Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/hoMwukp0SmnW__HfKYO-gU5_0q4.roa
File: hoMwukp0SmnW__HfKYO-gU5_0q4.roa (raw, json)
Hash identifier: axpbKl8JkWIyZqRvh4svZ1+EJZ1jOj3XNaykjVA/s2w=
Subject key identifier: 86:83:30:BA:4A:74:4A:69:D6:FF:F1:DF:29:83:BE:81:4E:7F:D2:AE
Certificate issuer: /CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Certificate serial: 018582183708B106A8A72A3583E374783529
Authority key identifier: ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/hoMwukp0SmnW__HfKYO-gU5_0q4.roa
Signing time: Thu 05 Jan 2023 13:21:43 +0000
ROA not before: Thu 05 Jan 2023 13:21:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207960
IP address blocks: 2a0d:1a40:7900::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:18:37:08:b1:06:a8:a7:2a:35:83:e3:74:78:35:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Validity
Not Before: Jan 5 13:21:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=868330ba4a744a69d6fff1df2983be814e7fd2ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:5b:c3:09:3d:5d:84:a3:bb:b1:1d:b7:c7:
60:c3:d5:ce:7e:08:e7:e6:02:4b:71:86:ee:f9:72:
41:b0:23:6a:4d:ef:9e:f8:8d:36:cd:d6:94:0f:01:
22:bf:ff:2a:a3:f4:1b:f6:ca:83:fd:86:68:bc:ea:
47:17:38:32:9e:54:14:81:11:08:43:74:05:6a:79:
02:b5:94:d3:b3:52:53:a9:e9:b4:85:c9:34:20:f3:
69:f3:16:93:77:0f:e8:98:dd:ec:8a:97:2d:80:27:
24:0a:10:1e:cc:02:45:29:f0:89:64:a9:4e:e9:62:
9c:46:dc:b4:3d:64:0b:85:3d:43:75:97:5d:cb:40:
67:d2:22:b1:e2:e2:4e:01:60:36:4f:d6:78:d9:d3:
14:54:18:d1:5a:30:b5:89:4b:a9:1d:64:d9:47:a7:
7b:4c:2d:e4:44:dd:69:e5:38:4e:99:83:6d:b8:1c:
e4:d4:0d:b8:3f:9d:69:f8:76:61:28:41:b6:72:ed:
50:9c:e2:68:79:4a:b2:3c:f8:94:ac:17:37:57:fd:
47:53:6a:02:ee:d7:f5:d5:91:f0:a5:4a:f0:ca:f8:
8d:a1:2d:51:87:76:f3:3c:91:07:eb:81:ca:a4:8e:
ec:94:24:02:3a:3e:53:cd:64:83:47:22:81:77:73:
e4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:83:30:BA:4A:74:4A:69:D6:FF:F1:DF:29:83:BE:81:4E:7F:D2:AE
X509v3 Authority Key Identifier:
keyid:ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/hoMwukp0SmnW__HfKYO-gU5_0q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/7XfmuSWzt6eruSiF1V1zPcX6YtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:7900::/40
Signature Algorithm: sha256WithRSAEncryption
87:14:a1:9f:5f:be:28:e1:69:55:28:c2:be:4a:33:17:69:06:
db:a0:7e:6b:17:fe:0b:8d:6f:35:7b:cc:d8:27:bc:0a:4f:4e:
ac:6c:f8:ee:0a:c9:e2:a0:05:2f:4d:37:62:14:da:16:75:3f:
64:ab:e7:82:ac:db:0e:71:44:43:cd:65:56:8a:45:87:82:16:
67:04:a9:4c:ff:33:fc:99:43:54:cc:e3:cf:f5:ca:99:a2:93:
f8:3a:9a:7d:3e:37:11:aa:cf:b6:cc:42:f2:b0:f2:04:4c:25:
ec:ce:ed:7d:d2:a4:8e:20:7c:89:f1:74:9f:48:95:1f:99:c6:
23:cc:85:3a:16:8e:02:f4:a1:25:af:c2:0a:00:0f:74:d8:f6:
b6:f3:15:f7:4f:e1:1e:22:6d:a1:0e:e8:27:8d:c2:e4:2e:c5:
86:03:75:d2:b6:1c:ea:4f:5b:e7:c7:10:81:34:9d:4a:59:ec:
a5:46:a8:49:a7:1f:92:f4:d1:2d:7a:34:26:83:cb:2d:15:73:
c9:fe:c6:b8:0c:fe:16:8c:5e:64:a5:09:ee:a1:2c:b8:4e:db:
c1:9f:e0:03:1b:7e:db:e6:ab:55:00:1d:aa:0f:22:af:17:f7:
24:4a:67:df:31:80:22:ee:1a:28:a4:9c:cb:4c:b4:5b:68:8d:
1c:1e:81:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:45 2024 by rpki-client on console-ams.rpki-client.org