Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/oy5lIyiopqicfjFza9rXU1dctQY.roa
File: oy5lIyiopqicfjFza9rXU1dctQY.roa (raw, json)
Hash identifier: P6JLXsJ2E8doosp++W3TXdLRwWnZYw0bqPrlQAhDX+w=
Subject key identifier: A3:2E:65:23:28:A8:A6:A8:9C:7E:31:73:6B:DA:D7:53:57:5C:B5:06
Certificate issuer: /CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Certificate serial: 018582183B1D01E4954E05D8F70BBAEC0005
Authority key identifier: ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/oy5lIyiopqicfjFza9rXU1dctQY.roa
Signing time: Thu 05 Jan 2023 13:21:44 +0000
ROA not before: Thu 05 Jan 2023 13:21:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211718
IP address blocks: 2a0d:1a40:7b00::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:18:3b:1d:01:e4:95:4e:05:d8:f7:0b:ba:ec:00:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Validity
Not Before: Jan 5 13:21:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a32e652328a8a6a89c7e31736bdad753575cb506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ae:af:db:f7:8d:11:dd:25:ff:07:83:d4:ba:
24:49:2c:a1:b9:12:1a:3e:10:d4:a9:2e:e4:39:17:
e5:0c:e6:4a:74:a8:67:4c:ae:1e:ca:1a:b4:42:de:
be:79:9c:d3:77:3f:82:e7:16:2c:2e:82:fe:6c:0c:
55:4c:95:38:c2:a6:70:07:09:2c:3b:13:56:e9:dd:
fd:18:a0:17:03:68:36:cb:1c:f1:98:f8:6d:65:d5:
fd:c3:25:ea:22:e7:44:4d:9a:89:eb:7b:c6:c4:01:
01:3e:de:5d:30:15:e6:39:da:3a:1a:1e:df:38:5b:
20:e4:ec:87:10:0d:5c:dd:1c:6e:c9:90:35:9c:ae:
dc:df:3c:6c:a5:84:0b:1e:b3:a6:5f:49:3f:d9:25:
8e:af:b4:34:bb:25:5a:09:53:74:6c:8a:48:11:31:
4a:6a:38:93:41:71:c1:ea:65:ed:70:f1:83:67:d5:
61:12:a3:55:04:fa:fe:3a:e7:9e:14:fd:ee:93:f7:
ea:b5:93:f6:ed:9a:03:c6:84:96:9e:c5:b8:1f:40:
83:71:01:2f:8e:86:79:63:ba:67:29:8b:92:67:0f:
2d:7f:a0:31:28:21:9a:fb:e8:ca:9b:6b:a9:b7:77:
1a:58:1d:ed:96:d1:93:b8:99:70:fa:71:d2:36:35:
ce:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2E:65:23:28:A8:A6:A8:9C:7E:31:73:6B:DA:D7:53:57:5C:B5:06
X509v3 Authority Key Identifier:
keyid:ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/oy5lIyiopqicfjFza9rXU1dctQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/7XfmuSWzt6eruSiF1V1zPcX6YtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:7b00::/48
Signature Algorithm: sha256WithRSAEncryption
84:ee:60:23:68:f2:a3:c7:c5:b5:d1:85:3b:02:22:d7:c5:6d:
09:d6:84:2c:d8:3b:88:49:40:ba:fb:9c:be:90:ae:38:85:5e:
ea:ea:bc:1c:a2:3d:7d:25:0c:c1:07:8d:39:be:0f:3d:96:4c:
7f:d1:f5:6d:78:af:e6:6a:60:ca:ce:d4:43:67:0f:77:45:c9:
06:bd:55:1d:32:8b:f2:c8:1d:5a:ef:fb:0d:41:08:78:6e:44:
20:eb:80:fb:6a:1a:0c:4b:d6:0b:ee:c3:81:72:7d:cf:06:6c:
9c:a3:9f:9a:ca:15:c0:0d:c7:1f:df:9f:d8:34:29:7e:a9:f2:
7b:da:9d:8f:86:fb:52:04:3d:99:fc:07:33:67:e0:c6:59:b5:
4e:a7:f8:41:f9:b8:94:b9:71:93:25:da:ef:d2:3a:c3:18:ec:
28:c4:f4:36:61:a2:b5:4b:95:b1:e1:56:7d:04:9b:70:34:48:
43:4d:98:13:ea:06:c3:85:ad:63:cc:f5:e1:08:1c:ff:de:da:
3e:d3:17:5b:1e:ff:c4:c2:e1:c2:2b:5c:74:84:3f:59:fc:07:
ff:cb:f1:62:80:8a:50:ee:1e:cd:b2:ff:bb:fa:33:c2:bc:83:
9c:09:d2:29:b9:8e:f6:24:1d:0c:8d:08:24:39:f8:15:60:c2:
81:82:f2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:45 2024 by rpki-client on console-ams.rpki-client.org