Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/EhPW5gIsPXCSJIlpqTdtz4tuHow.roa
File: EhPW5gIsPXCSJIlpqTdtz4tuHow.roa (raw, json)
Hash identifier: iWsaYBQoUaFd0k5z23wjsYtGCjcI/tfmyT/oi6CKefc=
Subject key identifier: 12:13:D6:E6:02:2C:3D:70:92:24:89:69:A9:37:6D:CF:8B:6E:1E:8C
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246C517518F16B7FB3F909CCC04AD3D
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/EhPW5gIsPXCSJIlpqTdtz4tuHow.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60404
IP address blocks: 2a0c:9a40:808e::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c5:17:51:8f:16:b7:fb:3f:90:9c:cc:04:ad:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1213d6e6022c3d7092248969a9376dcf8b6e1e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2c:b3:9c:3e:e7:49:60:0a:a0:90:ee:78:bf:
be:2b:14:1e:c7:83:21:b0:63:1a:e1:1b:95:68:14:
a9:f5:96:6e:f9:67:74:e9:b2:dd:e0:58:c2:11:c9:
65:cc:d5:09:f7:1a:b2:cc:e8:e2:eb:a6:fa:08:86:
aa:f2:9b:0f:71:13:e2:63:f5:09:08:2e:76:90:bd:
3b:30:7e:4b:34:41:d6:e2:b5:0b:fd:ec:0c:f0:2d:
93:dd:59:4b:0c:f3:72:00:9e:63:4b:5f:a3:e7:37:
94:db:63:c9:b8:e3:25:8d:40:1e:ac:13:5f:bc:90:
d5:c2:3e:bc:ff:21:e3:8e:60:57:8e:30:e7:79:b4:
e7:13:6a:11:1d:12:24:1c:57:a4:9c:9e:e3:c8:f0:
48:a8:37:75:33:a2:4a:41:48:d3:23:99:9e:01:30:
7e:d1:ca:7f:be:4d:a5:aa:56:f0:88:b9:7c:68:cd:
53:0f:97:0b:87:8b:fb:8f:c7:a3:06:16:28:6a:d4:
72:67:c6:42:9f:16:86:38:3e:f2:df:24:fd:6b:cb:
e0:e3:0e:53:3c:69:8e:06:57:bf:8f:94:e4:27:c2:
c9:76:94:74:a7:8c:29:e0:5c:5f:61:5e:2b:cd:4e:
2c:81:30:f6:11:89:b4:f2:07:f5:41:21:eb:c5:65:
a9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:13:D6:E6:02:2C:3D:70:92:24:89:69:A9:37:6D:CF:8B:6E:1E:8C
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/EhPW5gIsPXCSJIlpqTdtz4tuHow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:808e::/48
Signature Algorithm: sha256WithRSAEncryption
7e:e0:56:a5:3e:61:95:71:9e:35:67:d9:96:e0:58:3b:b7:d0:
74:e3:c5:18:f6:4b:64:0e:fb:a3:9f:68:10:9d:0e:17:ca:33:
f0:30:5e:08:12:f8:ea:ff:43:17:d3:75:b3:6f:fc:1a:40:16:
d0:b6:c3:49:fe:48:01:0e:f8:77:4d:18:c8:9b:08:50:78:3c:
31:62:8b:fa:4c:6d:d6:d4:fd:b8:c7:1a:53:5e:92:e1:0a:37:
7b:1d:fd:0d:13:dd:7d:8d:eb:27:b9:99:0a:a8:f0:5c:85:6a:
35:24:0d:3d:17:06:bc:7e:60:c0:dc:13:85:12:94:fd:68:59:
92:a2:e4:3a:31:00:94:f3:1f:59:82:74:8b:60:16:1c:84:a5:
88:a4:1b:f6:7d:21:7d:68:4c:4e:83:85:35:4e:d5:b7:18:d5:
03:f5:db:a5:b6:bf:a8:b2:87:c1:00:55:c6:8d:47:1f:16:7e:
08:ef:ca:f9:a9:4c:56:56:1d:91:16:d0:cc:d5:1b:6a:55:13:
5a:38:a8:62:ab:cb:21:85:41:b4:54:d7:3a:36:9f:b6:ff:18:
e8:2b:81:9d:63:79:39:39:f9:14:ee:d4:a0:78:51:af:0b:98:
a1:2b:e9:76:cb:2f:73:16:6e:9e:9d:2a:2e:5f:4d:8d:dc:61:
48:6c:73:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:19 2024 by rpki-client on console-ams.rpki-client.org