Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/HizHgN78qk5vbyDy_YNNY2CuE-8.roa
File: HizHgN78qk5vbyDy_YNNY2CuE-8.roa (raw, json)
Hash identifier: sQbIdEVaUZwF7Wz2gjL9LFm3i5X2Q8tpD9BGovuhxkE=
Subject key identifier: 1E:2C:C7:80:DE:FC:AA:4E:6F:6F:20:F2:FD:83:4D:63:60:AE:13:EF
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B20D5CF90A6AE435199D8D938E01D
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/HizHgN78qk5vbyDy_YNNY2CuE-8.roa
Signing time: Sun 01 Jan 2023 18:14:49 +0000
ROA not before: Sun 01 Jan 2023 18:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 2a09:ff00:101::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:20:d5:cf:90:a6:ae:43:51:99:d8:d9:38:e0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e2cc780defcaa4e6f6f20f2fd834d6360ae13ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f7:53:a9:8f:30:6d:ba:db:62:fb:32:86:8d:
a3:95:38:fe:6f:e7:13:02:16:61:df:f7:4d:a7:e7:
c1:1e:fa:b6:c3:97:34:c6:a8:f0:1b:52:e7:36:e6:
64:a4:f1:2d:2a:d4:fd:46:2d:de:91:11:d5:24:8e:
ad:7a:ac:e8:83:3e:1c:31:5c:61:c4:82:56:b4:9f:
c3:ed:5f:85:72:a8:35:23:b2:6e:a1:a3:11:d8:36:
68:dc:c3:52:69:be:4f:94:db:f9:c9:0f:cb:0b:8d:
d8:f4:0d:49:ca:44:d8:55:5c:6c:a3:92:9e:3b:35:
47:63:ac:f3:c5:6c:31:73:fa:32:38:5c:80:16:a8:
d4:40:0f:76:07:2f:63:e5:40:f2:65:90:bb:fa:b9:
a8:28:5a:a5:53:39:8f:13:6f:f1:9e:26:6f:48:94:
37:e6:3e:e4:52:92:49:69:df:92:12:71:72:e9:1f:
91:b4:04:37:40:84:e7:4a:08:c2:38:76:38:29:9c:
4e:c1:b7:0e:af:32:a2:52:89:87:23:a9:4b:2e:1d:
e2:45:00:98:a8:51:e3:59:6b:87:c9:05:a0:5e:a1:
a6:48:57:d8:9b:fb:e5:fc:86:ba:5d:44:d4:d5:9b:
a1:dc:2f:ce:fb:27:20:51:08:18:69:bc:8c:35:9b:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2C:C7:80:DE:FC:AA:4E:6F:6F:20:F2:FD:83:4D:63:60:AE:13:EF
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/HizHgN78qk5vbyDy_YNNY2CuE-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ff00:101::/48
Signature Algorithm: sha256WithRSAEncryption
06:d2:7a:0c:ef:18:bf:a0:85:c3:1a:c2:65:18:ab:71:03:36:
32:e1:22:c2:e9:7e:8d:ee:9d:d5:33:3b:fe:2b:b0:0c:7d:c5:
2a:55:40:b9:c5:23:04:f6:56:38:6c:5e:d1:74:3a:b9:5d:fc:
84:11:e5:a4:62:e2:f8:e7:74:8b:be:f9:77:3c:68:a7:05:b5:
e0:61:2d:43:84:b4:75:78:c9:0f:18:36:ed:14:2f:2d:a7:b4:
86:54:6c:02:14:95:e1:04:5c:aa:21:db:5e:b5:ed:0a:42:1e:
8f:3b:3e:99:23:ab:a8:84:28:f7:78:94:84:60:47:12:20:35:
e5:6a:14:0a:e0:d5:c2:6e:2f:1f:42:a5:32:da:48:94:7c:d5:
72:74:a9:56:4f:0e:82:f5:19:46:79:53:98:8b:21:0c:ae:26:
de:6b:f5:3c:1d:1c:64:5c:0f:e7:f2:28:7f:4e:6d:74:55:7f:
35:09:b3:73:96:21:22:c3:c8:2b:d6:82:58:3e:7e:3f:2d:70:
75:8c:6a:1c:e3:51:01:b1:5e:fa:7a:42:94:0f:31:82:6b:c8:
e8:4e:ce:91:a5:54:9f:77:da:20:74:ca:fa:58:fa:34:1c:30:
f0:ff:8e:8a:c9:2e:b3:b9:35:1c:b6:97:1f:9f:7c:df:65:ab:
40:3f:e2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 14:44:17 2023 by rpki-client on console-fra.rpki-client.org