Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/2tPwR0LwBO730QHNQsaXeO6Yvj4.roa
File: 2tPwR0LwBO730QHNQsaXeO6Yvj4.roa (raw, json)
Hash identifier: Lwnx2BlwJhepd0JCxfFsnhqrGAuI8ER0+7gRPLMsS14=
Subject key identifier: DA:D3:F0:47:42:F0:04:EE:F7:D1:01:CD:42:C6:97:78:EE:98:BE:3E
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246D572EA4BCE29BE635A53B46C6953
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/2tPwR0LwBO730QHNQsaXeO6Yvj4.roa
Signing time: Mon 02 Jan 2023 11:38:42 +0000
ROA not before: Mon 02 Jan 2023 11:38:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207965
IP address blocks: 2a0c:9a40:8010::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d5:72:ea:4b:ce:29:be:63:5a:53:b4:6c:69:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dad3f04742f004eef7d101cd42c69778ee98be3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:10:61:a7:fd:32:71:01:1a:d6:06:a8:6b:7a:
67:2f:c4:1b:e3:57:49:68:78:97:e3:ad:ed:d0:78:
d1:cc:35:83:8c:82:a3:9e:49:29:88:8d:88:01:a0:
62:4d:0c:c4:07:0a:ac:cf:82:0e:7c:ed:0d:41:58:
1f:74:e4:e7:88:07:aa:8b:97:89:41:4b:89:95:78:
8c:c4:bc:90:fb:40:1d:ba:84:f8:46:6c:a8:cc:6d:
be:fb:6c:9c:83:4d:3d:45:5f:f5:ed:bc:40:61:5e:
c4:38:1a:2e:10:7f:05:e6:20:b8:60:16:2c:3c:39:
e4:b7:be:94:25:88:ab:04:be:95:1b:c9:e7:0a:56:
72:81:0e:8f:0b:3c:da:0e:66:36:9c:e1:d3:d2:9d:
3d:f6:53:e7:51:75:27:d3:be:10:c1:28:eb:37:39:
e7:70:5e:e6:4d:9d:5e:57:b3:d8:57:65:89:c1:3b:
cd:bf:08:22:4a:51:74:41:5b:69:b9:75:ab:46:93:
56:c7:07:7d:64:07:7f:c6:05:13:85:a8:ff:9a:dc:
7e:6e:48:87:1f:47:7f:b3:ea:9d:42:63:57:a3:7a:
ec:cc:b6:3d:19:61:2e:37:0c:60:b4:5e:1e:4c:4f:
8e:58:6a:ff:c5:12:3c:b7:8b:f8:8c:47:81:10:83:
b2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D3:F0:47:42:F0:04:EE:F7:D1:01:CD:42:C6:97:78:EE:98:BE:3E
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/2tPwR0LwBO730QHNQsaXeO6Yvj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8010::/44
Signature Algorithm: sha256WithRSAEncryption
3b:16:01:ef:0e:4e:03:09:99:03:af:ea:44:be:0e:57:53:65:
0a:29:18:df:8b:ad:b8:36:81:f3:1d:40:23:45:6a:f0:43:e3:
be:a9:ae:29:e1:25:9d:71:4b:32:d4:72:91:03:59:2f:06:28:
3f:58:9e:96:be:f0:bc:59:67:a6:68:a4:28:2b:6c:86:2a:90:
54:a8:16:26:ff:98:2e:e6:9e:4d:77:30:ba:ad:3b:1e:52:8f:
c5:25:05:83:1d:67:75:87:80:40:cd:99:2f:53:eb:65:b8:c4:
c8:43:36:3d:a8:12:dc:c1:f8:e1:48:9f:20:93:20:0d:22:81:
23:c7:ab:69:00:61:a4:7a:dd:d8:87:97:65:7d:4b:2c:47:46:
2d:b2:94:b2:ae:ee:36:1e:32:6f:12:f8:34:55:40:ca:cc:9a:
f0:df:53:7a:f3:31:b2:23:8d:a8:8e:5e:98:4f:15:dd:b4:04:
66:cd:f6:33:ae:06:34:80:11:7b:cb:31:c3:07:7a:c7:dd:16:
6e:cc:1a:26:d3:78:f6:a1:40:e0:96:de:d3:47:e0:29:93:a6:
f1:3b:92:6c:98:50:37:05:5b:2d:a3:e3:5e:11:49:22:57:e4:
d7:de:7f:58:be:6c:db:95:c4:a4:d9:da:02:0f:94:48:84:2b:
71:4d:5c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:19 2024 by rpki-client on console-ams.rpki-client.org