Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/g00KophuZlmLyYG9zMf1ClDq0oQ.roa
File: g00KophuZlmLyYG9zMf1ClDq0oQ.roa (raw, json)
Hash identifier: 6XVlPunUY+f4XdRuWP+4u1CgtONICh1rqqzypmsjTG4=
Subject key identifier: 83:4D:0A:A2:98:6E:66:59:8B:C9:81:BD:CC:C7:F5:0A:50:EA:D2:84
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246DF60817575C65E22B6871A5FE8BE
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/g00KophuZlmLyYG9zMf1ClDq0oQ.roa
Signing time: Mon 02 Jan 2023 11:38:45 +0000
ROA not before: Mon 02 Jan 2023 11:38:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210633
IP address blocks: 2a0c:9a40:8170::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:df:60:81:75:75:c6:5e:22:b6:87:1a:5f:e8:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=834d0aa2986e66598bc981bdccc7f50a50ead284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a0:f2:44:ad:43:19:3f:65:0f:11:f9:61:e5:
fb:d3:cc:d8:f8:20:36:f7:e5:89:80:ec:67:ae:b8:
33:6e:46:71:84:76:af:ea:71:0b:2f:e7:0a:31:2c:
69:4c:8c:16:33:fc:9f:4a:1b:06:70:ea:92:7c:94:
3f:b3:c3:51:df:ab:92:8a:4f:87:24:b4:10:43:f7:
15:08:1a:4c:d3:fa:ea:fb:94:56:c6:d2:e9:2e:74:
57:f7:29:bf:51:99:8b:e7:92:5b:ca:b7:3d:f5:15:
42:4b:04:80:4f:40:5a:3f:8d:c7:24:3a:99:8f:e6:
0f:82:2d:da:d3:cf:eb:ab:52:39:6b:5b:c8:2a:0c:
8b:b6:40:22:51:26:9b:ef:65:12:e3:22:36:79:1d:
14:60:24:d9:71:07:80:42:d2:1a:2b:8a:de:7c:6d:
2d:e1:0d:4f:73:48:a7:61:60:a3:07:b5:04:8a:1b:
d0:71:01:28:2f:56:81:59:8f:c9:1c:c8:72:ae:dd:
25:dd:08:2f:0e:d0:74:f5:fb:e6:49:38:2d:b1:8a:
f7:32:9f:d5:05:c0:87:09:32:3a:47:e1:a8:75:fa:
74:9d:ea:af:c9:25:39:1a:79:03:5c:4d:b7:35:57:
f9:76:66:24:0b:49:41:ca:5c:47:82:bd:6b:19:fe:
57:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4D:0A:A2:98:6E:66:59:8B:C9:81:BD:CC:C7:F5:0A:50:EA:D2:84
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/g00KophuZlmLyYG9zMf1ClDq0oQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8170::/48
Signature Algorithm: sha256WithRSAEncryption
74:08:8c:40:10:05:52:3c:4d:bd:de:b6:a0:7f:29:c6:93:43:
d7:a2:5c:d2:14:53:2f:b5:47:b6:46:cc:0f:8e:42:33:f3:06:
23:8f:f0:ef:29:82:56:20:f4:ac:72:a8:5e:94:4d:25:13:ac:
02:01:6c:24:da:db:b1:26:4f:c7:30:c0:4a:df:33:62:c4:08:
96:23:e3:3c:31:db:03:5f:43:35:64:92:77:d1:8f:00:f0:74:
92:26:ff:74:ef:06:6b:39:88:fc:85:58:26:fd:6c:fe:52:57:
e3:a5:a9:37:1e:6e:7e:58:1f:35:4d:0e:00:c6:5a:95:24:f3:
18:76:20:fd:7f:5d:3e:33:6d:86:5f:a2:32:21:83:79:81:4c:
98:47:37:08:f9:ec:64:8b:c5:93:f7:a5:4f:bc:93:0f:41:9f:
2b:44:d1:65:48:ba:cb:98:51:ca:26:1c:77:ee:4d:ab:15:d6:
3a:e9:5f:6e:bc:f1:8d:e5:11:e4:38:c6:3d:58:ee:f6:b3:d7:
ea:c4:35:40:38:b6:0b:f3:a1:ef:6d:cb:27:75:31:bd:f5:80:
ad:4a:d6:04:12:af:e1:ee:25:88:f6:fd:ee:66:c5:f7:98:e1:
f0:d7:d6:fa:44:d8:77:df:67:a8:6a:7f:13:79:d2:2c:e8:92:
a2:ef:c0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:36:57 2024 by rpki-client on console-fra.rpki-client.org