Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/kWcRc3pnr20CeIEMHh7TVptATZ8.roa
File: kWcRc3pnr20CeIEMHh7TVptATZ8.roa (raw, json)
Hash identifier: 9O+rFJWXFXDt6qLPSg8zm9Uiqwd2BSGLGtaXKs9wR9U=
Subject key identifier: 91:67:11:73:7A:67:AF:6D:02:78:81:0C:1E:1E:D3:56:9B:40:4D:9F
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185739016B20B5D4E7E3E77B93867DCCC30
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/kWcRc3pnr20CeIEMHh7TVptATZ8.roa
Signing time: Mon 02 Jan 2023 17:38:20 +0000
ROA not before: Mon 02 Jan 2023 17:38:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213115
IP address blocks: 2a0b:b87:ffb0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:16:b2:0b:5d:4e:7e:3e:77:b9:38:67:dc:cc:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=916711737a67af6d0278810c1e1ed3569b404d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:d9:20:c2:b1:ff:ae:b0:14:61:06:e3:0b:
22:5c:00:48:3d:3a:b6:fc:7e:b0:82:e0:23:77:a6:
43:48:80:83:5a:d8:35:e4:fa:de:0e:7b:c7:9a:ae:
f6:25:39:9a:ab:04:39:2c:e5:28:9d:e4:48:e3:50:
98:9f:df:38:0c:f8:7c:20:a6:3a:03:11:28:bf:2a:
6a:99:86:74:24:cf:e8:b5:67:b9:23:4b:1d:0c:13:
86:67:32:a6:3e:23:3f:6f:5c:b9:ad:14:6c:41:09:
f0:19:4f:fe:5b:4c:a7:3b:6c:32:f4:ab:37:c5:09:
db:84:2d:ac:63:e0:64:20:43:b4:de:ce:ec:ef:54:
06:5c:07:d0:ee:94:f6:61:bd:53:74:76:32:f7:35:
58:1e:20:74:0c:80:8d:e3:20:2a:52:19:f1:4f:77:
99:b8:d4:7d:5a:f6:10:82:a9:86:64:44:42:6d:31:
12:41:cc:71:cd:f6:9b:95:26:ab:2a:39:16:1f:84:
9c:bd:f3:fd:a0:2a:1b:ea:8e:2e:ed:8b:6e:0b:79:
6c:e5:a0:b4:95:bd:e6:e3:b9:d3:12:6f:9c:8a:b4:
24:75:86:f1:2f:7e:0a:24:8a:fd:45:b7:a0:c7:d0:
3a:f4:58:e8:d4:d8:d8:d9:63:8c:3f:64:dd:d8:77:
e0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:67:11:73:7A:67:AF:6D:02:78:81:0C:1E:1E:D3:56:9B:40:4D:9F
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/kWcRc3pnr20CeIEMHh7TVptATZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffb0::/48
Signature Algorithm: sha256WithRSAEncryption
2f:91:1c:86:5a:82:9e:2d:13:fd:db:16:a4:a3:9b:c6:17:e5:
f3:db:6c:de:70:61:39:52:59:ec:7d:a8:62:36:12:25:11:6e:
f7:60:58:82:d8:7d:b7:67:f8:45:27:10:41:08:4e:b6:21:33:
9a:66:70:e0:f7:2f:b3:4b:3b:a0:1c:95:3a:b4:bd:60:fa:b2:
ef:39:61:96:3f:c6:a0:49:b4:9c:d9:e2:fb:df:f8:71:ab:38:
e9:dd:13:28:29:c0:32:48:bb:05:b2:18:de:74:e6:59:1b:56:
a5:21:c0:1e:ba:ad:ae:7d:12:c5:a0:bb:69:1a:54:97:b2:68:
b1:46:58:e1:f0:ac:34:fb:a2:53:3c:39:49:2d:b6:45:a5:b2:
74:5f:32:e9:2e:17:ae:cb:65:db:f7:44:e8:fd:48:83:94:59:
ca:c0:fa:12:16:06:0c:8a:48:8b:f0:ba:5d:ae:a6:36:9f:f9:
63:b7:06:ea:ff:58:4a:fc:9e:3b:e5:25:bb:43:f6:95:7f:93:
00:1d:c9:50:f5:08:7d:7c:96:22:87:57:76:bb:75:6e:df:d2:
41:3f:e6:e2:18:c3:b9:ee:09:c8:90:d3:d3:f4:a1:54:97:19:
df:2e:85:4c:58:e3:7b:f8:28:60:75:e5:7b:5b:f6:a8:c7:71:
e8:b5:19:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:21 2024 by rpki-client on console-fra.rpki-client.org