Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/iSIspENVcsSEjp25GGWu-tHF3QQ.roa
File: iSIspENVcsSEjp25GGWu-tHF3QQ.roa (raw, json)
Hash identifier: y6eqrO59AuqWbTSohbNfInvE9iAA+cPu4D09VUnhxfU=
Subject key identifier: 89:22:2C:A4:43:55:72:C4:84:8E:9D:B9:18:65:AE:FA:D1:C5:DD:04
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246C3B6EFBC26986E718C0904595CE5
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/iSIspENVcsSEjp25GGWu-tHF3QQ.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50131
IP address blocks: 2a0c:9a40:808d::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c3:b6:ef:bc:26:98:6e:71:8c:09:04:59:5c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89222ca4435572c4848e9db91865aefad1c5dd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:36:74:62:57:90:8b:6e:29:dd:81:72:64:ea:
c6:1f:a6:f9:b4:05:15:23:6c:f4:dc:cb:80:6d:7e:
8c:a3:0e:f2:15:7c:e0:ad:57:65:f0:88:86:f3:27:
3a:6b:14:ae:54:55:ae:d4:61:19:6c:6b:c0:23:d1:
5c:56:40:d3:c7:4b:d4:bb:5a:2e:e7:63:dc:97:23:
d7:84:67:b2:33:bf:5a:c8:cc:6a:3f:5b:33:e1:9f:
34:c3:48:71:3e:34:92:74:ff:7a:08:09:2e:e9:f7:
d7:3d:3c:f4:db:65:d8:43:5d:d9:f9:e9:59:d0:4a:
ff:c9:89:63:fe:b3:a4:8d:5d:2b:f9:e9:7f:ef:0c:
71:a3:1b:af:f2:b6:c4:2b:f3:49:ad:8a:bd:ae:88:
ae:d8:de:2f:1a:51:3d:64:56:83:fc:5c:46:2d:57:
0a:4f:d1:d1:a0:5d:7a:be:12:6e:1f:f1:f8:09:b6:
57:ae:0c:40:a8:74:5d:7e:8b:0a:10:5e:28:43:8f:
96:1a:a7:75:ce:69:8f:54:a8:3d:17:f7:f3:cb:ef:
c4:4d:f7:c5:ce:8d:36:6c:43:3b:5a:a0:a2:6c:3b:
eb:79:bc:ba:0e:f9:62:3c:48:3f:03:db:3b:a7:5c:
db:48:c5:ce:62:d2:f2:07:d8:c6:c7:5c:97:93:0f:
c7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:22:2C:A4:43:55:72:C4:84:8E:9D:B9:18:65:AE:FA:D1:C5:DD:04
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/iSIspENVcsSEjp25GGWu-tHF3QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:808d::/48
Signature Algorithm: sha256WithRSAEncryption
c6:7e:ad:99:f4:ed:d2:08:6a:5f:21:16:a5:d4:4e:ad:5e:19:
32:06:db:bb:5b:69:f8:c9:50:a3:69:8c:01:5e:d9:41:c5:30:
37:a0:43:a5:2f:5c:2c:78:f5:f2:3b:9e:4b:39:af:4b:24:45:
fc:d7:a5:d7:b5:7c:34:63:c5:a0:6d:8f:48:fe:00:be:a7:1c:
7f:ee:60:4e:34:22:1a:a6:07:42:92:31:78:7b:7b:55:8a:73:
10:19:67:38:f9:9b:c8:f8:23:16:0c:cc:21:57:e3:3f:22:82:
ce:e6:56:51:6f:ae:6a:f9:a1:3d:be:d1:5d:60:63:7f:1e:83:
a5:06:ac:fc:82:85:a0:07:67:bc:c3:dd:1c:38:5f:3c:fd:62:
57:10:5d:e2:e1:db:c4:5b:0d:69:a0:88:b7:a5:61:d8:92:d3:
94:5c:b3:20:b5:c3:b8:87:af:4d:78:d2:ef:87:93:78:e4:ca:
f4:20:e4:37:70:91:68:20:47:9a:cb:49:70:28:56:79:89:d9:
68:7f:2a:9b:82:7c:42:16:ed:21:46:9a:d0:43:6d:ba:db:c4:
f1:f6:b5:68:50:4b:af:d3:fe:bb:e3:0a:8f:e8:22:61:8e:74:
d3:24:7e:3a:1b:f6:d2:a5:a9:47:1d:b6:6a:49:97:62:9e:8b:
b0:df:d2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:19 2024 by rpki-client on console-ams.rpki-client.org