Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/HQoeemFOGDgwo1j4hNrm7f-mCHQ.roa
File: HQoeemFOGDgwo1j4hNrm7f-mCHQ.roa (raw, json)
Hash identifier: ISH2DKDc48nTVzIcDCa12+LY+4gDm9eO/RsWrx+lCMA=
Subject key identifier: 1D:0A:1E:7A:61:4E:18:38:30:A3:58:F8:84:DA:E6:ED:FF:A6:08:74
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0188A00AF3E8A4E97BC4436EA8FB7F1AD50E
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/HQoeemFOGDgwo1j4hNrm7f-mCHQ.roa
Signing time: Fri 09 Jun 2023 12:04:12 +0000
ROA not before: Fri 09 Jun 2023 12:04:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203333
IP address blocks: 2a0d:2585::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:0a:f3:e8:a4:e9:7b:c4:43:6e:a8:fb:7f:1a:d5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jun 9 12:04:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d0a1e7a614e183830a358f884dae6edffa60874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d6:9e:99:c9:fc:09:63:74:23:00:10:b3:af:
40:e8:85:42:df:22:07:8a:4e:9d:98:ef:21:71:18:
03:9e:bf:58:b1:95:77:f6:0e:0b:65:dd:fc:c6:68:
ea:8f:42:45:6b:f5:61:f0:9e:ec:8a:a6:c0:1f:5d:
23:d6:5e:a2:1e:b7:54:0d:29:54:bf:46:3d:a5:61:
18:e1:4a:72:b6:11:84:09:c3:62:24:7b:8b:7a:76:
b1:02:f1:21:06:6e:f6:05:84:92:90:24:aa:1d:40:
ea:32:c1:13:85:a5:2d:70:cf:67:fd:3c:21:62:7e:
4c:86:a4:a2:87:42:7c:2c:34:e9:0a:43:93:c4:8c:
14:2c:74:e2:b4:6f:6c:69:d8:d1:ee:26:2a:f5:5a:
57:8c:2d:92:51:63:1d:1f:37:48:13:15:31:23:04:
f4:34:a6:a2:6a:5a:28:b7:b1:35:a5:aa:f5:e7:95:
9e:ca:8a:75:42:24:57:8e:3a:02:ed:81:13:d7:b6:
63:22:27:57:dc:2e:87:a5:20:1f:36:04:fb:0f:c4:
fe:68:42:fc:c0:f4:c1:56:51:2c:63:78:a4:ab:d6:
fc:04:f3:47:44:0a:b7:45:95:ea:bb:6c:9a:bb:82:
bd:a2:b6:69:fd:9b:d0:6b:15:0c:32:d7:43:b1:b0:
93:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0A:1E:7A:61:4E:18:38:30:A3:58:F8:84:DA:E6:ED:FF:A6:08:74
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/HQoeemFOGDgwo1j4hNrm7f-mCHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2585::/32
Signature Algorithm: sha256WithRSAEncryption
32:78:65:a0:52:57:00:0c:ef:57:66:2e:63:3d:5e:1a:48:fa:
bf:58:18:33:2e:42:70:8e:52:f7:a3:ec:dd:bf:90:f8:b6:0e:
3b:3a:30:fc:01:4e:57:54:24:fb:6d:26:60:4a:82:3d:17:a9:
3f:e2:57:76:a5:69:d4:cc:26:57:66:d5:0b:0c:b4:9c:c1:b8:
3b:6e:42:bb:62:c8:ed:ad:5a:9a:0d:0e:83:4e:29:08:33:fd:
e2:5b:bf:57:61:39:73:9c:1b:7a:53:78:a8:65:19:d2:c7:7a:
14:c2:a4:bc:7d:a6:14:15:02:26:12:fe:9a:54:a4:ef:50:a5:
62:75:7e:73:67:98:ee:c0:c9:a9:0a:45:45:e5:72:bf:d6:06:
9e:e1:64:39:4c:33:0d:c6:0d:69:ee:b3:32:96:51:f0:7a:eb:
37:85:15:bb:32:8b:e6:09:5a:6d:2e:29:a4:8d:67:f8:bb:f7:
6f:8a:7b:e9:a0:74:8f:85:3b:de:90:84:e6:ab:9c:0b:2b:9c:
a2:98:20:44:15:a1:9b:1e:b6:ca:ed:f0:b3:45:f3:4b:0b:8c:
bd:90:70:0f:8f:6e:6d:8d:5f:85:9c:9d:8b:0b:31:42:ce:45:
69:9a:86:14:f1:b7:9d:5b:f9:fc:a0:d8:81:c4:28:b6:f0:1a:
a3:9b:b7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:35 2024 by rpki-client on console-ams.rpki-client.org