Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/YBbohjvytgs0vlgoqOunAjsn42A.roa
File: YBbohjvytgs0vlgoqOunAjsn42A.roa (raw, json)
Hash identifier: 5dTTIwAf5XyFvuk0zX2GPG2MJYZ4RE593hyBEZP+th8=
Subject key identifier: 60:16:E8:86:3B:F2:B6:0B:34:BE:58:28:A8:EB:A7:02:3B:27:E3:60
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 01856C0A53424B419EF11E0E683FB748650F
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/YBbohjvytgs0vlgoqOunAjsn42A.roa
Signing time: Sun 01 Jan 2023 06:34:54 +0000
ROA not before: Sun 01 Jan 2023 06:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210541
IP address blocks: 2a0e:3303::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:53:42:4b:41:9e:f1:1e:0e:68:3f:b7:48:65:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 06:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6016e8863bf2b60b34be5828a8eba7023b27e360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d1:c8:43:e8:af:c1:1c:8f:df:2f:53:68:f5:
dc:5d:c5:db:91:9c:b4:b9:11:85:36:39:b4:85:94:
63:b8:73:60:f5:d0:24:66:26:79:e7:1e:17:63:14:
5e:c9:e9:18:54:29:7e:54:2c:0b:30:5b:4b:33:56:
cf:4d:e5:e7:bf:a2:18:d6:f0:a8:83:b4:0e:54:17:
eb:d1:57:10:c3:73:ff:f0:87:36:ee:23:d7:95:47:
fc:95:ba:53:7b:6e:eb:f4:35:52:e9:d6:9c:bf:e5:
32:fb:34:22:59:47:53:e1:b4:86:07:b8:a9:ad:5c:
04:47:a7:ba:73:2b:de:85:df:64:84:5d:f8:40:77:
ac:23:26:b0:9e:f0:63:f6:4b:72:bf:7b:4c:29:69:
d9:a0:84:b3:c6:99:e7:c5:ff:cf:82:14:ce:6d:4f:
cd:c2:82:a3:78:00:0b:6c:69:6c:05:e3:02:ac:19:
50:d6:c1:94:22:2e:86:3b:95:8b:f5:ef:b9:07:a3:
7f:83:61:28:96:e3:32:71:94:d8:be:3b:e2:71:60:
0f:0d:75:19:52:de:08:d5:81:a5:30:ad:62:4b:86:
10:5f:78:62:7a:af:4a:30:b1:bb:7b:ef:5b:81:5b:
82:6b:3a:a2:f7:3b:07:d8:a2:2c:41:2d:90:6f:dd:
64:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:16:E8:86:3B:F2:B6:0B:34:BE:58:28:A8:EB:A7:02:3B:27:E3:60
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/YBbohjvytgs0vlgoqOunAjsn42A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3303::/32
Signature Algorithm: sha256WithRSAEncryption
83:94:1e:78:21:46:38:ac:28:ea:f3:88:d7:a0:43:2e:82:33:
b1:48:ac:b2:b9:be:07:2e:63:e2:ba:a9:99:53:89:e7:43:08:
07:8f:c5:86:d7:64:e3:cf:02:27:98:1f:a3:06:9d:62:1d:77:
8f:a8:f4:f6:e0:ce:cd:f2:28:6f:25:97:bb:c1:98:54:22:1f:
dd:6e:cc:84:b0:a4:f9:39:f2:e4:54:89:c9:a5:b7:4d:82:27:
c7:33:a6:24:de:20:7b:51:24:8e:cb:72:00:41:08:2f:23:56:
12:ae:f9:04:11:28:10:f1:a0:c9:5c:e5:35:e2:38:8b:bf:c5:
d6:75:c5:6a:7c:c9:d3:03:46:2d:39:6f:e3:26:e8:b2:44:03:
3f:4a:f1:6b:42:ec:9d:16:88:15:7d:a0:de:fe:2a:61:5f:96:
b4:2f:17:87:98:00:6d:f9:a0:c6:48:d0:26:65:59:2b:7a:c3:
9e:0c:22:85:d4:6f:ed:33:ce:f2:d9:cb:6e:03:92:56:01:23:
20:0d:e5:98:dc:25:a3:e2:17:c3:ce:c8:e2:3d:09:35:21:c6:
39:de:c7:62:7c:08:dd:a9:76:e1:62:e7:df:fe:76:3d:20:b7:
49:bf:31:d2:a9:23:06:91:e4:2a:5f:74:4b:f6:54:3d:81:cf:
65:11:69:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:52 2024 by rpki-client on console.sobornost.net