Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/AHzU3EAnvYhHKFVQdj0r2at3IyA.roa
File: AHzU3EAnvYhHKFVQdj0r2at3IyA.roa (raw, json)
Hash identifier: tcYRylPRobsHPLw4POjcKJwdu3kP3tGR5kueMA0VhaM=
Subject key identifier: 00:7C:D4:DC:40:27:BD:88:47:28:55:50:76:3D:2B:D9:AB:77:23:20
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 0185704BF017A6345A9FBF4C3F2E80DDDDC3
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/AHzU3EAnvYhHKFVQdj0r2at3IyA.roa
Signing time: Mon 02 Jan 2023 02:25:02 +0000
ROA not before: Mon 02 Jan 2023 02:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2a13:5242::/32 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:f0:17:a6:34:5a:9f:bf:4c:3f:2e:80:dd:dd:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Jan 2 02:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=007cd4dc4027bd8847285550763d2bd9ab772320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:91:1b:dc:5a:e9:f3:ac:46:d0:80:1f:6f:70:
83:fc:56:ce:27:4d:71:7d:af:20:c6:f8:f3:6b:94:
5a:97:9e:bd:29:31:5b:0c:88:51:84:2e:51:4c:14:
19:69:ba:7b:b0:32:c9:a2:bd:1d:72:b7:a3:8e:99:
0e:b7:d9:eb:db:80:a2:d3:e0:3f:15:ff:e3:c1:b4:
65:55:be:ee:7d:34:8a:1a:be:c6:bb:6c:e6:fd:46:
b2:0e:8b:ff:c3:92:f8:0d:a1:51:91:58:1c:97:53:
19:1c:e1:a0:10:43:bd:18:35:a5:c6:0d:97:29:20:
19:d7:c6:2e:dc:c9:fd:bf:09:59:35:0a:05:15:67:
50:ae:1e:4d:fe:ed:a7:13:7c:c3:eb:65:b9:18:f0:
eb:a0:12:53:27:da:d7:11:7f:ae:a8:51:b3:04:90:
58:51:be:bf:2f:e9:e1:8c:20:00:68:40:f9:9a:da:
3c:0d:ff:1d:c0:30:a5:84:96:fc:14:63:9c:73:22:
e6:86:35:41:57:6b:19:7e:6f:05:18:ec:5d:32:39:
73:44:9e:87:0a:3d:7c:88:a2:12:0f:2b:3e:cb:1e:
f8:78:0a:d4:b1:ca:18:51:d3:63:a2:fe:fd:19:5a:
09:ad:51:7e:36:bc:e5:27:f8:f0:ea:8a:a7:47:5e:
4b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7C:D4:DC:40:27:BD:88:47:28:55:50:76:3D:2B:D9:AB:77:23:20
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/AHzU3EAnvYhHKFVQdj0r2at3IyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5242::/32
Signature Algorithm: sha256WithRSAEncryption
03:1e:49:34:5e:b7:31:27:ea:fa:12:11:a7:d3:8d:2e:aa:d5:
25:5d:7c:8b:77:9d:97:70:c3:ff:fa:b5:4b:f5:0f:d0:f0:51:
3b:d0:69:ef:d2:34:05:aa:38:87:ec:98:e1:12:3b:45:b8:2c:
91:db:8d:0e:30:76:d6:70:fc:3c:fd:05:d8:a9:70:db:90:ce:
d9:4a:22:07:26:b2:79:3b:eb:76:87:04:18:3c:a1:63:7d:26:
ff:1c:4f:fa:3f:26:48:6c:d9:c7:1f:27:38:6b:4c:24:48:eb:
2c:2b:5b:0c:47:0e:7e:8f:80:17:e1:b4:34:18:db:8d:ca:99:
dc:ff:c9:d0:f0:e6:7a:d3:7f:78:f0:1d:8e:d6:ae:c6:8f:48:
4e:3b:78:b5:6a:9c:0d:45:d9:26:d1:eb:e2:89:12:10:6f:9d:
06:bb:fa:aa:67:76:0a:14:db:4d:39:3e:b9:13:89:bc:f1:14:
8b:fc:6e:0f:10:f2:88:ca:e3:48:21:5b:09:9a:54:37:2a:37:
ea:27:96:ac:c3:8a:1f:06:41:b6:96:d8:e1:fa:60:e6:6b:4a:
84:26:30:3d:36:9f:70:18:fb:15:fb:a4:7b:b1:f6:1a:e2:ed:
e0:95:b5:de:ec:51:8c:91:3a:1e:4e:0b:43:59:95:71:4b:a9:
02:3b:26:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:30:53 2024 by rpki-client on console-fra.rpki-client.org