Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rDnRKwya2mASNDDc_VlRPX-EIl8.roa
File: rDnRKwya2mASNDDc_VlRPX-EIl8.roa (raw, json)
Hash identifier: fVLgwuLtOkL9nR+OO2buEdtWKu37q3w97AbARai+AgA=
Subject key identifier: AC:39:D1:2B:0C:9A:DA:60:12:34:30:DC:FD:59:51:3D:7F:84:22:5F
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246D2FAB92F538D8FFADD57458154E3
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rDnRKwya2mASNDDc_VlRPX-EIl8.roa
Signing time: Mon 02 Jan 2023 11:38:42 +0000
ROA not before: Mon 02 Jan 2023 11:38:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205102
IP address blocks: 2a0c:9a40:8230::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d2:fa:b9:2f:53:8d:8f:fa:dd:57:45:81:54:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac39d12b0c9ada60123430dcfd59513d7f84225f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7c:fd:c7:b3:b6:9f:a3:33:2c:86:39:5d:cd:
a9:7c:73:ba:ce:5d:1f:78:f5:27:78:99:a0:80:ed:
96:2e:b2:e8:24:22:8f:17:9e:d5:16:db:36:ba:82:
52:d7:cd:e3:93:b2:10:87:ea:ad:8b:f9:8e:7b:aa:
22:c6:7a:82:5f:9e:ed:32:df:18:38:56:2b:25:ac:
a4:7d:8c:ef:35:cd:aa:d1:12:1b:4c:17:d8:98:0c:
52:24:d6:81:92:97:1c:e5:00:09:92:5f:7b:bd:bc:
56:85:c4:20:46:fc:5a:4b:b0:47:47:d9:f2:7c:8c:
00:73:bf:ef:5c:7f:df:e9:06:0a:34:27:f7:45:58:
70:c0:a9:3b:99:07:cf:f3:69:96:54:1e:2d:8a:8d:
2c:43:d8:29:86:1d:2b:8d:b5:3e:ea:ac:41:0e:ce:
11:42:67:04:62:f4:15:61:2b:28:aa:d6:ed:06:49:
34:3f:2f:12:be:b8:da:96:03:27:98:cc:69:d1:7f:
d3:41:23:73:42:fd:b3:b4:37:dc:8b:da:5b:50:f6:
1c:14:9c:82:91:2b:1b:0e:b5:07:e0:71:06:b8:42:
6c:82:a6:a3:14:18:c9:62:81:5f:31:4b:b8:13:ea:
8d:00:6a:21:96:58:13:6b:00:8e:91:42:e8:93:23:
d6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:39:D1:2B:0C:9A:DA:60:12:34:30:DC:FD:59:51:3D:7F:84:22:5F
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rDnRKwya2mASNDDc_VlRPX-EIl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8230::/44
Signature Algorithm: sha256WithRSAEncryption
af:0d:c7:3a:09:56:68:db:cf:ef:60:08:08:1a:5a:1f:2d:9d:
5b:38:96:d5:5d:c9:6e:bd:26:99:7e:ce:95:29:ab:89:3c:b0:
45:d2:9b:a5:d3:1d:38:07:66:96:4f:5b:3c:4f:a9:b0:c6:ab:
4e:1d:6d:d1:13:83:00:86:38:9c:cb:4b:d1:a0:02:89:c4:8d:
51:04:b8:05:dc:bc:e5:8b:cf:e3:26:b5:0c:1c:15:3f:34:fb:
53:a7:4a:a7:a1:69:22:4b:98:e7:4c:4d:74:dc:33:0e:67:29:
92:bd:ce:d1:e5:7a:84:8b:d4:eb:90:08:a7:60:78:c5:8e:c4:
f7:e4:d6:ee:2a:b3:4a:0f:ec:d7:c0:6a:9c:84:d7:6e:56:a9:
d5:c2:28:fa:97:a1:c3:1f:b7:62:05:0a:a2:f5:f4:19:a3:6c:
10:85:9d:1c:0f:8b:cd:e4:9f:14:b3:16:b5:a5:c1:f0:55:89:
85:76:c8:03:09:5b:11:be:bf:86:70:9d:2f:ab:28:b8:25:1c:
4e:aa:3e:85:8b:64:65:00:de:e8:b8:9c:16:fd:05:c8:5e:5f:
b9:32:35:a1:08:a1:72:5a:50:72:42:02:9d:f1:be:89:4c:6c:
b4:92:80:2f:9e:7f:13:e7:11:8b:83:60:c4:86:cc:d8:86:32:
25:7c:92:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 25 12:31:24 2023 by rpki-client on console-ams.rpki-client.org