Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/1ae2b0-d93a-463c-a6b9-827b643af3d7/1/yjRdexS30O-DLoULlc-ctupyk34.roa
File: yjRdexS30O-DLoULlc-ctupyk34.roa (raw, json)
Hash identifier: 3ayL+jsRLl/MaMw/qesZNWaxCx3MhwAbDv/LFjXFhfI=
Subject key identifier: CA:34:5D:7B:14:B7:D0:EF:83:2E:85:0B:95:CF:9C:B6:EA:72:93:7E
Certificate issuer: /CN=ccfa88c22b1e7c52de71a37643dea3c3fcdd4954
Certificate serial: 018C81AECE952EB7F5D78E5AF84839A9BCAA
Authority key identifier: CC:FA:88:C2:2B:1E:7C:52:DE:71:A3:76:43:DE:A3:C3:FC:DD:49:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zPqIwisefFLecaN2Q96jw_zdSVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/1ae2b0-d93a-463c-a6b9-827b643af3d7/1/yjRdexS30O-DLoULlc-ctupyk34.roa
Signing time: Tue 19 Dec 2023 10:46:06 +0000
ROA not before: Tue 19 Dec 2023 10:46:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15435
IP address blocks: 2001:67c:2c24::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:81:ae:ce:95:2e:b7:f5:d7:8e:5a:f8:48:39:a9:bc:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccfa88c22b1e7c52de71a37643dea3c3fcdd4954
Validity
Not Before: Dec 19 10:46:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca345d7b14b7d0ef832e850b95cf9cb6ea72937e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c2:42:b0:35:b5:f7:ad:8d:9c:c6:23:a5:ea:
fa:b1:5a:67:99:65:77:d3:15:98:a9:ca:7d:2a:6f:
08:38:60:60:07:ea:58:e9:97:2a:6c:64:55:b3:2d:
f8:e1:b3:d6:8c:78:aa:aa:31:a3:5c:84:32:d3:bb:
57:af:fe:16:a1:2f:62:43:ae:4c:19:ab:e4:f8:84:
cb:10:b6:20:e7:8f:de:a3:da:88:9e:3c:8e:dc:f5:
5d:f4:dd:a2:4d:2e:9f:4a:db:1f:88:6a:08:f1:af:
ee:f9:b7:c8:ca:48:81:19:2b:49:d5:07:4b:c9:b4:
ab:a8:d7:91:07:7d:84:33:1c:cb:24:cc:13:46:56:
b9:b9:5b:90:83:e7:fd:8a:30:0e:66:fd:1a:cf:fe:
53:10:b1:8b:e9:91:1e:51:e7:0a:b8:7b:fc:2f:65:
23:fd:ec:21:a3:9d:3d:ed:e9:4a:52:bc:7c:cd:d0:
b4:b7:b7:64:63:0e:49:3d:98:ba:d7:5b:f7:47:92:
52:fe:b8:1f:2a:d3:07:01:20:56:c3:5d:cd:70:07:
b9:dd:d0:c4:81:f7:0a:a0:21:ba:72:ca:c0:6b:ea:
b3:20:81:36:58:48:b3:2f:3d:7e:62:17:64:17:32:
01:cf:4b:12:f8:09:ec:d3:93:fc:1c:cf:09:ed:77:
78:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:34:5D:7B:14:B7:D0:EF:83:2E:85:0B:95:CF:9C:B6:EA:72:93:7E
X509v3 Authority Key Identifier:
keyid:CC:FA:88:C2:2B:1E:7C:52:DE:71:A3:76:43:DE:A3:C3:FC:DD:49:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zPqIwisefFLecaN2Q96jw_zdSVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/1ae2b0-d93a-463c-a6b9-827b643af3d7/1/yjRdexS30O-DLoULlc-ctupyk34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/1ae2b0-d93a-463c-a6b9-827b643af3d7/1/zPqIwisefFLecaN2Q96jw_zdSVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c24::/48
Signature Algorithm: sha256WithRSAEncryption
40:9e:0d:3f:82:37:4f:20:82:dd:76:d4:1c:b8:2c:1f:1a:5f:
d1:f5:80:4b:1b:5c:c7:14:a7:7b:3e:eb:e7:4b:e0:65:c1:64:
7e:c6:3e:6b:ba:39:b5:7e:f5:93:9b:52:ab:03:0e:99:2b:57:
bd:6d:e0:a3:dc:12:05:cb:70:6b:18:f7:5e:46:3b:da:78:60:
4e:0d:d0:6e:06:85:d5:94:79:0d:99:0d:14:61:1b:b4:7e:f7:
33:0d:bd:27:e1:0e:22:42:96:4e:42:fa:03:d4:04:6f:db:b2:
47:02:07:8c:98:c0:c5:6f:20:7a:5d:23:53:bc:b3:f9:75:cf:
e1:ea:ef:20:cb:31:79:69:21:ea:fc:79:f8:cb:71:ad:5a:2f:
48:c4:ca:46:c7:30:17:8f:c2:32:11:90:4b:3f:ef:1f:e0:a5:
a1:1a:f9:48:dd:73:9a:38:67:1f:a3:d7:27:f6:e0:7d:13:ab:
47:15:c4:80:33:24:7c:2a:1c:69:3d:ce:4d:c2:56:88:65:ea:
10:b3:94:2b:1e:7f:31:09:4d:b7:7a:fb:f1:7e:f7:4d:64:7b:
57:0f:f4:94:40:1e:09:4a:29:07:d9:ee:60:73:0b:56:9c:0f:
e4:6e:c3:8f:79:99:66:25:a8:36:d0:f0:8c:37:0f:7c:b0:e4:
52:95:61:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:50 2024 by rpki-client on console-fra.rpki-client.org