Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/u-t1QN88osjLuWtjo1hMgnA2rUQ.roa
File: u-t1QN88osjLuWtjo1hMgnA2rUQ.roa (raw, json)
Hash identifier: jZgbn2BaOyIHPClqq1nnGjePrlxXxk5cKPcS7/I1hD4=
Subject key identifier: BB:EB:75:40:DF:3C:A2:C8:CB:B9:6B:63:A3:58:4C:82:70:36:AD:44
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0187D4351645291EBDD4FC5A3B5900392076
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/u-t1QN88osjLuWtjo1hMgnA2rUQ.roa
Signing time: Sun 30 Apr 2023 22:07:41 +0000
ROA not before: Sun 30 Apr 2023 22:07:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42216
IP address blocks: 2a06:8ec2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d4:35:16:45:29:1e:bd:d4:fc:5a:3b:59:00:39:20:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 30 22:07:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbeb7540df3ca2c8cbb96b63a3584c827036ad44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e6:ed:ba:be:c2:d6:6b:fb:bf:ce:78:a0:f8:
3d:f8:f8:e1:17:7d:fe:85:9f:5e:91:8d:9f:9f:9d:
11:94:07:05:39:97:43:21:a8:6b:52:cf:6d:0e:e3:
33:5f:4e:78:7d:7b:22:d1:57:38:12:f0:45:82:50:
4e:95:99:9d:e3:ef:f8:a9:d0:14:d3:af:6b:56:17:
b8:b8:05:da:39:52:cc:8f:33:17:27:51:03:52:e4:
33:c1:a3:16:04:a4:c0:22:66:9d:17:1c:bc:d7:99:
75:4e:e2:94:a6:59:8a:02:8d:12:86:df:6b:07:6b:
ac:59:0c:39:b5:4c:13:07:33:80:5d:43:35:59:0c:
dc:02:0e:d1:06:13:ef:78:02:85:0e:66:8d:bf:73:
5a:04:23:cf:a0:17:cb:63:69:9a:99:c5:31:2c:02:
18:de:ae:04:47:0d:e5:fe:d0:a5:5e:26:37:b2:df:
fd:e1:b4:b4:56:85:64:2d:b2:d2:00:07:b4:ac:df:
05:9b:6b:00:35:5d:26:a1:43:fd:2f:d6:68:da:5f:
cd:40:ab:5f:e9:03:d2:8b:27:82:3c:26:60:bc:6a:
f5:8b:d2:c0:dc:33:1b:50:b8:cf:67:20:b5:40:e5:
dc:07:2c:25:00:85:91:18:0c:33:d6:20:3d:a6:72:
5f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:EB:75:40:DF:3C:A2:C8:CB:B9:6B:63:A3:58:4C:82:70:36:AD:44
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/u-t1QN88osjLuWtjo1hMgnA2rUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:8ec2::/48
Signature Algorithm: sha256WithRSAEncryption
1d:dc:fe:1f:51:1f:29:11:3a:f9:ec:f6:e5:4a:4e:cb:4c:e7:
4d:e9:6b:fd:b8:3d:ac:c2:3a:c4:ad:f3:fb:11:ba:2c:da:87:
52:eb:0b:ce:64:4a:13:4a:cf:64:ed:bf:06:50:07:a2:50:83:
11:32:90:01:24:41:b8:f5:84:67:38:78:b9:2c:f7:af:3a:40:
7a:4d:f7:e4:a6:e2:3f:78:a5:f0:97:b0:76:dc:7e:e5:82:6f:
f0:e6:c9:53:75:95:30:bd:8f:51:ab:37:79:ce:eb:d3:47:1e:
59:00:8e:aa:ee:fc:bd:c4:13:22:dc:94:fe:5e:e1:da:51:c1:
86:d6:c6:d7:4e:a1:17:fa:c1:a1:a2:12:70:43:c0:c6:8b:fa:
b8:b6:ac:0d:bb:82:56:12:73:f2:29:cd:de:17:4c:4a:6c:d7:
e7:44:54:d7:d0:eb:2a:7d:98:a1:1b:da:30:44:ea:9e:bc:29:
31:2e:83:e0:82:e6:04:da:01:c3:96:6f:78:b8:77:4a:3b:b1:
cf:b6:51:c3:ee:44:b9:9b:85:ed:1a:1b:2b:bb:6b:f6:23:31:
9b:f8:0b:23:4c:ca:52:ad:5b:5f:a5:6c:01:2c:54:77:8f:f3:
7c:ab:49:c2:c7:dd:ca:3d:c2:ab:66:20:9c:b8:77:bb:72:68:
44:ad:6d:5d
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 13 00:01:35 2023 by rpki-client on console-ams.rpki-client.org