Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/MHo2lS-egv7wjGWWwXm3YM5IM5I.roa
File: MHo2lS-egv7wjGWWwXm3YM5IM5I.roa (raw, json)
Hash identifier: zS235rj+fseFPPaXt393a1L8KmCjRN4GkurTBYOvogo=
Subject key identifier: 30:7A:36:95:2F:9E:82:FE:F0:8C:65:96:C1:79:B7:60:CE:48:33:92
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C41647F9A76EE63E5F3112EA3370074
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/MHo2lS-egv7wjGWWwXm3YM5IM5I.roa
Signing time: Sun 01 Jan 2023 07:35:03 +0000
ROA not before: Sun 01 Jan 2023 07:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142418
IP address blocks: 2a0d:2686::/32 maxlen: 48
2a0d:2586::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:64:7f:9a:76:ee:63:e5:f3:11:2e:a3:37:00:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=307a36952f9e82fef08c6596c179b760ce483392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:07:a3:1c:f6:53:44:05:56:9f:b4:fe:8c:b2:
b2:32:e7:7a:d5:96:8c:5c:bc:20:7c:61:cd:c1:8c:
e7:84:28:9f:cd:42:0b:02:88:35:33:da:a7:7b:70:
6a:49:3a:a1:b0:8b:66:0c:11:d9:eb:c3:ac:c8:3e:
fb:3f:0e:73:80:92:54:88:91:3d:9c:d1:41:81:91:
c3:39:8f:6b:e5:c7:48:8d:a9:8d:b1:bb:bd:43:be:
37:b3:fe:00:f1:07:20:3a:01:98:32:e5:6c:99:e7:
08:26:b4:e6:09:6a:78:ba:a7:d4:4b:d7:41:3a:78:
65:72:70:0a:33:4c:b2:a3:18:51:15:0c:59:19:f8:
b9:14:61:42:26:a9:c5:6a:45:89:dc:a1:aa:d5:d4:
f2:f8:cf:c4:e7:fb:a8:9c:74:cb:97:b1:95:74:5a:
a7:a4:04:34:74:2e:5b:b3:a1:74:b2:73:c8:74:90:
4f:60:13:40:ed:0a:35:97:a3:9a:a0:86:35:3f:4e:
60:32:df:c1:62:b7:d9:66:6c:17:7b:41:6d:27:95:
bd:9b:19:ab:ff:f5:44:02:e3:ce:ff:54:08:b3:a4:
b7:ca:b9:b2:52:4b:7d:2b:80:65:40:34:44:22:de:
ed:5f:23:3b:31:ec:42:14:88:03:b5:75:8b:d7:e3:
bf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7A:36:95:2F:9E:82:FE:F0:8C:65:96:C1:79:B7:60:CE:48:33:92
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/MHo2lS-egv7wjGWWwXm3YM5IM5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2586::/32
2a0d:2686::/32
Signature Algorithm: sha256WithRSAEncryption
6d:e7:48:d7:0a:c7:1a:2e:b9:7f:40:a6:a8:54:24:4a:ff:47:
a6:55:05:2a:dc:24:0c:37:31:5b:75:f5:db:b7:c2:63:86:e0:
cb:64:ed:8f:69:cc:a0:77:28:ad:ac:af:40:27:e5:7b:f5:72:
2b:67:6e:b2:44:e1:9c:4a:78:eb:9a:d8:27:49:74:36:85:ab:
40:b7:0b:63:fe:ea:97:d4:c2:e5:4f:5e:1f:b9:ff:6f:8b:18:
91:47:cf:ad:7f:76:73:e9:06:2b:5e:c2:63:5a:00:d4:75:f7:
47:ce:41:b7:1d:39:0e:f5:89:79:61:51:b1:c7:f3:af:c7:65:
e5:f5:49:c8:29:5e:74:73:5b:55:26:70:b0:25:c8:b1:ac:f3:
07:5c:cb:16:1f:ae:43:60:0d:89:eb:73:04:24:fc:2c:59:44:
0f:dc:d2:95:72:af:ce:e2:dd:71:35:39:0a:b1:01:a1:fa:64:
9d:d0:92:93:3b:e1:96:52:4a:36:b5:44:38:30:8f:c6:f1:24:
34:1b:30:e1:03:b8:e3:f9:8a:97:15:af:f1:b5:f6:a6:16:69:
cf:65:e5:b3:cb:a8:53:1d:bc:23:09:09:e2:a8:27:2b:77:2b:
9b:24:3f:1c:8d:08:08:8a:5d:d3:79:cc:96:20:4b:49:9e:9c:
17:7c:98:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:20 2024 by rpki-client on console-fra.rpki-client.org