Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/YoT-mIvTR1ZBPbLKDMJTB0JsA5A.roa
File: YoT-mIvTR1ZBPbLKDMJTB0JsA5A.roa (raw, json)
Hash identifier: OdRk2wvSiB/8sciWOvSXyXtZ1lPP28zG9LA0CSXLr7A=
Subject key identifier: 62:84:FE:98:8B:D3:47:56:41:3D:B2:CA:0C:C2:53:07:42:6C:03:90
Certificate issuer: /CN=a566d8337776c98746bd231e69e185db2a9a5be2
Certificate serial: 0185EAF611F9B932812EC8FD1CE34FFF8A57
Authority key identifier: A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/YoT-mIvTR1ZBPbLKDMJTB0JsA5A.roa
Signing time: Wed 25 Jan 2023 22:04:33 +0000
ROA not before: Wed 25 Jan 2023 22:04:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204982
IP address blocks: 2a0e:3bc0:fa00::/42 maxlen: 42
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ea:f6:11:f9:b9:32:81:2e:c8:fd:1c:e3:4f:ff:8a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a566d8337776c98746bd231e69e185db2a9a5be2
Validity
Not Before: Jan 25 22:04:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6284fe988bd34756413db2ca0cc25307426c0390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c7:2a:06:f4:6a:65:3b:95:33:75:a9:9d:1a:
fc:de:d2:99:a0:01:0b:85:02:26:99:9d:0c:93:e6:
3d:6e:6a:ef:8b:1f:46:3c:83:2e:38:f9:60:e0:76:
32:ae:63:ae:15:34:3c:9a:67:b8:c9:f8:1e:f3:1e:
a2:dc:f3:4e:e8:76:2a:2a:fa:6a:45:d5:08:ad:4a:
24:dd:32:37:bb:90:44:8c:ca:34:4e:bb:a6:7d:e6:
b6:fc:97:4d:07:cc:31:87:c5:cb:36:19:0c:b2:42:
d6:9a:79:a5:1d:2b:88:95:a9:9e:da:9e:69:da:13:
62:d1:f5:54:3a:9a:c3:d5:eb:70:5a:f0:4a:83:43:
69:61:a8:fa:6b:bc:f4:49:80:41:d4:6a:3e:09:29:
71:e2:32:10:16:3e:37:94:0d:63:7c:c2:02:51:1c:
e8:33:0c:a2:4a:d9:e3:50:7a:57:dd:ef:5d:43:ba:
df:50:33:33:78:e1:46:92:2d:9f:3c:91:c1:c7:e1:
bd:9b:5a:13:85:ed:f8:16:84:7e:f0:e3:12:2f:ad:
6b:a4:9a:2a:5c:f6:88:f3:bf:56:fb:12:15:c1:88:
8f:e0:88:c3:46:66:39:ae:ce:fd:a6:aa:93:47:6a:
46:c7:56:d0:9a:fd:79:50:a2:88:48:cf:e7:16:dc:
93:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:84:FE:98:8B:D3:47:56:41:3D:B2:CA:0C:C2:53:07:42:6C:03:90
X509v3 Authority Key Identifier:
keyid:A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/YoT-mIvTR1ZBPbLKDMJTB0JsA5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3bc0:fa00::/42
Signature Algorithm: sha256WithRSAEncryption
9a:80:fa:39:26:b3:c9:73:48:c3:c8:d3:f8:1f:97:09:45:b0:
e0:5f:b4:32:12:af:54:12:f8:5a:a9:98:c0:38:1d:89:fe:37:
ca:bd:47:ed:0a:e3:2c:98:1a:5c:7d:3d:c6:00:00:b8:69:24:
0f:64:f4:34:df:a3:07:c0:4e:58:ed:c6:ca:6b:72:2b:59:eb:
eb:da:e7:ef:49:ef:be:96:07:54:c5:46:68:01:c2:04:aa:3b:
47:b3:d3:fc:1a:68:15:ec:eb:30:a7:59:ca:c6:8f:50:6b:78:
04:7f:69:58:11:79:fb:6a:75:8a:69:cd:7e:57:ec:6b:30:08:
91:b4:8e:28:c0:8f:90:9c:3a:bf:07:23:61:53:2c:89:43:a9:
fa:d0:f1:11:ae:75:51:36:57:43:90:9b:84:5d:ef:e0:dd:6a:
3f:2f:1a:d8:59:5a:67:88:c7:42:9a:5c:bc:a6:11:39:1e:50:
23:d4:91:9e:6a:7f:24:f9:59:e3:f2:a4:2d:f5:b4:5a:a5:95:
34:27:45:af:a8:6e:75:f0:5c:d9:eb:bd:65:30:a2:f3:f1:54:
83:2d:4e:35:24:50:34:99:d1:9b:34:87:44:c4:28:a8:b9:fe:
52:ca:03:f2:98:a8:2e:d5:bd:f2:c0:b5:98:82:6c:54:f7:68:
d3:2a:db:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:08 2024 by rpki-client on console.sobornost.net