Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/iXRJRQFLZgXLf_bsi6utE-RtaoQ.roa
File: iXRJRQFLZgXLf_bsi6utE-RtaoQ.roa (raw, json)
Hash identifier: Uds4Xc2wv+qHjDD5xhcFyZkB6kMxv5Nl2oe1AqKfzQ4=
Subject key identifier: 89:74:49:45:01:4B:66:05:CB:7F:F6:EC:8B:AB:AD:13:E4:6D:6A:84
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018693E776C78CC683D410258E262449E9AE
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/iXRJRQFLZgXLf_bsi6utE-RtaoQ.roa
Signing time: Mon 27 Feb 2023 17:24:25 +0000
ROA not before: Mon 27 Feb 2023 17:24:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211011
IP address blocks: 2a05:4140:22::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:e7:76:c7:8c:c6:83:d4:10:25:8e:26:24:49:e9:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Feb 27 17:24:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89744945014b6605cb7ff6ec8babad13e46d6a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:89:92:d7:ff:52:ba:59:2e:49:41:49:41:9b:
07:a8:0b:7f:b6:8d:9f:88:b9:03:8c:97:8e:37:56:
82:e2:6f:83:4b:44:9a:ef:31:c6:c7:48:91:cb:dc:
01:3c:e9:56:68:b5:93:7e:ae:6b:0e:a3:d2:61:4d:
57:cc:81:66:5e:96:bf:24:fd:a0:42:0b:56:29:27:
3c:bf:4c:ce:c1:d6:0c:97:da:d3:48:2e:39:9c:d0:
93:63:dd:6a:5b:46:ef:e5:d2:ad:55:c1:b2:bd:06:
94:7a:cd:3e:74:aa:31:fd:67:3f:a7:25:4a:73:73:
3c:b6:c7:78:78:d2:29:f6:e5:73:cf:e8:bf:e3:b7:
52:83:8f:b4:fc:0e:44:4a:65:40:63:e1:af:ef:0f:
15:a3:10:a5:55:9b:46:91:7f:f4:29:4b:6c:35:87:
fb:98:3b:5a:0f:88:d5:a0:e2:e6:c6:75:35:42:7e:
26:c7:b0:e0:a1:af:9d:39:45:f9:66:7c:e7:ad:4e:
84:72:7b:ab:db:89:49:71:71:81:52:9b:1e:d7:29:
80:e6:bf:10:4c:7d:62:46:00:ee:ef:76:2a:6b:d9:
73:6a:b8:80:65:70:8e:b9:04:12:e0:65:27:40:bf:
a5:ac:49:2d:99:94:aa:e5:e3:c6:7a:aa:8a:f2:98:
c2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:74:49:45:01:4B:66:05:CB:7F:F6:EC:8B:AB:AD:13:E4:6D:6A:84
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/iXRJRQFLZgXLf_bsi6utE-RtaoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:22::/48
Signature Algorithm: sha256WithRSAEncryption
50:15:26:f7:e7:aa:f8:f1:52:e4:5b:a3:71:47:af:5a:39:64:
2a:f0:d8:e3:e3:d8:45:b8:e7:11:19:d8:a2:70:ce:28:71:df:
84:dd:f4:c7:30:67:45:34:27:e6:90:0e:0f:96:a2:8b:c3:0f:
fe:20:d3:3d:ee:25:c2:de:2c:f4:01:16:d5:62:2f:90:45:8e:
41:ef:2f:d6:59:26:fe:76:fb:92:fa:48:b9:d1:9e:8a:81:25:
80:e4:4b:f8:96:70:03:fa:cb:eb:91:3d:39:62:01:b2:47:40:
3c:83:9d:92:5e:92:32:b7:aa:db:78:e9:45:89:e8:e6:1d:5d:
ab:30:b0:97:d7:72:10:c1:c5:06:60:9a:46:4d:aa:8f:74:b2:
3a:c2:83:a5:5f:57:89:c7:9f:3b:02:5b:62:c6:72:fa:a0:e0:
c0:a4:f5:b5:29:1f:6c:af:2f:6b:17:55:2b:71:61:9f:0a:74:
53:12:66:02:1c:c3:b9:8b:a5:d4:a0:bc:65:e2:be:af:00:74:
d5:6d:e0:74:74:03:d0:b4:90:5a:ce:6a:21:86:3f:e7:4a:90:
bf:34:b0:f5:b2:83:44:e7:52:dd:6f:6d:56:e1:15:c1:f0:30:
35:88:93:a0:2f:32:4e:e5:2a:8c:e0:a5:d7:a0:93:b2:c2:86:
b7:cb:6e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:06 2024 by rpki-client on console-ams.rpki-client.org