Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/Mz3rihRpED-4vd6fkqzBg6RBrPI.roa
File: Mz3rihRpED-4vd6fkqzBg6RBrPI.roa (raw, json)
Hash identifier: QxYgWZKbMGJIP/JBMpmtv1Fn9S+fdTXZWM2IOuANzUc=
Subject key identifier: 33:3D:EB:8A:14:69:10:3F:B8:BD:DE:9F:92:AC:C1:83:A4:41:AC:F2
Certificate issuer: /CN=f8ad543624f8d3281ec970458ee752f10a424529
Certificate serial: 018B70407C49C4B1F661B1B8A9B6AB89F318
Authority key identifier: F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/Mz3rihRpED-4vd6fkqzBg6RBrPI.roa
Signing time: Fri 27 Oct 2023 08:29:16 +0000
ROA not before: Fri 27 Oct 2023 08:29:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47232
IP address blocks: 2a0f:fec0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:40:7c:49:c4:b1:f6:61:b1:b8:a9:b6:ab:89:f3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8ad543624f8d3281ec970458ee752f10a424529
Validity
Not Before: Oct 27 08:29:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=333deb8a1469103fb8bdde9f92acc183a441acf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:aa:d6:dc:8f:bb:e8:aa:bf:12:4a:97:72:69:
3b:50:5f:07:9d:12:4d:13:c4:47:30:62:0c:0d:c7:
38:00:1e:2b:ad:61:22:22:ea:ab:08:e0:3d:4d:0d:
b9:e8:4e:1c:88:25:c9:86:ab:5d:4f:f1:47:62:d3:
c5:8a:ff:32:e2:9a:a5:b3:6d:8d:83:ac:3f:5c:be:
4d:20:7f:b8:47:b1:80:6b:37:1a:09:8f:2f:b4:42:
5f:08:58:dc:c7:34:e1:c5:cb:f6:31:5f:b3:79:4b:
e3:c3:ca:37:10:90:46:21:98:8d:33:8f:65:28:53:
69:a0:f7:cf:d8:f4:75:52:91:2e:58:d7:69:51:e9:
b3:e9:21:1b:88:06:02:58:f7:e4:2f:d9:2b:eb:eb:
36:73:14:5e:3d:af:2d:24:84:29:ef:1a:62:33:a2:
37:23:e4:08:f7:b0:4f:10:e2:b3:9b:bf:d8:55:b1:
c7:e1:2b:83:e6:77:17:90:70:75:1b:26:64:28:76:
f4:02:4a:64:60:92:d2:9a:55:fe:f6:a6:91:63:94:
04:41:bf:b9:5c:09:fe:2f:0e:06:99:de:ae:bd:36:
a1:86:c7:5e:55:30:7d:c4:9d:74:99:bd:ff:43:5f:
81:f0:5f:bb:04:fc:a7:6d:2b:11:66:60:09:da:5a:
cc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3D:EB:8A:14:69:10:3F:B8:BD:DE:9F:92:AC:C1:83:A4:41:AC:F2
X509v3 Authority Key Identifier:
keyid:F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/Mz3rihRpED-4vd6fkqzBg6RBrPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
60:7e:cf:ff:19:93:ec:76:db:65:b2:bc:aa:13:9a:03:bb:59:
46:7f:63:f4:02:1f:fc:7c:96:43:e5:18:64:6c:39:bc:4d:18:
1e:4b:17:bb:f7:ac:27:e5:90:31:9d:a6:54:9c:5c:a5:d5:dd:
b6:33:56:d2:93:1b:76:fb:cd:ce:9d:b4:6b:0d:35:51:4e:70:
7c:66:7f:01:50:e6:81:0d:ba:90:54:f7:75:cb:9c:e1:02:d4:
ef:c4:72:d5:ac:86:90:ae:a4:05:68:e4:f7:83:da:80:d4:60:
1e:97:c7:01:29:2e:c2:f5:d3:5c:d8:11:73:71:af:ef:4b:f1:
69:04:90:f1:d5:dc:b6:c0:a3:fb:4e:77:85:ac:32:20:1a:83:
4a:05:b9:da:b9:d3:cd:0e:f6:bb:9b:30:d4:c5:8d:96:cb:a3:
b2:ca:56:9e:64:6d:80:29:00:54:3c:3e:a8:27:26:f4:35:aa:
b6:6f:f4:28:b0:26:85:53:84:6d:17:96:98:30:ee:15:26:87:
98:20:39:12:18:fc:aa:12:8c:7d:18:e7:3e:b2:56:c8:7e:57:
33:94:85:b6:99:be:d1:8a:78:4b:60:1c:11:c4:e7:14:51:1d:
fd:bd:24:72:00:cf:05:28:29:c4:88:67:a1:81:dc:08:cd:34:
33:49:d9:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:16 2024 by rpki-client on console-fra.rpki-client.org