Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/JlvbXOrX2t5wn7mmazWSnSek7qQ.roa
File: JlvbXOrX2t5wn7mmazWSnSek7qQ.roa (raw, json)
Hash identifier: dJmC2oY+leQj+LddOmBjwSpm48A5c2BENxLqW4ySPSo=
Subject key identifier: 26:5B:DB:5C:EA:D7:DA:DE:70:9F:B9:A6:6B:35:92:9D:27:A4:EE:A4
Certificate issuer: /CN=f60846f21c56a8513d31c155dd199197a3ffc7c0
Certificate serial: 0187299C6A5F60DAD8FAC41E40AA1515D5E8
Authority key identifier: F6:08:46:F2:1C:56:A8:51:3D:31:C1:55:DD:19:91:97:A3:FF:C7:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9ghG8hxWqFE9McFV3RmRl6P_x8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/JlvbXOrX2t5wn7mmazWSnSek7qQ.roa
Signing time: Tue 28 Mar 2023 19:05:29 +0000
ROA not before: Tue 28 Mar 2023 19:05:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48606
IP address blocks: 2a0c:5705::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:29:9c:6a:5f:60:da:d8:fa:c4:1e:40:aa:15:15:d5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f60846f21c56a8513d31c155dd199197a3ffc7c0
Validity
Not Before: Mar 28 19:05:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=265bdb5cead7dade709fb9a66b35929d27a4eea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e8:ff:e3:15:fa:28:09:82:be:7a:e3:fb:a6:
ff:83:7d:bb:34:a7:3a:69:14:1f:f7:21:21:90:8e:
32:48:49:62:d3:c3:04:12:59:ce:26:e3:84:b6:24:
68:ac:6a:da:47:cd:fc:cb:84:14:9f:8f:12:61:cb:
ea:14:c9:48:6a:dd:82:4a:db:a5:9d:a3:02:32:be:
27:87:d0:d2:ee:62:ab:f7:1c:ae:64:ec:9b:71:39:
c3:b1:5a:94:c1:42:97:d9:8f:46:b9:e9:b5:59:ed:
53:19:5c:f1:cb:1c:3d:6a:00:b1:5f:a6:46:06:48:
f9:78:17:d8:ec:c3:ad:6c:7a:0c:b0:e3:11:a6:c8:
ff:f7:ba:5a:5e:fb:b5:df:b7:c3:6d:0e:55:fe:7b:
f1:7d:94:75:e3:c6:24:8b:6c:1d:b5:50:e1:3c:70:
9c:96:5d:69:1e:01:30:e4:8e:2e:2d:e0:97:b7:1c:
fe:10:d4:88:bd:9c:53:1c:07:3d:ed:14:07:1f:cb:
84:6a:f9:0f:49:7e:1f:6f:c4:5f:cd:ca:b6:d1:57:
82:90:5e:43:90:a8:ca:df:28:4a:46:b0:f6:b4:ca:
e4:51:ee:5d:69:bc:75:ef:69:c6:0e:9e:a3:cc:9c:
44:3d:99:37:d7:6d:a5:57:c3:b7:45:61:14:61:f7:
b7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:5B:DB:5C:EA:D7:DA:DE:70:9F:B9:A6:6B:35:92:9D:27:A4:EE:A4
X509v3 Authority Key Identifier:
keyid:F6:08:46:F2:1C:56:A8:51:3D:31:C1:55:DD:19:91:97:A3:FF:C7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9ghG8hxWqFE9McFV3RmRl6P_x8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/JlvbXOrX2t5wn7mmazWSnSek7qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a0f4be-4c0d-4df5-90c6-a6d45ef7d227/1/9ghG8hxWqFE9McFV3RmRl6P_x8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:5705::/32
Signature Algorithm: sha256WithRSAEncryption
4d:ac:bc:ba:25:1a:05:ba:e0:8d:dd:1e:60:d4:66:a8:e3:3d:
fc:dc:ee:23:a6:56:1f:bc:d5:f7:b0:70:e7:ba:79:69:1a:38:
83:0a:73:59:aa:66:e0:1d:a8:80:5a:08:51:ab:47:a3:8c:8b:
70:06:82:69:1d:97:30:af:27:47:98:b2:0d:15:44:db:4b:7d:
14:34:fc:20:4e:f1:e3:84:b2:a2:9e:c6:10:62:25:23:3e:60:
a6:57:6b:1d:1d:4a:d2:12:bd:7a:1d:27:dd:97:03:c7:90:0e:
ac:ad:7e:d7:2c:e1:a7:ec:8f:c9:e3:b8:38:06:56:b4:f0:55:
ab:3d:03:72:35:e7:57:2b:f9:d1:7d:ef:41:e3:4a:b1:70:6c:
55:88:a3:9f:ec:2d:75:f5:0a:a0:f7:d5:e7:02:0e:fc:f0:3d:
8d:ea:86:a4:38:ad:7c:6c:14:91:a7:c2:e7:4a:4b:63:f2:d3:
f3:71:c4:fc:b6:26:a0:cf:e7:d5:4c:83:21:be:3d:1c:e6:f7:
be:45:f8:fe:74:91:ea:e2:d9:41:0f:d9:3f:1a:66:f1:12:72:
fc:44:c3:c8:e9:29:28:b7:05:e1:e7:09:69:d8:49:d5:c7:cc:
0a:a5:1f:dd:b3:d8:37:df:67:5e:c8:53:5e:ab:95:57:8c:75:
74:de:f3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:04 2023 by rpki-client on console-ams.rpki-client.org