Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/Afq7chEn87dWn6OlVXQQCRLKf9M.roa
File: Afq7chEn87dWn6OlVXQQCRLKf9M.roa (raw, json)
Hash identifier: 4ZEa+Yjo4Ar3cloYO0BxG/icszlPnyWUyjl62fOOhgw=
Subject key identifier: 01:FA:BB:72:11:27:F3:B7:56:9F:A3:A5:55:74:10:09:12:CA:7F:D3
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 01856F429F32AFAD1874E586581E3C985F08
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/Afq7chEn87dWn6OlVXQQCRLKf9M.roa
Signing time: Sun 01 Jan 2023 21:35:15 +0000
ROA not before: Sun 01 Jan 2023 21:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205290
IP address blocks: 2a05:4140:7::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9f:32:af:ad:18:74:e5:86:58:1e:3c:98:5f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jan 1 21:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01fabb721127f3b7569fa3a55574100912ca7fd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:68:ba:37:bf:08:b3:1e:f7:fd:df:11:36:b5:
f1:de:62:88:c8:d8:fe:1f:12:04:4f:ea:e8:4c:34:
51:ba:0c:f2:2c:96:dd:91:cb:82:72:b7:00:a1:42:
80:7a:13:10:b3:c6:90:3a:2f:a8:3d:c2:3f:16:75:
9e:d9:aa:05:00:fa:93:5c:24:26:d4:91:cc:68:64:
d2:78:5c:16:47:52:a5:37:e4:e9:b4:15:13:16:2f:
e6:c6:1e:3d:48:f0:71:79:3c:2d:89:93:a4:63:f4:
be:d5:22:52:a6:03:39:a3:bb:61:69:34:0b:09:ed:
5a:89:b2:d9:67:4f:69:62:21:6c:82:50:58:84:7f:
16:1c:85:95:bb:2e:36:3d:f7:d3:77:ab:73:2c:0e:
94:cc:eb:b6:3f:a2:7e:11:21:10:06:51:39:16:c3:
37:60:f9:1a:05:13:7f:ce:00:b6:99:4b:3a:65:8e:
03:2a:57:cd:cb:49:24:19:25:67:d0:f4:23:08:ed:
0b:d9:c7:f2:3b:0f:59:b1:ba:b7:8d:33:3a:42:bf:
85:f9:71:1b:bd:78:ce:9a:33:89:22:fd:a4:91:ef:
01:5e:ad:d7:0a:3f:b3:16:10:4d:14:36:eb:d2:ab:
41:c7:09:b1:3b:10:8a:40:48:9d:a7:ce:d1:a8:90:
84:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FA:BB:72:11:27:F3:B7:56:9F:A3:A5:55:74:10:09:12:CA:7F:D3
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/Afq7chEn87dWn6OlVXQQCRLKf9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:7::/48
Signature Algorithm: sha256WithRSAEncryption
49:22:81:c2:73:f4:df:79:fc:6a:1f:0c:8c:a1:5c:89:15:0f:
4e:bc:d1:16:99:35:90:cf:4f:c8:11:49:18:28:83:8f:66:5a:
5b:83:de:df:cd:16:7f:0a:73:02:78:73:f1:3d:f4:07:9c:c9:
db:f2:af:4b:71:d2:b2:7d:4b:9f:12:d2:52:b3:10:3f:f9:ce:
15:12:dc:9a:39:f2:29:94:de:91:19:16:df:55:8c:9a:51:56:
aa:18:9a:26:cc:00:a3:14:58:53:50:29:b9:fb:0b:c0:76:4c:
6b:08:a9:72:13:6d:0e:e2:59:79:75:71:ce:2b:44:46:01:fa:
82:de:c0:fa:49:f4:4e:ff:7b:41:d2:ed:85:f0:42:10:cb:f3:
69:7f:48:49:aa:4b:db:73:60:68:58:67:13:5c:75:d2:a9:f3:
41:f6:a5:f8:ca:8e:c2:77:34:0d:10:17:e4:d6:ce:e1:cc:88:
38:fe:6c:72:5a:98:91:0a:85:80:88:06:40:66:a7:a0:f0:9f:
ad:86:a6:8a:c6:85:b0:ef:9b:f0:23:64:aa:58:6a:ff:a2:a1:
19:25:bf:c1:0a:c9:65:4c:cb:fd:24:54:7b:74:c6:2c:e8:26:
ee:73:c3:9f:58:b6:24:c6:56:bd:c4:a7:d2:99:c2:ff:7e:7a:
c7:4c:a0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 3 18:26:24 2023 by rpki-client on console-fra.rpki-client.org