Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Kf8gFWf0F8pSblmaiCCrWKTNZ6c.roa
File: Kf8gFWf0F8pSblmaiCCrWKTNZ6c.roa (raw, json)
Hash identifier: plgxA4SaakhN5KVfLoKCRVS+7GP9UYDIkPStQorlC+w=
Subject key identifier: 29:FF:20:15:67:F4:17:CA:52:6E:59:9A:88:20:AB:58:A4:CD:67:A7
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C416F638B63B34DB175D7B9BBBA93D5
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Kf8gFWf0F8pSblmaiCCrWKTNZ6c.roa
Signing time: Sun 01 Jan 2023 07:35:05 +0000
ROA not before: Sun 01 Jan 2023 07:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208985
IP address blocks: 2a0d:2682::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:6f:63:8b:63:b3:4d:b1:75:d7:b9:bb:ba:93:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ff201567f417ca526e599a8820ab58a4cd67a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3c:19:2d:1c:c8:7a:e4:ff:58:b0:6c:d1:c6:
8e:cd:78:3e:02:0e:fa:9b:46:39:80:e6:f2:cc:6b:
5b:dd:79:ce:96:b7:74:fd:98:7e:30:03:6a:9d:e6:
0d:a2:20:5d:b6:b2:b8:bc:78:d5:25:ad:14:9b:e3:
c6:8f:30:1d:22:61:e7:f7:e8:59:af:13:27:b3:e9:
eb:f0:71:53:ea:66:1b:a9:07:7e:9e:1f:bd:5e:7f:
88:94:c1:6b:65:ed:a6:cc:5a:fc:62:14:87:ba:a0:
e5:5f:28:cf:fe:4e:4a:20:76:63:45:14:2f:6e:af:
0f:02:a0:87:12:36:55:2c:3b:42:96:01:44:8d:e5:
8c:cf:5e:c5:44:da:6c:c4:57:b4:44:c4:a7:ae:5b:
ed:6e:24:77:5c:21:51:8f:d1:11:04:1b:82:a8:74:
86:6a:e9:68:50:8a:8e:79:20:d4:ea:d9:76:5c:cb:
c5:78:6a:aa:31:47:36:93:17:1f:a5:c9:13:08:90:
89:be:2b:22:32:1e:7f:c5:d9:87:23:b5:ac:ae:6c:
33:62:55:79:b2:b1:8d:6c:6e:e9:3f:43:8e:93:52:
47:23:80:23:97:34:f9:a0:79:bb:1e:04:d3:a0:c3:
b6:88:31:9e:02:8b:f7:5d:12:fe:79:33:fe:6f:96:
ef:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FF:20:15:67:F4:17:CA:52:6E:59:9A:88:20:AB:58:A4:CD:67:A7
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Kf8gFWf0F8pSblmaiCCrWKTNZ6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2682::/32
Signature Algorithm: sha256WithRSAEncryption
af:40:31:f6:11:af:50:f9:00:6b:dd:3b:70:6a:1d:8f:8f:5a:
3b:bf:a7:e3:3e:e6:20:90:29:49:2d:0f:5c:3f:d7:de:51:b5:
ae:cc:70:d4:07:cf:b4:b2:dc:69:ba:63:fd:29:b9:43:61:67:
7f:31:6c:24:c1:cf:ae:74:2c:2d:e6:2a:e2:38:87:b4:cf:7d:
5e:ab:6c:ea:d0:db:43:ad:43:83:88:4b:f9:21:aa:d6:b6:9d:
bd:03:c9:b5:6e:0a:98:84:6d:3a:4b:be:9f:07:d8:2c:5e:08:
1c:7c:38:2e:03:e0:95:5b:ff:93:6a:bd:cc:af:a4:9b:61:b2:
49:f3:1c:d4:13:18:30:69:a6:33:fd:c2:2a:2b:04:f9:62:4b:
af:44:54:1e:5a:59:d5:96:8d:7e:82:09:8b:10:ae:20:67:43:
d6:b0:bf:4a:59:4a:58:21:78:62:d8:74:d2:82:8f:db:cb:82:
3c:0d:07:ab:f6:01:15:01:67:bf:f1:45:99:f7:11:13:e4:c4:
ae:53:13:88:03:4f:3f:f7:ad:4c:dc:30:d8:dc:62:4e:28:90:
f6:70:90:0b:8d:d2:22:54:9a:3c:4e:b7:6f:d9:f6:e5:44:3c:
ef:9b:71:58:07:e3:c0:a6:0e:b6:ec:82:0e:f0:ae:70:1a:de:
f9:43:f7:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:20 2024 by rpki-client on console-fra.rpki-client.org