Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/LpnW6VNmfgSdftdyZP848mQLh98.roa
File: LpnW6VNmfgSdftdyZP848mQLh98.roa (raw, json)
Hash identifier: Vmh+y6I1+t/RTp8rz9vPpcG68P2ge0DQ5fsvkKsOJDA=
Subject key identifier: 2E:99:D6:E9:53:66:7E:04:9D:7E:D7:72:64:FF:38:F2:64:0B:87:DF
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246C2D45F1F48889B2CF30D957B0451
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/LpnW6VNmfgSdftdyZP848mQLh98.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49367
IP address blocks: 2a0c:9a40:8083::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c2:d4:5f:1f:48:88:9b:2c:f3:0d:95:7b:04:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e99d6e953667e049d7ed77264ff38f2640b87df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ec:fe:2f:08:a3:fe:80:15:b6:29:6f:a1:a2:
67:77:41:ee:eb:9c:5d:f8:b2:85:9a:de:30:8c:65:
72:58:0e:20:27:57:b5:33:d0:b9:6e:7d:7c:2c:28:
7a:d9:67:a6:ba:36:8e:ed:d2:67:55:3a:7f:46:25:
2f:a8:22:7d:48:c5:64:a8:a9:ad:2c:c9:fd:3f:76:
ec:7c:21:3a:ab:c8:92:6e:27:46:1c:a1:52:00:38:
81:27:c3:ef:3e:0e:8b:b2:af:8f:b9:7c:c4:61:2d:
84:20:d5:55:f9:4b:fe:10:4d:2c:ff:79:80:cb:a4:
8d:4c:50:9f:9b:1d:2b:bf:52:83:3b:57:31:72:e0:
83:39:0d:fd:7f:ff:58:8c:b8:4b:ed:34:ec:0a:2c:
a3:14:67:29:e5:53:96:02:48:24:4d:54:4f:cf:e5:
05:87:19:dd:a6:53:62:22:cb:08:bd:8e:a3:03:3e:
b5:27:a8:8e:8e:e4:89:e0:fe:64:5c:44:53:eb:9f:
fe:d7:1b:dc:d6:d6:12:7f:e7:da:3c:fa:31:0b:9b:
4f:00:90:35:12:77:0c:ad:3f:3b:c6:1d:3a:62:00:
60:0b:15:36:7d:6a:35:88:24:74:5b:fd:aa:13:0b:
00:8e:97:0e:e4:a5:f9:62:90:80:fd:89:53:89:b9:
5f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:99:D6:E9:53:66:7E:04:9D:7E:D7:72:64:FF:38:F2:64:0B:87:DF
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/LpnW6VNmfgSdftdyZP848mQLh98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8083::/48
Signature Algorithm: sha256WithRSAEncryption
59:dc:b8:a8:d6:8e:a3:c4:97:ed:e7:20:51:d7:23:16:b5:29:
47:d8:3c:7f:5d:d9:68:6b:f2:6c:3f:f4:cf:e4:6f:19:34:e9:
e6:25:1b:9d:84:2c:b1:7c:d9:06:3a:82:67:1d:6c:e4:db:00:
7e:a0:f6:39:f7:f1:30:95:d4:82:b8:b5:76:10:ee:9a:f3:4a:
d5:72:f0:5f:bc:9a:25:53:09:8b:38:4b:0b:23:6d:ce:e0:4f:
cf:2f:e4:e6:f1:eb:20:a2:d9:bb:a0:f1:62:cc:eb:69:5d:45:
3e:9a:7f:ff:89:5f:85:66:95:98:bc:b9:45:50:35:83:6b:71:
56:a6:31:d3:11:96:6a:e2:74:21:2a:37:3a:0e:63:5f:c1:c9:
d7:f1:f5:d0:71:54:21:fe:32:34:32:ae:af:41:d7:a6:f5:2e:
80:fb:b9:2f:6b:8a:1e:ac:72:e4:3f:58:fb:b8:69:fc:10:e9:
76:49:ed:68:16:95:a1:8f:72:71:c3:64:c2:ec:aa:e2:fa:7a:
ef:59:b9:e4:d0:1d:f9:c4:44:10:09:54:75:eb:3e:77:76:50:
90:1e:e3:66:b2:07:17:5a:48:ed:20:69:0a:0d:87:72:ea:e4:
d6:95:78:ae:17:85:21:7a:14:bf:70:8a:b9:d6:57:dd:21:b3:
98:b7:53:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:36:57 2024 by rpki-client on console-fra.rpki-client.org