Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/9o6lGWHKSkKnPeOMM5LPR4kB7HU.roa
File: 9o6lGWHKSkKnPeOMM5LPR4kB7HU.roa (raw, json)
Hash identifier: K2zI8MS1oBNT72ZAqXrWgXP1wWzkWCjCuaman82wWZ0=
Subject key identifier: F6:8E:A5:19:61:CA:4A:42:A7:3D:E3:8C:33:92:CF:47:89:01:EC:75
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42F0AD1B29FE6BEDF37F217F3AD026
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/9o6lGWHKSkKnPeOMM5LPR4kB7HU.roa
Signing time: Sun 01 Jan 2023 21:35:36 +0000
ROA not before: Sun 01 Jan 2023 21:35:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212983
IP address blocks: 2a0e:8f02:f005::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:f0:ad:1b:29:fe:6b:ed:f3:7f:21:7f:3a:d0:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f68ea51961ca4a42a73de38c3392cf478901ec75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d1:82:4e:54:66:a6:d2:9e:28:2c:d7:f2:a0:
54:96:49:b8:7d:6c:42:42:a4:eb:55:b1:e3:06:85:
d5:df:7e:76:69:19:79:e7:51:9d:75:1e:af:99:76:
d4:61:7e:28:3c:65:42:23:bb:b6:a7:65:1b:60:a2:
bf:9a:68:2e:ea:73:b3:71:51:d6:31:31:08:b5:2d:
14:7f:c3:56:8f:56:6e:50:72:25:60:99:c4:5a:ec:
fd:3c:24:f3:ce:c9:13:3a:3f:62:71:13:c4:81:82:
9c:51:2c:6d:5d:3e:7f:00:51:b7:a7:9c:c8:7a:ed:
b1:c5:07:c7:77:26:8d:34:3a:80:3e:2d:61:6b:90:
75:62:ae:f8:d5:a0:1f:6d:bd:c2:d8:fc:43:3d:a0:
55:e5:71:fd:84:3b:bb:2b:0f:35:2d:4b:5b:3b:f4:
7b:93:0c:40:4a:26:09:ce:96:82:98:01:cc:dd:8a:
18:b7:61:61:75:2e:ec:e0:a1:2c:8c:8a:65:26:60:
42:f0:d3:4a:ec:e7:2b:f3:94:e6:be:09:a0:a4:e7:
f2:d8:70:9a:bb:bc:b2:8a:d5:d8:52:63:0b:b9:af:
d5:87:24:f4:70:91:99:06:13:c7:bb:6d:ef:4b:ea:
62:32:8f:db:0e:e7:c2:a0:be:4f:bc:98:4f:d8:97:
02:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8E:A5:19:61:CA:4A:42:A7:3D:E3:8C:33:92:CF:47:89:01:EC:75
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/9o6lGWHKSkKnPeOMM5LPR4kB7HU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f005::/48
Signature Algorithm: sha256WithRSAEncryption
0c:33:01:d5:2e:60:0a:c8:93:05:7f:71:dd:75:4e:0c:4b:d6:
81:5a:48:45:53:35:08:4c:8c:ab:a8:81:ed:68:e6:ac:54:7a:
5d:b5:fa:e7:c7:07:5a:07:d5:1a:4f:fe:15:7e:f2:ad:8d:32:
0c:25:e1:5b:50:a0:f1:a8:f4:5a:57:72:e7:ea:fa:c0:a3:8d:
9f:a8:6a:f4:89:ef:08:b4:42:34:ad:4c:2e:e5:04:c3:40:1a:
7a:1c:a4:da:5d:10:cc:ff:f2:34:03:d6:a9:ce:02:f7:82:85:
79:94:04:08:0c:49:d4:7b:3f:d2:8c:2b:d3:df:6d:b5:35:ac:
de:c8:2f:f9:2b:d8:01:6b:f2:b9:18:d3:a1:3c:b9:c2:5b:0e:
72:6f:0d:d6:f9:f4:03:bc:ba:36:f2:9b:49:72:b7:a6:6e:3e:
a6:bc:1a:d1:66:c9:00:d6:a1:55:b1:7b:ee:d9:80:1a:68:88:
ba:2a:83:fd:3b:39:70:bd:49:ae:86:42:d5:ca:6c:c6:81:98:
2a:b9:6a:35:72:53:d5:95:3e:82:d9:51:5b:b6:b0:01:dc:13:
f7:2b:7f:41:27:96:76:b2:29:af:c4:9c:e0:65:c3:b1:36:cf:
6a:b2:f1:74:ee:33:bf:20:31:1b:27:cd:49:7d:dc:d4:05:b3:
6b:80:a1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 12:06:11 2023 by rpki-client on console-ams.rpki-client.org