Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/jYdIBSAbBhLQnHLAMJWS-C8h_zs.roa
File: jYdIBSAbBhLQnHLAMJWS-C8h_zs.roa (raw, json)
Hash identifier: DbLRQyg9vqfS7hjFEa3cAdL0FoQNjKxxkQwenT1F2FM=
Subject key identifier: 8D:87:48:05:20:1B:06:12:D0:9C:72:C0:30:95:92:F8:2F:21:FF:3B
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 0189DCB8660D2B9E00FF44C9B8ACDE003C9D
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/jYdIBSAbBhLQnHLAMJWS-C8h_zs.roa
Signing time: Wed 09 Aug 2023 23:53:39 +0000
ROA not before: Wed 09 Aug 2023 23:53:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48925
IP address blocks: 2a13:1500:68::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:dc:b8:66:0d:2b:9e:00:ff:44:c9:b8:ac:de:00:3c:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Aug 9 23:53:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d874805201b0612d09c72c0309592f82f21ff3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b0:27:ac:17:c6:c4:bb:b7:bc:72:ee:75:17:
08:70:21:0a:c6:4d:f5:b9:99:58:39:c6:53:0d:5b:
86:4d:5b:c4:ab:67:a5:70:63:fe:a7:f8:cd:8f:70:
c9:6a:0d:ba:e9:cd:8c:bf:a8:73:94:5c:af:26:6f:
df:65:48:eb:9d:c7:51:7f:d5:98:d1:3e:ff:75:9a:
dd:3a:3c:38:5a:bc:eb:1c:c7:03:5f:cb:d3:12:05:
f2:48:0c:86:e9:ab:6d:02:c1:c2:55:7c:45:1a:c1:
c9:1f:ac:75:08:b0:06:4c:3f:15:02:c5:38:95:4a:
29:31:fc:ac:68:72:82:36:06:bb:da:db:b1:23:72:
a8:a8:7c:f8:61:4b:b8:9c:13:37:17:50:8d:ae:f5:
6b:8f:68:47:16:e3:d8:e1:01:55:98:53:34:0f:98:
5f:02:0f:93:9f:bc:91:26:7d:76:8a:15:04:cc:bc:
cf:3b:bf:52:4e:4d:a6:9f:5c:41:e0:a1:de:47:47:
c5:de:84:a8:73:a7:4d:f5:a6:a3:85:70:d1:cd:bb:
46:b7:7a:1d:12:56:eb:88:ef:b2:df:5a:7f:83:f9:
8c:b2:69:a8:69:0a:39:cc:2d:75:b3:97:41:74:b6:
63:0f:d9:d3:6f:d8:67:41:47:78:08:40:3d:1c:0d:
e3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:87:48:05:20:1B:06:12:D0:9C:72:C0:30:95:92:F8:2F:21:FF:3B
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/jYdIBSAbBhLQnHLAMJWS-C8h_zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1500:68::/48
Signature Algorithm: sha256WithRSAEncryption
3f:d3:db:88:8f:b8:e8:24:11:20:d0:f3:89:49:94:bc:e8:a4:
a2:e3:ef:8f:45:c2:a3:8f:3b:f9:a7:56:98:8d:c4:19:1a:d7:
1f:9c:6b:74:fb:92:b1:c9:26:3b:4e:12:1e:d5:c3:a4:7b:8f:
02:dd:da:5e:a9:2c:8f:82:1b:2e:9a:50:46:20:6d:94:22:58:
62:c8:60:d9:04:2f:15:d6:55:fd:01:54:25:aa:f5:7a:cc:b1:
ab:40:04:b7:72:bb:7b:9b:cd:a1:c5:01:28:8e:70:39:ff:02:
d7:0c:f3:74:ad:81:47:e1:2b:e8:9a:1a:d0:8f:62:0c:f9:c3:
7f:44:a9:bf:80:d8:34:42:8b:6f:f5:ae:c7:7d:8b:29:02:36:
4d:f3:54:8b:e2:b3:4e:c5:59:dc:3a:76:42:59:ca:1a:88:91:
52:aa:8d:6e:79:5c:43:10:08:e3:87:22:cb:f5:1a:32:cd:c0:
e8:89:05:e2:de:70:00:fe:79:5b:25:5c:ca:58:e8:05:3b:38:
2c:ac:d1:2a:a2:2a:f6:8a:25:b6:61:be:de:3e:78:5e:30:fe:
21:26:16:2e:49:26:3f:0f:ba:8e:ea:3d:d1:29:04:e8:1e:f4:
51:37:a5:80:13:ef:83:35:8d:c9:de:dd:11:d2:e8:bd:6b:c6:
48:42:8b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:26 2023 by rpki-client on console.sobornost.net