Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/mvlO3RIrCDbInKBK4dbb52tbuvQ.roa
File: mvlO3RIrCDbInKBK4dbb52tbuvQ.roa (raw, json)
Hash identifier: Z8Z4JS4rj9vWGjIvTfV96GtmiN62Yb/9tpOhsJ8VfUw=
Subject key identifier: 9A:F9:4E:DD:12:2B:08:36:C8:9C:A0:4A:E1:D6:DB:E7:6B:5B:BA:F4
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018BF12F291F0946E494D67EE348C2FE0B7A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/mvlO3RIrCDbInKBK4dbb52tbuvQ.roa
Signing time: Tue 21 Nov 2023 09:21:21 +0000
ROA not before: Tue 21 Nov 2023 09:21:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0f:f42::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:2f:29:1f:09:46:e4:94:d6:7e:e3:48:c2:fe:0b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Nov 21 09:21:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9af94edd122b0836c89ca04ae1d6dbe76b5bbaf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c8:26:d1:16:d4:2e:a0:5a:70:bb:03:36:e3:
97:4c:49:2e:8e:f7:20:b6:d4:9b:e0:89:2b:6f:42:
85:84:67:aa:34:6d:db:94:90:10:01:a9:dd:a1:ed:
ca:45:b4:ea:d9:b9:6c:04:8c:47:d0:62:73:f5:60:
5c:b0:5a:6d:94:80:92:f4:78:ff:bf:6e:1f:47:1b:
7a:07:40:fb:e1:6a:f4:ec:4b:c4:fb:2a:f7:e2:27:
00:38:12:8b:af:67:e4:35:4e:d7:9b:b0:13:7c:1f:
3a:7e:aa:6a:b5:0a:32:aa:e2:ae:2d:ca:6c:46:dd:
00:7a:71:e2:a7:29:a6:f2:02:ab:e7:a8:46:80:30:
1f:58:1a:a4:43:39:e2:53:c1:cb:04:41:c7:cf:1a:
d4:e4:61:2e:2a:c1:92:cd:6b:47:5a:39:44:72:28:
f5:89:77:a9:c3:89:ec:7c:4d:0d:db:95:39:cb:7a:
90:09:b3:94:96:17:18:5d:8d:09:08:e6:d8:70:ce:
8c:1a:77:82:fa:13:ea:51:d1:86:69:e9:b9:c0:0a:
5f:36:ad:7e:b5:85:f1:3a:38:15:c2:22:ee:7d:5e:
a1:1d:e1:9a:3d:e2:ab:6b:f7:70:81:1c:d9:8c:00:
60:03:af:74:18:d5:fc:6a:40:8f:99:0f:24:6e:c9:
a6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F9:4E:DD:12:2B:08:36:C8:9C:A0:4A:E1:D6:DB:E7:6B:5B:BA:F4
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/mvlO3RIrCDbInKBK4dbb52tbuvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:f42::/32
Signature Algorithm: sha256WithRSAEncryption
5d:ea:eb:a7:de:92:1c:ca:f0:fd:04:6f:e2:32:1d:ec:e0:59:
71:bb:28:d5:08:1a:05:91:83:53:ca:d0:6e:56:05:74:0d:3b:
5c:2b:c2:ba:39:80:44:29:04:e3:e6:d4:88:5d:3c:b4:a6:e8:
eb:a2:ac:6a:74:ff:2b:a1:e6:fb:b3:09:79:2f:a7:a8:48:2b:
94:9b:33:e9:ee:41:31:fb:f5:40:c1:84:1a:91:aa:83:f4:50:
b2:9c:47:40:95:16:00:c3:62:a9:ed:8b:23:14:e7:02:d3:48:
a5:e8:ee:89:02:0a:86:2f:ce:bf:2e:eb:7e:f5:7a:fd:70:37:
5a:5a:1e:54:0c:66:c0:53:17:1c:a6:ba:19:37:f7:6c:00:a0:
79:33:aa:35:11:e0:16:76:82:a2:a4:bd:99:c6:a1:03:6d:f7:
42:fb:9f:10:5a:2e:da:f1:d4:78:21:3a:3b:6d:cc:d4:00:c0:
35:dc:da:11:b7:09:4e:00:fb:59:7e:4c:27:35:8e:ee:83:88:
f2:da:de:a1:41:d1:04:70:0c:37:c9:e9:4e:42:84:9a:be:06:
38:ff:ca:1c:db:49:d4:80:df:ac:77:d8:53:2c:5b:71:4d:c4:
66:c1:e4:3f:02:f8:ea:b4:3f:dd:74:fd:95:11:e0:fd:4e:31:
b8:59:3d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:57 2024 by rpki-client on console-fra.rpki-client.org