Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/0f355a-3a0a-46ec-b07f-866607af2fa5/1/byeRQb1vOV3ywnQDAOnfL3sfnFI.roa
File: byeRQb1vOV3ywnQDAOnfL3sfnFI.roa (raw, json)
Hash identifier: FUE2x8LgMVvfCov47rlyjMWJ9uCiaP9uuCj0oTMIxjU=
Subject key identifier: 6F:27:91:41:BD:6F:39:5D:F2:C2:74:03:00:E9:DF:2F:7B:1F:9C:52
Certificate issuer: /CN=a378118db05e4c93e76fa1f1c95679c705beb208
Certificate serial: 01856F3923DECFA43A9AECBA90B77418B50F
Authority key identifier: A3:78:11:8D:B0:5E:4C:93:E7:6F:A1:F1:C9:56:79:C7:05:BE:B2:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3gRjbBeTJPnb6HxyVZ5xwW-sgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/0f355a-3a0a-46ec-b07f-866607af2fa5/1/byeRQb1vOV3ywnQDAOnfL3sfnFI.roa
Signing time: Sun 01 Jan 2023 21:24:53 +0000
ROA not before: Sun 01 Jan 2023 21:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15542
IP address blocks: 2001:67c:2ef0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:23:de:cf:a4:3a:9a:ec:ba:90:b7:74:18:b5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a378118db05e4c93e76fa1f1c95679c705beb208
Validity
Not Before: Jan 1 21:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f279141bd6f395df2c2740300e9df2f7b1f9c52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c8:a8:80:15:5d:25:b5:38:23:4a:d2:36:42:
f9:a8:e1:68:48:74:39:e0:7c:78:11:79:6b:8b:c5:
0c:6e:1f:d4:90:fd:3f:50:fd:ae:6c:36:13:4e:6a:
8c:70:a1:d7:90:dd:09:be:f1:de:81:6d:59:6d:c6:
02:df:0e:9d:0c:58:ed:7a:cb:ca:4c:f0:1b:62:6b:
34:f4:b9:6c:a6:6f:b1:9b:7f:95:50:79:23:48:88:
b6:e2:3c:93:0d:69:e6:da:d7:4c:24:c0:b4:99:a2:
e2:eb:68:69:68:e1:72:89:4a:3c:cd:1a:6d:d0:29:
ef:33:fb:2e:78:97:ce:b2:b5:67:e2:71:54:a7:a5:
53:be:5a:24:7f:33:af:2a:b5:4a:6b:4a:9e:63:5f:
d3:ce:d6:52:5b:29:6c:ab:ba:18:8d:13:01:1d:48:
39:04:3f:51:49:0d:3c:bb:77:f3:9b:37:a4:e0:ed:
13:fd:b9:fc:19:45:31:e3:e8:9f:82:bd:72:25:9e:
84:99:5a:c7:fa:eb:6c:83:68:bb:86:80:c9:87:d4:
9d:27:09:82:dd:54:f4:3e:bf:2c:02:a8:15:13:d7:
80:ac:36:17:42:9c:e8:fa:cc:92:7c:9b:cd:4b:0c:
b6:85:f3:37:36:cf:d3:41:65:1d:8b:59:16:77:1e:
34:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:27:91:41:BD:6F:39:5D:F2:C2:74:03:00:E9:DF:2F:7B:1F:9C:52
X509v3 Authority Key Identifier:
keyid:A3:78:11:8D:B0:5E:4C:93:E7:6F:A1:F1:C9:56:79:C7:05:BE:B2:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3gRjbBeTJPnb6HxyVZ5xwW-sgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/0f355a-3a0a-46ec-b07f-866607af2fa5/1/byeRQb1vOV3ywnQDAOnfL3sfnFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/0f355a-3a0a-46ec-b07f-866607af2fa5/1/o3gRjbBeTJPnb6HxyVZ5xwW-sgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ef0::/48
Signature Algorithm: sha256WithRSAEncryption
96:6e:ca:68:48:e2:fd:bc:e1:f9:82:b9:7a:f7:be:eb:26:7d:
1b:c0:7a:95:80:25:54:05:bb:ac:4d:d4:3b:4c:82:5f:63:11:
b0:ee:f5:ca:49:d7:bd:b9:ab:61:2e:27:79:cd:81:1c:05:53:
52:82:6d:85:0f:4c:31:1f:e9:93:11:62:0d:5c:ce:0b:1e:c4:
b2:36:ec:f0:fa:7b:7c:87:9b:c7:f2:98:52:b5:1d:54:fc:9d:
92:d1:43:c9:52:21:2a:a1:fe:1a:1d:d1:7a:d4:d3:7a:37:4a:
45:05:de:52:70:08:aa:f2:84:87:7f:9d:c6:d2:7f:61:c1:58:
e7:a8:4c:97:63:4d:8b:24:a6:ff:7b:e6:0e:bb:e6:12:c8:4d:
b7:27:93:84:2e:2f:18:17:cc:a8:aa:bd:81:4e:57:54:66:ac:
47:e9:fa:bd:ec:98:fc:30:46:c1:ee:0b:ee:22:77:01:65:84:
e4:ee:03:6d:72:97:66:f2:96:d6:4e:d0:65:4b:92:84:5e:25:
e9:50:c5:06:d9:1b:b2:c2:64:3a:73:99:f6:58:31:9d:12:15:
a8:51:a4:b2:fe:32:5c:2e:f8:ef:10:60:0d:78:de:c1:0c:06:
eb:a6:24:45:67:50:18:4c:b3:04:1a:c0:25:0a:55:56:7d:a3:
e8:05:7d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:19 2024 by rpki-client on console-fra.rpki-client.org