Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/HeVhLx7Fwoa6q8Q432kmhFU9yR0.roa
File: HeVhLx7Fwoa6q8Q432kmhFU9yR0.roa (raw, json)
Hash identifier: 4c1oIK2UM/hgOSCp8TjMNY1fKqv36edJpoIW7igd+Kc=
Subject key identifier: 1D:E5:61:2F:1E:C5:C2:86:BA:AB:C4:38:DF:69:26:84:55:3D:C9:1D
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0188FA0AE0DCA810437DFA381645D1111499
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/HeVhLx7Fwoa6q8Q432kmhFU9yR0.roa
Signing time: Mon 26 Jun 2023 23:29:56 +0000
ROA not before: Mon 26 Jun 2023 23:29:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 2a09:ff00:200::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fa:0a:e0:dc:a8:10:43:7d:fa:38:16:45:d1:11:14:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jun 26 23:29:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1de5612f1ec5c286baabc438df692684553dc91d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9f:5a:63:97:bc:71:10:31:56:46:8b:ad:c0:
ac:19:7d:33:cd:a0:17:eb:41:82:71:ef:c8:c7:17:
7c:8f:ae:58:9d:c4:56:5e:3d:80:0d:91:9d:59:63:
7c:68:11:80:b8:49:9e:ed:41:5b:91:7f:87:26:b4:
dd:96:63:01:a5:d7:74:34:0c:e9:82:93:61:92:9e:
ca:5a:e3:5f:78:70:e4:c5:d9:87:61:87:77:d7:d6:
ed:a1:29:08:7f:87:7f:4e:61:9a:ca:63:b3:df:04:
7d:5b:6c:21:66:3a:63:7d:d7:f9:b8:c7:28:ae:a4:
cf:ee:32:72:47:cf:0e:cc:2b:bc:a7:14:b3:e2:24:
82:f2:30:81:19:30:2a:ce:8c:db:2c:c4:ab:fb:4c:
af:9a:d4:f0:e9:83:7b:f1:0b:2d:ef:e6:07:d6:09:
53:b9:2e:fe:7a:4c:41:6d:fd:a1:f2:7d:1b:91:3e:
30:62:15:28:27:3d:c0:cb:15:8f:94:8b:98:45:6b:
ef:39:b7:3c:4c:b9:c0:78:ab:fd:ed:6b:3e:b5:b6:
dc:f5:c1:b9:cc:fb:26:b8:9c:37:e2:9e:4b:cb:9e:
72:ff:e9:e7:47:28:12:b1:a2:97:8d:05:ae:db:ec:
5b:59:b8:04:8b:7c:f7:16:65:b6:49:94:74:ca:39:
b5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E5:61:2F:1E:C5:C2:86:BA:AB:C4:38:DF:69:26:84:55:3D:C9:1D
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/HeVhLx7Fwoa6q8Q432kmhFU9yR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ff00:200::/44
Signature Algorithm: sha256WithRSAEncryption
25:23:68:d8:c5:28:7e:9a:95:6e:3f:01:24:47:6f:8c:ce:4a:
69:31:d3:22:7c:38:2c:57:6a:ea:f8:a8:40:4e:a8:44:c7:19:
cc:24:7b:84:96:80:06:8c:3b:d1:09:28:ef:26:f2:09:8f:04:
a3:01:cb:dc:bf:83:40:6b:17:12:48:93:29:ee:c4:30:0f:a4:
f8:e8:40:ad:ca:55:b8:79:70:f3:ef:54:da:ed:08:79:86:f4:
2a:4f:8b:d1:eb:51:7f:0e:77:02:91:2e:29:8c:61:49:72:a3:
b1:cb:4d:89:8b:aa:02:fe:29:f3:de:5c:a5:b1:ab:77:b0:58:
ae:f9:e0:d5:80:17:b7:87:69:a3:da:d6:8d:3c:4f:31:ba:1e:
7d:9d:ca:e6:ec:1f:0d:c7:6d:9d:c2:5e:14:85:1a:5c:be:e6:
80:c6:b4:81:aa:7c:bb:56:fe:5e:27:cd:3b:0a:82:20:19:a6:
cc:fb:3c:a4:a6:3e:49:b6:95:04:5f:a9:c9:a7:92:85:9a:cb:
07:a4:5d:6e:a6:05:c4:a8:a6:0c:27:53:c4:a5:3f:b5:d9:2e:
c1:d7:d2:0a:9a:71:4c:1a:ca:f7:76:74:0a:ec:db:b0:f5:ce:
7c:c4:a3:9f:a9:a2:2c:09:02:9c:2a:9c:12:a9:77:22:fc:d9:
6d:47:c0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 16:49:10 2023 by rpki-client on console-ams.rpki-client.org