Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/uz5IjAtEv_AVA-h6agELiCVy0Rs.roa
File: uz5IjAtEv_AVA-h6agELiCVy0Rs.roa (raw, json)
Hash identifier: 0zNZ0Lx/ly8ikB21reikbNGjWxN56GQ39kaf1mYBfkk=
Subject key identifier: BB:3E:48:8C:0B:44:BF:F0:15:03:E8:7A:6A:01:0B:88:25:72:D1:1B
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C417443A79F3AFA6B52DDDF47F7B1CA
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/uz5IjAtEv_AVA-h6agELiCVy0Rs.roa
Signing time: Sun 01 Jan 2023 07:35:07 +0000
ROA not before: Sun 01 Jan 2023 07:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211398
IP address blocks: 2a0d:2585::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:74:43:a7:9f:3a:fa:6b:52:dd:df:47:f7:b1:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb3e488c0b44bff01503e87a6a010b882572d11b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:36:6b:db:cc:4c:35:25:33:3d:e9:9d:16:
89:2f:6e:cb:52:b5:9b:d6:c2:5e:63:e5:e1:05:fa:
46:57:d4:d1:28:22:ab:75:95:79:93:51:35:ec:15:
31:c4:cb:ac:0a:ad:f5:fd:6f:25:e0:13:51:cf:16:
59:71:aa:5e:3d:92:22:bf:ce:b1:76:b7:0e:fe:34:
f9:f4:61:a8:26:0a:f6:13:11:bc:2f:59:ef:04:92:
33:4a:74:39:94:bb:06:32:a6:db:e1:b9:2b:f1:89:
60:d3:50:9b:a0:26:0d:a4:ff:b7:35:7e:ef:9a:1c:
af:99:b6:6c:ef:fc:80:fb:94:fb:83:e5:33:ff:8e:
da:cf:08:c9:7b:e1:d9:60:26:eb:aa:fc:5d:e1:3c:
a2:de:f6:e6:00:f1:b4:5a:7d:3a:85:9d:e1:af:72:
2f:5b:c7:e1:7c:3d:8e:3d:f8:c4:29:31:da:49:d3:
dd:61:5a:d9:97:39:d9:89:83:6a:76:f0:84:71:40:
d4:f4:ae:ac:a8:60:f6:91:94:27:48:d3:c1:38:a5:
46:d3:e2:25:7b:c0:23:bd:18:ec:22:98:5f:d3:75:
ac:e3:6f:4e:ba:8e:26:f5:91:ef:ec:a2:ce:b8:5f:
39:c9:63:f9:8c:05:74:dd:5a:40:fa:9c:92:eb:64:
c0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3E:48:8C:0B:44:BF:F0:15:03:E8:7A:6A:01:0B:88:25:72:D1:1B
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/uz5IjAtEv_AVA-h6agELiCVy0Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2585::/32
Signature Algorithm: sha256WithRSAEncryption
b7:c9:6a:97:17:a0:2f:05:db:0c:61:dc:43:88:b0:82:e2:12:
76:4e:3f:77:46:b6:53:39:d8:d5:2b:53:e7:e9:cf:18:f6:37:
ef:52:08:7e:2a:01:3f:21:a8:11:0b:42:a8:5a:61:d5:9f:f3:
b8:c5:80:07:f3:72:d6:3a:e2:b9:b1:6e:20:b1:37:0f:12:9f:
d5:fb:7b:4b:0e:1a:c5:8a:ed:8b:48:4e:ec:6e:3f:dd:90:e3:
35:3b:93:fd:ed:06:74:65:37:4a:a8:3f:27:f2:58:27:36:bd:
90:e6:b6:19:1c:d6:5a:74:cc:3f:f9:29:3e:99:5a:9d:66:f4:
10:29:be:79:bb:ef:2a:aa:55:2c:67:e7:e6:cf:c4:6c:5e:a3:
f9:db:c7:b9:33:3b:ff:8f:84:3d:b6:aa:e7:86:4c:69:0f:48:
67:e9:c6:f0:b9:0e:85:d7:4c:c1:16:fe:7c:ec:94:cc:2d:59:
33:e8:82:3f:2b:55:4e:ee:2d:ee:2b:0f:f7:0f:4f:fd:34:54:
9e:92:da:7b:0b:15:4d:f1:d9:c4:03:74:8f:f1:e6:ee:f4:c8:
e5:8b:cb:7f:a8:47:46:6b:7f:49:aa:8b:d8:9f:5e:d4:e4:50:
52:82:17:d6:69:63:be:e2:1a:48:59:cf:47:4b:67:73:ad:2c:
ce:ce:6a:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org