C8:E5:2C:90:A8:17:C3:81:EE:DB:E5:9C:00:9E:CC:C2:4E:02:B7:D4
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 0185DFF81D846E950918FF4B6D6CC8F78405
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/yOUskKgXw4Hu2-WcAJ7Mwk4Ct9Q.roa
Signing time: Mon 23 Jan 2023 18:50:57 +0000
ROA not before: Mon 23 Jan 2023 18:50:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201380
IP address blocks: 2a10:59c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:f8:1d:84:6e:95:09:18:ff:4b:6d:6c:c8:f7:84:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Jan 23 18:50:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8e52c90a817c381eedbe59c009eccc24e02b7d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:65:08:9f:65:0b:0b:13:3e:79:38:91:8f:a6:
42:f1:cf:24:bd:dc:36:4b:4c:10:ce:e3:f7:ff:27:
d5:12:e1:08:10:af:01:32:b4:54:9c:93:27:96:80:
1f:3b:7c:5d:bc:71:70:e7:37:0b:bf:98:63:dc:6e:
7d:bc:bd:5b:ec:32:dd:6b:81:91:1c:e8:89:06:bd:
06:0b:a1:5c:32:18:9d:b6:2d:91:b2:e4:4e:8e:78:
31:d1:6d:d4:71:ab:fa:c8:ad:12:30:21:da:01:10:
dd:be:bc:a4:92:bb:c9:95:58:ab:d8:67:64:0e:25:
6a:a9:a9:d9:ac:58:b4:04:27:99:5e:ab:e9:fd:e3:
76:71:97:ec:de:d2:73:33:c6:5c:c4:28:32:c2:49:
d3:d6:c4:78:b0:12:9e:25:44:4f:81:c2:4d:8b:83:
53:ff:28:a4:a4:2e:2a:36:c7:9a:38:aa:ea:dc:6e:
5f:37:66:e6:9c:c3:1e:ab:a3:7a:ca:e4:84:aa:ba:
62:99:25:5b:21:92:63:59:cf:90:69:8a:ce:25:42:
91:6f:99:b7:26:fd:f4:0a:f1:61:5b:08:76:66:34:
34:01:5d:82:b7:5e:fe:f6:42:07:90:93:1f:e0:6b:
b3:89:2c:f5:d6:a6:86:69:47:7a:e8:25:1b:be:6e:
b1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E5:2C:90:A8:17:C3:81:EE:DB:E5:9C:00:9E:CC:C2:4E:02:B7:D4
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/yOUskKgXw4Hu2-WcAJ7Mwk4Ct9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:59c0::/32
Signature Algorithm: sha256WithRSAEncryption
1b:a7:19:7b:6b:07:cd:00:23:f0:e8:ad:05:f9:f0:23:6d:25:
8d:b7:05:37:54:49:0d:81:6c:18:9d:6c:bd:94:f5:66:06:d0:
43:36:83:c3:6a:14:73:35:6a:e5:60:e8:08:8b:91:dd:05:bf:
54:b2:d6:6c:da:c1:33:d2:e9:f0:5f:e1:a9:1b:fd:07:7b:a1:
73:93:d8:e9:3c:7d:47:40:14:40:7b:49:18:bb:07:5c:b0:82:
69:5c:fa:e2:1b:ee:18:cc:d6:b3:52:c3:dd:aa:df:50:73:f3:
d0:21:fe:53:03:5c:d4:ac:6b:59:dd:74:4a:b9:f0:55:1f:4e:
f3:73:09:a5:f8:35:97:2d:e8:b8:a9:c4:9e:11:eb:c6:24:9f:
cf:87:d5:ab:ce:11:35:6d:6a:6d:f9:2b:d9:43:21:fe:f5:6c:
a8:24:8c:ce:91:62:8d:00:79:cc:97:7f:33:2b:94:1c:53:6f:
5d:ab:5b:1e:68:df:33:d9:e3:f9:99:31:64:59:ce:11:14:12:
49:81:c1:48:70:d0:d7:b6:32:39:ae:93:94:bb:01:17:97:a4:
41:27:1b:7b:2e:2a:52:d7:5d:ca:7d:d2:4a:f8:8d:3f:e1:58:
93:0d:a5:82:7d:b2:33:31:33:90:54:56:5b:39:d2:4e:39:c7:
bf:c3:c9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:06 2024 by rpki-client on console-ams.rpki-client.org