Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Lg0U5Rb9vv-pPfmrCAlfi4S3r2k.roa
File: Lg0U5Rb9vv-pPfmrCAlfi4S3r2k.roa (raw, json)
Hash identifier: dPwS5A/6Z4mhotF0tO6qEG5wnTAvxFrVKmaSJuv64bs=
Subject key identifier: 2E:0D:14:E5:16:FD:BE:FF:A9:3D:F9:AB:08:09:5F:8B:84:B7:AF:69
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C41657D9A2373A7714234C4AC236CB4
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Lg0U5Rb9vv-pPfmrCAlfi4S3r2k.roa
Signing time: Sun 01 Jan 2023 07:35:03 +0000
ROA not before: Sun 01 Jan 2023 07:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142438
IP address blocks: 2a05:1087::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:65:7d:9a:23:73:a7:71:42:34:c4:ac:23:6c:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e0d14e516fdbeffa93df9ab08095f8b84b7af69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a9:7f:62:4c:98:af:f1:00:61:2e:89:4e:84:
6a:10:3b:b5:8f:d1:5f:0b:13:96:f9:89:20:f4:8a:
49:90:46:07:fb:66:20:1f:95:d3:6f:0e:49:7a:93:
d4:bb:67:e8:6b:ef:bd:a6:56:23:ec:d4:ff:cc:ff:
d0:c5:72:b8:b8:31:5d:ce:fb:1c:60:4d:1a:69:14:
24:3f:0d:ce:13:da:d2:62:83:09:e0:e1:1a:1a:d8:
ec:ce:ac:3a:5e:cc:5f:01:e4:14:0e:14:39:71:ab:
9a:e9:85:42:77:1d:df:62:c4:15:19:37:f7:b4:8c:
30:21:3c:a3:e2:be:77:91:64:e4:64:9e:fa:44:cc:
12:80:79:17:73:d2:17:82:51:b7:e9:a3:08:82:51:
e7:e8:66:b3:a8:e1:37:02:ec:e4:76:cd:a4:43:ee:
2f:17:cf:ff:92:e8:34:b3:b6:9e:a7:ff:f9:22:97:
45:25:ea:b7:f6:27:b5:00:a8:dd:22:c3:42:1e:77:
cd:51:77:05:41:aa:ff:e3:1d:eb:ec:da:57:27:59:
c9:a7:1c:b9:6b:14:40:2e:8e:85:8d:a2:57:f7:ab:
64:e1:17:a9:ee:8b:af:04:66:49:23:06:fc:f2:89:
8e:27:31:68:eb:44:0c:d0:6c:c9:47:2e:76:91:26:
94:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0D:14:E5:16:FD:BE:FF:A9:3D:F9:AB:08:09:5F:8B:84:B7:AF:69
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Lg0U5Rb9vv-pPfmrCAlfi4S3r2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1087::/32
Signature Algorithm: sha256WithRSAEncryption
1f:a0:6e:ae:ad:1f:70:ef:bc:8c:a2:3a:e9:cb:4c:41:1c:5e:
ad:af:e7:70:c9:e7:db:36:77:17:e2:b8:4e:fa:6d:f2:e6:5e:
4f:26:31:d0:c3:f6:f5:6b:44:8c:53:94:49:98:09:be:a1:7f:
f4:0f:c3:45:89:f8:83:3a:6b:24:4c:83:fc:3b:82:b7:d2:b0:
b1:4c:ac:b4:c0:8d:26:a5:81:5f:47:b5:0a:5a:8b:cd:e8:66:
a4:6d:31:bc:2e:3f:fa:5c:c2:32:3a:95:1c:16:21:39:32:c4:
26:b4:75:71:27:9b:0d:1f:4a:25:be:d6:ad:29:55:38:40:58:
07:ec:1c:bc:ad:b7:c8:5f:64:c9:3c:f0:25:d9:09:25:29:86:
93:88:35:57:36:1e:c5:f2:cc:62:77:f7:1a:c3:d1:6f:15:b2:
3c:b4:02:98:fe:08:86:38:2e:db:2f:e8:0c:f1:8d:5e:f4:54:
6c:29:bd:07:11:57:84:a0:73:75:25:17:ba:f4:b9:f2:f8:e9:
46:10:d3:e9:6f:22:a2:c5:5d:2d:56:b3:06:a5:83:46:60:c4:
59:60:4a:10:5d:fd:c8:36:8d:32:22:95:1e:d7:ac:e3:f5:48:
50:01:66:ed:fc:25:ee:8c:94:47:57:52:04:9a:83:35:bc:3c:
c1:1b:13:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 6 09:30:56 2023 by rpki-client on console-fra.rpki-client.org