Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/IA0D-mWfNAgZyZuZmwfCkVomNqk.roa
File: IA0D-mWfNAgZyZuZmwfCkVomNqk.roa (raw, json)
Hash identifier: +wpRUHQc1RAPaXPkAxzA1/OJzA6eeBZW28EHILsaD70=
Subject key identifier: 20:0D:03:FA:65:9F:34:08:19:C9:9B:99:9B:07:C2:91:5A:26:36:A9
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C416448856A1334FA3031ECD360C1C4
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/IA0D-mWfNAgZyZuZmwfCkVomNqk.roa
Signing time: Sun 01 Jan 2023 07:35:02 +0000
ROA not before: Sun 01 Jan 2023 07:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141237
IP address blocks: 2a0d:2580:2000::/35 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:64:48:85:6a:13:34:fa:30:31:ec:d3:60:c1:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=200d03fa659f340819c99b999b07c2915a2636a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b7:ef:7a:1b:35:ca:0d:b4:41:b9:10:cf:52:
97:4e:6a:06:55:a8:8b:c4:ab:34:e4:f5:15:25:2c:
ab:18:ae:03:fa:ec:4c:7a:ad:44:c5:38:1b:11:a3:
d4:7c:e2:13:93:d6:13:40:31:75:c9:01:fa:c6:79:
8f:ef:2b:52:97:34:1c:1f:ee:3a:29:94:3b:ad:fc:
26:f2:0b:56:a4:60:49:4d:18:44:ea:40:68:96:45:
57:e7:e2:d0:8d:57:08:2b:1f:da:62:b9:0e:fc:39:
16:91:d0:f6:c6:d7:13:8a:19:35:d5:2c:fb:5b:75:
72:b7:8f:b4:b8:95:22:03:8a:2e:7d:b0:13:a4:33:
be:88:cf:89:00:e0:25:96:cc:f7:1e:e3:6c:7a:ab:
7c:ba:11:b2:42:41:59:9e:d0:e4:a9:84:81:cd:a6:
c7:93:86:13:3b:ab:b1:2f:78:33:23:dc:ad:12:e4:
d8:69:42:90:9c:7f:c0:29:bb:db:6c:eb:ad:1b:3e:
04:0e:23:97:66:2b:da:47:5d:ec:1b:df:60:fd:38:
80:7b:49:a1:c9:b0:1e:09:b1:10:bd:7f:99:6d:39:
49:02:92:bb:66:e5:79:fa:41:20:dc:ac:62:9e:4c:
af:0d:1d:28:02:be:58:fa:90:01:76:f3:88:78:05:
16:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0D:03:FA:65:9F:34:08:19:C9:9B:99:9B:07:C2:91:5A:26:36:A9
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/IA0D-mWfNAgZyZuZmwfCkVomNqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2580:2000::/35
Signature Algorithm: sha256WithRSAEncryption
1a:ee:b0:66:5a:62:41:ca:ef:36:c6:55:8e:5c:0e:d0:01:48:
84:10:9a:03:2c:13:49:3b:be:a9:af:5f:14:49:f9:85:37:63:
53:77:87:22:a3:a0:0e:87:f0:30:dc:cb:7a:ee:01:ab:9a:33:
7d:e1:95:6b:8b:31:98:7e:0c:c7:69:5a:0a:65:51:f7:49:47:
d1:df:f5:99:bf:04:93:20:89:73:e0:1d:d8:b4:99:61:63:c6:
14:30:e4:21:6b:66:85:df:a7:4e:39:4f:dd:1f:da:33:28:05:
d5:cd:0e:73:49:7a:11:cd:7d:ab:73:98:0d:14:3b:de:c6:82:
ac:05:11:79:73:a3:a7:7f:8e:e5:74:93:49:fc:ba:5c:9a:d2:
6b:7b:61:aa:a7:da:dd:fe:f2:77:8e:63:6a:bf:ab:91:39:6d:
7f:76:b5:62:47:67:82:a6:21:f6:b3:24:fa:bc:e1:58:9c:3a:
d5:08:7e:54:38:2d:bc:14:0f:f5:b5:22:b7:23:a5:08:0a:9f:
68:60:df:16:d2:04:17:00:63:69:6f:5a:ef:87:f1:f3:f0:7d:
f7:09:51:d1:6b:4d:ee:8c:6d:05:04:55:e4:de:5f:3d:92:d0:
2e:25:a3:5b:64:72:e7:24:9a:84:5c:cc:a9:e2:26:b6:2e:ec:
1d:45:c9:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:35 2024 by rpki-client on console-ams.rpki-client.org