Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/xFD7RtP-Ohla5NPgwR5iuf-OHjU.roa
File: xFD7RtP-Ohla5NPgwR5iuf-OHjU.roa (raw, json)
Hash identifier: sRYx69ZRkp5WXTwRQ+o4S9ClgM9tO3y6Xac7IvdkmOs=
Subject key identifier: C4:50:FB:46:D3:FE:3A:19:5A:E4:D3:E0:C1:1E:62:B9:FF:8E:1E:35
Certificate issuer: /CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Certificate serial: 0185821836B2F5672E217CB6F04CFCB5C165
Authority key identifier: ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/xFD7RtP-Ohla5NPgwR5iuf-OHjU.roa
Signing time: Thu 05 Jan 2023 13:21:43 +0000
ROA not before: Thu 05 Jan 2023 13:21:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207480
IP address blocks: 2a06:1e82::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:18:36:b2:f5:67:2e:21:7c:b6:f0:4c:fc:b5:c1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Validity
Not Before: Jan 5 13:21:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c450fb46d3fe3a195ae4d3e0c11e62b9ff8e1e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:82:aa:ef:74:ee:fa:bf:e6:8d:20:d4:3a:55:
e8:17:da:8a:54:12:a0:41:2c:00:3c:c0:82:63:e5:
e4:8e:e6:6c:ca:c5:c1:00:25:60:c7:ae:29:f1:b3:
17:fc:0f:5f:a2:6c:b1:ec:d7:db:03:48:66:c9:c0:
66:d2:1b:f3:1d:db:9d:f5:eb:21:f6:d9:0d:c5:f0:
67:cd:d5:ce:43:d3:02:9a:2c:b2:7a:ec:40:36:35:
af:dd:27:ae:8b:0e:38:a5:8e:0b:94:5d:c4:48:da:
94:8b:91:ed:c1:a7:c2:2a:10:62:60:16:a4:d5:5f:
1e:1e:f5:c2:aa:76:90:c6:4e:49:5e:5d:da:de:df:
4b:d5:a8:87:65:9c:e5:1f:19:76:bd:e7:8d:99:7d:
e6:38:1b:32:95:15:97:39:c2:8a:82:9c:72:cc:0f:
8b:07:9f:db:4f:14:2c:5c:a4:a5:0a:e2:88:e3:f0:
01:f9:eb:75:f6:aa:57:80:13:75:06:64:9c:f1:39:
42:bd:0b:f1:7c:6c:be:3b:97:16:4d:bb:b3:93:b5:
f6:03:e8:0d:46:47:21:d6:1c:e6:92:2d:02:bc:a4:
e9:af:c0:76:2f:dd:d5:4c:53:ad:cb:13:b7:17:3c:
e3:e9:35:f7:bb:8d:00:08:c1:4c:fa:bc:46:be:a5:
3b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:50:FB:46:D3:FE:3A:19:5A:E4:D3:E0:C1:1E:62:B9:FF:8E:1E:35
X509v3 Authority Key Identifier:
keyid:ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/xFD7RtP-Ohla5NPgwR5iuf-OHjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/7XfmuSWzt6eruSiF1V1zPcX6YtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1e82::/44
Signature Algorithm: sha256WithRSAEncryption
65:93:dc:e8:f1:df:7d:e5:79:70:f9:a8:a4:dd:0e:6f:02:3d:
19:36:1b:ac:93:e8:c3:45:de:5d:3f:66:88:6c:bc:c4:42:68:
fa:ce:42:b0:41:39:89:a7:93:0d:86:9c:25:ce:e1:a6:63:cd:
41:a6:56:5c:5c:40:11:89:ad:c6:7d:e7:11:ea:2f:b1:5b:67:
b2:7c:12:90:c8:13:e2:b6:4a:0a:cf:cb:68:6c:c5:05:26:35:
ec:7b:e1:e1:4e:fe:9e:c6:1d:c1:b0:f4:ba:28:b3:25:75:92:
84:fb:b8:8e:6c:1e:a5:11:82:05:75:e0:0f:eb:ea:02:a0:a8:
2f:f2:37:ee:66:1f:cd:68:52:ed:40:8d:44:52:9d:3e:89:e3:
39:0f:bc:d7:d8:9a:4b:5a:24:48:75:18:b7:26:4f:1e:18:d6:
28:c5:85:60:bd:47:d8:ca:e2:25:a1:0a:8a:db:dd:c7:d3:0f:
16:ad:82:1c:db:77:65:e0:8b:7d:5b:c2:9c:69:16:ea:a4:5c:
91:6c:44:24:7b:66:9d:e0:84:2e:83:a4:30:8d:d5:1d:52:c5:
b4:c1:f3:de:61:66:87:ea:76:fb:fe:73:73:6d:5a:88:11:e2:
bb:7c:c3:6e:e6:f6:6a:bc:1b:a2:c5:8e:a8:6f:f4:89:32:ff:
43:e7:83:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:45 2024 by rpki-client on console-ams.rpki-client.org