Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/HRhmG13BIunkwwWeR-rJxHwhiU0.roa
File: HRhmG13BIunkwwWeR-rJxHwhiU0.roa (raw, json)
Hash identifier: imAZVN2655shnlFHOp2C+g0mul2EckWckLoKGy3el0Y=
Subject key identifier: 1D:18:66:1B:5D:C1:22:E9:E4:C3:05:9E:47:EA:C9:C4:7C:21:89:4D
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01896872965040B20103A21CA200DFBA2C98
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/HRhmG13BIunkwwWeR-rJxHwhiU0.roa
Signing time: Tue 18 Jul 2023 10:01:27 +0000
ROA not before: Tue 18 Jul 2023 10:01:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198079
IP address blocks: 2a0c:9a40:83b0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:72:96:50:40:b2:01:03:a2:1c:a2:00:df:ba:2c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jul 18 10:01:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d18661b5dc122e9e4c3059e47eac9c47c21894d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:45:97:93:fd:81:b7:94:af:6d:71:d7:73:df:
90:42:f6:2f:c0:0d:98:62:e6:26:fc:23:fe:6f:4e:
04:f5:5b:8b:a8:5c:48:23:0c:f0:12:03:09:a1:f2:
3b:cd:26:78:30:fa:df:68:5a:13:11:8b:43:09:aa:
78:81:c7:46:b5:b9:59:8c:a3:d8:fa:10:92:8c:a9:
39:f6:68:16:a5:9f:88:bd:46:78:e0:cf:25:7c:0c:
a3:15:9a:a8:cf:cb:b2:0a:71:b3:58:cc:b8:51:3d:
63:4f:2d:0f:68:da:7c:12:67:4d:46:27:90:ff:5c:
9f:27:cf:45:f8:fc:c0:0f:f2:9d:b4:77:65:f5:39:
62:5c:c5:f2:80:f8:16:a5:28:f8:21:d1:8c:65:e9:
15:e5:76:a7:f0:22:ce:6b:2e:3d:88:45:25:85:63:
04:98:d3:e8:4d:e0:aa:ca:7a:3e:0c:85:26:84:78:
67:8d:17:8d:4e:c7:2f:63:7f:d8:b0:b2:b9:25:1d:
9f:33:24:b5:95:65:f8:0c:38:41:bd:20:58:95:fd:
38:c9:96:39:2b:92:76:5f:f0:94:a0:78:0a:ef:f2:
98:89:6a:af:3c:21:a8:b5:4a:fe:52:46:57:99:a7:
ac:f8:ff:a5:fe:d0:d4:9b:ce:eb:21:11:ea:e1:1d:
e1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:18:66:1B:5D:C1:22:E9:E4:C3:05:9E:47:EA:C9:C4:7C:21:89:4D
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/HRhmG13BIunkwwWeR-rJxHwhiU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:83b0::/48
Signature Algorithm: sha256WithRSAEncryption
7e:de:45:2f:c9:a7:9d:48:39:49:4f:ac:17:0d:38:19:e6:5f:
d6:36:2b:da:ed:bb:23:05:3b:7d:0a:0e:f0:b4:82:f8:10:b0:
5b:4b:d0:c3:0e:99:63:d8:07:fa:c2:c3:b9:2b:1b:38:d3:bb:
ad:30:f4:62:58:11:79:6e:26:5c:e2:d6:05:80:39:a7:10:1e:
67:36:54:94:f8:48:9e:f7:a5:05:91:96:18:b2:47:46:d6:f4:
e1:36:df:3f:56:65:06:a2:af:92:58:86:cc:47:6e:1f:04:7d:
a6:83:f2:95:8d:31:88:bf:8c:2b:94:0b:6d:aa:da:49:4f:24:
04:8b:77:3a:06:5d:32:51:09:a1:fc:e9:04:8c:5b:b7:75:aa:
38:27:c4:e6:f8:4b:cb:b9:9d:ed:ee:f6:a1:f7:46:15:ad:d6:
90:4a:e5:65:c3:05:07:bc:bb:02:f2:c5:b1:75:9f:b6:14:7c:
39:a6:5d:fa:a3:31:9d:23:31:38:49:29:d7:c4:20:61:61:78:
5d:29:ef:7a:61:61:75:15:5d:b9:9d:10:c1:ec:70:5f:45:45:
7e:af:a3:97:48:78:68:a4:3a:16:cd:3e:af:b4:d9:cb:64:31:
a6:a2:9f:0f:38:28:f5:35:4e:48:a1:0e:43:a9:db:37:14:08:
66:03:e2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:36:57 2024 by rpki-client on console-fra.rpki-client.org