Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/HlR46Ir-PVzQy7-VBUPWMt6IPEk.roa
File: HlR46Ir-PVzQy7-VBUPWMt6IPEk.roa (raw, json)
Hash identifier: /XDH3mv2D7IlPYtr+DK6BKyBEtYAMfLqlqEjscZJXvs=
Subject key identifier: 1E:54:78:E8:8A:FE:3D:5C:D0:CB:BF:95:05:43:D6:32:DE:88:3C:49
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246D116211F6D0C95200D45966A3693
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/HlR46Ir-PVzQy7-VBUPWMt6IPEk.roa
Signing time: Mon 02 Jan 2023 11:38:41 +0000
ROA not before: Mon 02 Jan 2023 11:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203423
IP address blocks: 2a0c:9a40:9400::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d1:16:21:1f:6d:0c:95:20:0d:45:96:6a:36:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e5478e88afe3d5cd0cbbf950543d632de883c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:83:29:84:6f:0f:b6:6b:e7:1b:46:1b:a7:8f:
92:82:82:3e:23:54:26:78:89:48:de:61:fc:d2:e6:
0f:ce:0f:41:c8:fb:ab:24:6d:11:1a:61:90:30:05:
7b:39:bb:16:b1:08:0f:38:51:96:18:eb:35:16:f8:
29:14:b4:61:0c:fc:d6:6d:da:2c:90:ef:a9:4c:db:
90:05:23:78:93:1f:e4:de:72:0d:42:b0:42:74:6f:
82:17:e2:7e:59:76:3a:fa:a9:65:f3:e9:0f:5b:80:
a6:02:dc:ac:16:03:c2:5a:cc:85:91:3a:14:91:52:
d3:6d:24:93:11:a9:12:76:0b:eb:63:d4:6c:f9:f0:
e9:7c:28:e5:01:4f:72:96:19:22:f9:8e:fb:f2:0d:
3b:83:0f:50:68:86:78:8a:03:87:c7:a1:48:f8:1e:
cb:30:2d:d7:8d:5a:11:c0:de:aa:63:b8:ba:fd:7e:
85:2e:cb:4d:43:2f:1b:28:49:22:e6:78:e6:18:a4:
af:99:91:a1:ca:20:b9:3e:f1:69:02:3a:a7:73:4b:
e3:80:ce:6b:c5:46:84:19:ca:5e:6a:f4:9d:c1:74:
1c:45:03:b9:29:84:f3:2b:11:10:1a:4e:3b:8d:bd:
a0:17:c2:0c:d9:30:dd:45:78:b1:31:c8:2f:81:91:
b1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:54:78:E8:8A:FE:3D:5C:D0:CB:BF:95:05:43:D6:32:DE:88:3C:49
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/HlR46Ir-PVzQy7-VBUPWMt6IPEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9400::/40
Signature Algorithm: sha256WithRSAEncryption
75:29:be:fe:a7:f7:bd:e4:de:1b:a6:97:7f:5d:0d:e5:ab:3c:
ef:be:2c:4c:48:8e:e0:28:3a:86:5e:39:da:e2:fa:02:df:f2:
3b:39:87:27:8d:60:e0:ae:26:21:79:cc:83:26:0f:15:ec:27:
89:34:d6:d6:16:47:51:ec:c7:e4:61:06:43:a5:4b:82:f5:d0:
b3:e1:c2:1a:7e:7d:ae:b4:90:00:e9:b4:0e:62:4b:3c:d8:aa:
03:c3:fb:50:8e:25:b7:2e:a5:cc:3a:ed:3a:24:20:2d:75:55:
73:ac:81:48:cf:94:01:14:e5:ee:24:c8:44:42:61:1b:0c:0a:
30:d4:a4:e5:28:ca:2c:6c:ec:6f:d4:77:5c:fa:d0:51:50:e2:
14:95:b3:3c:30:e4:e5:ef:04:d0:7c:e7:27:81:09:66:44:14:
c5:c6:90:4f:dc:1f:a1:5b:d7:0e:5b:b9:63:08:d2:cd:59:15:
2c:29:f8:48:73:cf:0d:a8:0a:1d:3a:2e:9d:52:a4:6a:d0:99:
30:85:72:91:75:8b:29:ce:8f:a4:ce:be:a7:9c:e1:b5:3d:26:
09:8e:2d:ea:5f:0e:36:75:76:3d:c7:c8:aa:a1:99:b4:2a:41:
6b:53:71:28:7b:83:66:72:1b:15:df:93:05:11:39:72:4a:18:
e2:cc:61:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 23 15:55:49 2023 by rpki-client on console-ams.rpki-client.org