Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/LQMMHKr7CR5FAuYJeW4F33-wXSM.roa
File: LQMMHKr7CR5FAuYJeW4F33-wXSM.roa (raw, json)
Hash identifier: M2tidfIHQRZoN77OmrXafquNwXIAySY5Ndo1dzuxRzs=
Subject key identifier: 2D:03:0C:1C:AA:FB:09:1E:45:02:E6:09:79:6E:05:DF:7F:B0:5D:23
Certificate issuer: /CN=d301991fc343f358c0f2eebae55cf2da34521c7a
Certificate serial: 0186EF83A3D6571C7B0846E8F8F21D041A52
Authority key identifier: D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/LQMMHKr7CR5FAuYJeW4F33-wXSM.roa
Signing time: Fri 17 Mar 2023 12:20:27 +0000
ROA not before: Fri 17 Mar 2023 12:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211005
IP address blocks: 2001:678:fe0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:83:a3:d6:57:1c:7b:08:46:e8:f8:f2:1d:04:1a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d301991fc343f358c0f2eebae55cf2da34521c7a
Validity
Not Before: Mar 17 12:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d030c1caafb091e4502e609796e05df7fb05d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:8b:91:1a:20:2d:6c:65:f9:e1:05:8b:18:
47:82:5a:28:f4:ab:56:5e:c5:e0:26:a2:6c:a1:20:
2d:12:ce:65:c9:be:bb:47:f1:89:9e:a9:43:18:e7:
20:49:fc:65:05:3b:d1:38:05:6a:f9:5d:5a:ab:3d:
6a:c1:f2:f3:e1:c7:52:6a:9a:24:b6:a3:c6:75:88:
b4:a1:01:b8:dd:55:a3:91:54:5a:96:5f:5b:bb:28:
1f:4f:2d:a5:0b:f4:d4:22:4c:c3:5c:bd:cd:93:c7:
00:af:c0:da:9a:f7:9a:79:9d:1b:7e:a5:f3:9e:e8:
97:e6:96:74:4d:5d:fd:20:80:ad:80:cf:27:a7:f0:
96:10:b8:32:3f:3a:aa:28:ef:4e:14:ff:1b:08:d8:
3d:b4:54:6d:31:86:ab:3d:62:14:19:f0:1b:69:c6:
57:a0:af:7b:af:0a:26:0b:e8:af:e8:ca:c6:2b:ea:
c8:7e:b7:6a:44:ff:43:08:24:4e:24:73:a3:bd:76:
fb:30:4d:93:ac:f9:22:f5:2d:a2:d8:89:3e:00:47:
07:28:a0:37:d6:d7:a4:4c:c4:4c:c4:96:b8:17:35:
44:54:8c:af:d3:9f:2b:37:fc:df:7a:57:62:aa:57:
ef:fb:f9:f8:c8:4a:92:b5:ce:f4:53:14:16:da:ce:
b4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:03:0C:1C:AA:FB:09:1E:45:02:E6:09:79:6E:05:DF:7F:B0:5D:23
X509v3 Authority Key Identifier:
keyid:D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/LQMMHKr7CR5FAuYJeW4F33-wXSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/0wGZH8ND81jA8u665Vzy2jRSHHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:fe0::/48
Signature Algorithm: sha256WithRSAEncryption
08:71:bc:1e:ea:f6:89:b5:da:1b:47:55:1c:74:04:2b:3e:14:
2a:15:2f:17:fd:b7:05:ae:d4:a4:e4:a7:15:4a:73:d0:55:79:
7f:14:65:e6:96:c2:03:94:bd:17:f6:ce:48:70:13:20:65:b3:
ec:e8:2a:7f:ea:1a:e2:3d:b9:4f:91:56:93:fb:80:ce:64:66:
37:7f:c5:bd:e3:10:20:e2:76:c8:13:23:88:08:0e:88:18:d3:
c2:2c:82:b6:05:25:d2:71:fa:45:5b:01:2c:c3:35:d0:4e:96:
5b:0b:18:b7:3b:d7:dc:95:b7:64:1a:be:e9:c2:6a:a1:64:ed:
83:b4:6f:0f:be:b9:ad:ad:fd:35:54:a9:4f:ed:e0:9a:d6:a3:
ac:d8:4f:e0:21:a7:80:8e:b8:c3:d4:71:d7:28:00:36:dc:01:
0c:0d:3f:df:e8:3b:f0:36:62:cf:b1:61:72:05:30:c3:c7:97:
c7:cd:0c:6a:c0:a7:40:b6:93:1c:66:80:88:74:30:75:35:82:
23:a5:96:37:66:6e:d8:3e:cb:16:62:9b:35:76:c5:4b:54:1a:
bd:6c:84:c6:1d:2a:c9:d7:27:0c:e8:e4:2a:ee:51:79:74:a8:
1e:cc:8e:7b:a9:a1:33:51:42:02:44:9d:11:33:40:29:87:63:
af:ce:b8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:18 2024 by rpki-client on console-ams.rpki-client.org