Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/iXLBZV0wLc3UJZBPxYRCNDZ2-DM.roa
File: iXLBZV0wLc3UJZBPxYRCNDZ2-DM.roa (raw, json)
Hash identifier: ZYs/7GnJPuumJChSJX7Qfx5NaCJ4bJqkkOqt+EyuFa0=
Subject key identifier: 89:72:C1:65:5D:30:2D:CD:D4:25:90:4F:C5:84:42:34:36:76:F8:33
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B228519033D6DD9973983A49E7A9D
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/iXLBZV0wLc3UJZBPxYRCNDZ2-DM.roa
Signing time: Sun 01 Jan 2023 18:14:50 +0000
ROA not before: Sun 01 Jan 2023 18:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31400
IP address blocks: 2a09:7900::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:22:85:19:03:3d:6d:d9:97:39:83:a4:9e:7a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8972c1655d302dcdd425904fc58442343676f833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c6:a7:23:3c:1a:ae:1c:69:43:81:f4:1f:23:
d3:1d:88:9f:72:0f:fb:a5:a1:cb:f0:8c:d5:25:59:
3c:b9:0d:08:c7:c7:69:21:09:d7:44:7c:a9:d2:db:
50:66:9f:5b:91:70:fe:60:52:44:96:c6:38:69:1b:
c1:37:73:90:b6:40:ec:6f:c1:12:51:cd:0f:4d:60:
34:f6:10:e6:d3:43:2c:24:60:fc:e5:76:be:bf:80:
9d:2b:09:fa:d0:82:84:99:b5:e6:3c:33:cf:e3:5e:
63:30:26:1f:5e:68:7b:fa:4c:e5:4c:b7:4c:ff:d8:
7c:d4:3f:3a:9b:33:e2:4f:68:2a:b8:7b:b4:6d:5b:
3d:e0:a3:da:d5:44:02:24:74:da:2d:9b:64:4c:07:
14:60:ef:f5:ce:b8:dc:b5:23:c7:51:ff:9c:94:6f:
a4:25:27:e9:bf:93:51:28:88:d1:4d:d7:d1:9f:ac:
6b:fc:e7:f5:c9:f7:ed:30:50:46:31:d9:7d:30:8d:
a4:9e:f4:2d:4c:82:b2:fe:ec:84:36:6a:e0:56:84:
84:b0:be:ff:86:68:f6:9c:4d:f9:76:cc:cf:b5:7e:
40:a6:6f:97:35:d8:b2:8b:d3:f6:2e:96:77:ec:88:
3b:44:cd:16:18:ba:2d:ba:31:8f:de:e5:82:92:93:
29:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:72:C1:65:5D:30:2D:CD:D4:25:90:4F:C5:84:42:34:36:76:F8:33
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/iXLBZV0wLc3UJZBPxYRCNDZ2-DM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7900::/29
Signature Algorithm: sha256WithRSAEncryption
91:c9:aa:76:51:7e:b6:f0:37:13:61:d8:44:e6:8a:60:80:31:
b8:93:bf:2c:0b:c4:94:13:0b:66:54:7d:ee:13:ee:3e:13:ea:
4f:28:95:26:d3:dd:a1:31:7a:39:35:d3:be:56:07:cc:71:de:
ae:f9:13:da:4b:b0:82:b4:47:2e:49:6d:35:86:1a:b8:ff:3e:
72:0f:dc:8b:c2:d8:70:54:f6:a7:d0:5e:62:9d:d8:24:5e:68:
44:c6:84:27:ea:51:bd:38:0c:6f:6b:3f:66:0f:bd:2d:26:c2:
66:43:27:8a:10:c5:35:e5:13:b7:e5:73:85:ed:e1:fa:6a:bd:
82:b0:94:8c:90:9b:9d:6b:40:db:fb:e1:96:3d:31:bd:d4:25:
d4:42:b9:45:9a:12:2f:29:42:5a:92:3a:93:1b:8a:0c:8b:1c:
7b:c3:2d:b1:d0:cf:85:0e:e3:93:d6:92:11:23:77:3a:9e:62:
88:e7:a0:4c:c2:ef:f4:87:34:59:96:0d:95:1e:69:60:09:fd:
04:72:96:ea:1d:da:4a:ae:bb:84:09:e0:a0:af:ab:01:7b:95:
e6:db:e8:0c:05:49:be:af:83:aa:47:7b:c2:fa:a4:43:ff:3b:
88:58:e9:c5:0b:eb:ef:f0:0b:45:01:97:0d:4c:05:e1:e8:e4:
15:e8:0b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:23 2024 by rpki-client on console-fra.rpki-client.org