Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/u3BSHoCoDjRpz2CZfTEy_zpxcWU.roa
File: u3BSHoCoDjRpz2CZfTEy_zpxcWU.roa (raw, json)
Hash identifier: 7cyDJyIqk5wlIxUTO/r5m3rxD7Uj0IMqgZqMdfha2q8=
Subject key identifier: BB:70:52:1E:80:A8:0E:34:69:CF:60:99:7D:31:32:FF:3A:71:71:65
Certificate issuer: /CN=bc184d30d1fd2fde50bea6f70fe2dbe20518a03e
Certificate serial: 01856D5D0133AB50C798ED72165B27853ABE
Authority key identifier: BC:18:4D:30:D1:FD:2F:DE:50:BE:A6:F7:0F:E2:DB:E2:05:18:A0:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vBhNMNH9L95Qvqb3D-Lb4gUYoD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/u3BSHoCoDjRpz2CZfTEy_zpxcWU.roa
Signing time: Sun 01 Jan 2023 12:44:49 +0000
ROA not before: Sun 01 Jan 2023 12:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 2001:67c:2dc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:01:33:ab:50:c7:98:ed:72:16:5b:27:85:3a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc184d30d1fd2fde50bea6f70fe2dbe20518a03e
Validity
Not Before: Jan 1 12:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb70521e80a80e3469cf60997d3132ff3a717165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:73:e3:36:0c:1a:f9:35:ed:cc:70:29:6b:6a:
bf:78:14:4c:dc:5d:56:57:d9:d2:f6:26:89:63:62:
34:23:1a:5e:7d:cf:3c:16:b5:94:44:31:6c:1c:4e:
86:10:7e:1d:59:a3:39:42:2c:41:32:0f:9b:ba:51:
fa:ce:13:92:8a:27:bc:4f:8c:bc:0a:63:a6:f4:56:
10:d5:56:35:5d:ec:cc:6f:6f:29:e3:9a:6f:7b:80:
72:42:65:3a:cf:f7:4d:7c:b1:d4:61:80:f6:7d:3c:
5c:85:f9:bd:9e:3c:c2:e1:23:a4:9e:34:1a:b7:7e:
21:f5:08:1e:33:b3:b3:d8:ee:3d:8c:6b:e1:1f:03:
d1:b3:9a:e0:90:32:9b:95:f3:53:c5:50:4c:59:93:
ed:72:bb:f6:2d:33:cc:3c:04:5f:32:7f:c0:5b:20:
cf:b9:ff:d9:6b:cd:f3:50:6d:e2:3c:66:04:01:d1:
a2:ce:f8:3b:e8:9b:7a:ed:de:ea:44:f5:f7:d7:7d:
ea:b9:3b:ae:40:21:a6:d6:4c:c7:9a:4e:e3:87:95:
f0:35:ca:bc:56:a8:d2:7a:4c:b5:05:2c:37:c0:21:
4b:55:50:1f:20:bb:4b:c1:70:47:6a:f5:f4:9b:f4:
00:f4:a5:a9:1d:dd:8f:9b:e0:c9:a8:28:6a:b7:03:
a1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:70:52:1E:80:A8:0E:34:69:CF:60:99:7D:31:32:FF:3A:71:71:65
X509v3 Authority Key Identifier:
keyid:BC:18:4D:30:D1:FD:2F:DE:50:BE:A6:F7:0F:E2:DB:E2:05:18:A0:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vBhNMNH9L95Qvqb3D-Lb4gUYoD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/u3BSHoCoDjRpz2CZfTEy_zpxcWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8cc47f-0265-407c-ba45-05d7bd4a741d/1/vBhNMNH9L95Qvqb3D-Lb4gUYoD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2dc::/48
Signature Algorithm: sha256WithRSAEncryption
41:53:86:b0:df:c0:25:19:c5:12:3e:1f:4f:32:e9:40:c9:bd:
22:70:fa:ee:d1:24:f0:fb:dc:bc:ba:6e:f4:fd:f9:ac:8e:d2:
92:f8:b2:33:f0:f1:7c:03:64:e3:13:ba:00:41:a9:c2:29:b8:
db:b8:55:ea:ab:fd:bb:b0:ee:df:ba:9c:0e:e0:18:e6:a8:c1:
a6:f9:6f:0c:f4:36:83:1d:e8:a1:d9:63:16:e6:f3:a7:c7:89:
f2:95:e4:0a:e6:35:26:b5:07:41:c2:3f:a5:5c:f8:19:39:2d:
78:73:8c:69:63:c5:e9:bb:ca:43:b0:cd:24:e5:21:8e:e5:15:
cf:38:e3:aa:00:6f:41:d2:9c:07:2d:71:12:52:d8:9d:44:59:
77:86:f1:d8:93:75:d0:e3:a1:68:b5:cb:4b:0b:5d:03:51:fd:
fb:63:09:2d:68:76:ad:44:a9:af:3b:36:82:b2:a9:84:58:0c:
8a:0d:7a:eb:31:33:57:9d:fa:bb:a9:e8:0e:6d:0b:0c:6f:bc:
6b:0e:8c:cc:90:b3:6d:62:af:c8:d1:b8:09:be:e0:07:25:e2:
bd:c5:27:63:a8:b9:41:05:cc:0c:43:98:8a:7a:2f:b7:12:ce:
29:b9:6e:9a:71:84:81:34:46:c3:75:a4:44:32:5b:08:27:ce:
c0:56:0c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:04 2024 by rpki-client on console-ams.rpki-client.org