Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/EmEjMG2oZSJws98vWztdrwz_-BA.roa
File: EmEjMG2oZSJws98vWztdrwz_-BA.roa (raw, json)
Hash identifier: FEA9D85DUYN4XH3WPLf3yY23PKFXP2KgzRpR47eWUoo=
Subject key identifier: 12:61:23:30:6D:A8:65:22:70:B3:DF:2F:5B:3B:5D:AF:0C:FF:F8:10
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01872CA8730953A27EFF09FF74965C603031
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/EmEjMG2oZSJws98vWztdrwz_-BA.roa
Signing time: Wed 29 Mar 2023 09:17:29 +0000
ROA not before: Wed 29 Mar 2023 09:17:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199310
IP address blocks: 2a0e:8f02:f058::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:a8:73:09:53:a2:7e:ff:09:ff:74:96:5c:60:30:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Mar 29 09:17:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=126123306da8652270b3df2f5b3b5daf0cfff810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b1:28:53:de:5c:74:e7:19:1b:23:d4:99:d2:
74:03:be:9f:25:01:ce:60:fe:45:33:ad:b3:98:09:
97:df:f1:2b:d6:00:c5:cd:69:31:08:70:ef:ea:23:
3a:52:29:36:29:2c:bb:ee:db:a6:9d:28:18:63:95:
59:32:a8:e0:91:6f:5c:d0:f6:99:ea:26:9c:1f:64:
65:48:e2:02:6f:70:e5:fe:c8:8d:f9:81:7b:33:22:
ed:9b:ca:4c:1b:cb:d0:56:41:74:22:07:34:30:c8:
29:c3:d3:68:1a:c5:e7:c9:d3:49:6c:b4:9e:97:58:
3a:1e:0d:51:22:5a:5c:d0:4e:32:ce:36:4d:22:80:
60:38:53:d6:02:82:3f:f8:36:ab:fe:4a:c4:ea:12:
34:f0:88:ee:f5:da:54:8a:75:ab:81:de:6a:ae:0e:
b9:a4:e9:f0:e3:81:73:a1:6c:9a:d3:6b:d5:51:9e:
d7:4a:ef:8c:33:f0:e9:b3:a6:c2:74:f3:a0:da:4d:
2b:45:4f:27:3f:8e:e8:af:6f:78:67:51:fa:c0:47:
8f:83:39:f7:e4:ea:c8:c4:4f:da:96:28:5a:ff:a9:
30:5c:37:21:cc:9c:54:09:bb:8a:d1:80:82:d0:d0:
6e:04:a4:e3:60:f7:1f:36:18:94:8c:62:5e:b7:fd:
28:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:61:23:30:6D:A8:65:22:70:B3:DF:2F:5B:3B:5D:AF:0C:FF:F8:10
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/EmEjMG2oZSJws98vWztdrwz_-BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f058::/48
Signature Algorithm: sha256WithRSAEncryption
61:b0:fa:4f:30:6a:8b:f3:54:8d:eb:0b:5f:15:79:68:4c:99:
f6:8e:85:c0:53:4f:c9:d8:6c:13:0a:e6:5c:06:b9:fa:2e:d9:
32:17:35:29:01:70:c8:e9:aa:1c:ef:3c:6e:f4:7e:d8:1b:74:
87:3f:37:fd:6b:b2:2e:61:c3:36:94:44:87:19:b0:3a:20:91:
36:f3:c0:ed:4c:ef:5c:3b:1c:da:76:a5:69:a8:f1:1d:29:19:
a2:41:5c:d1:c6:c9:e0:4a:cb:00:50:39:b6:c3:02:58:b2:92:
5f:d7:10:6d:df:ec:b3:c1:84:f2:ee:9a:8a:82:10:3e:0a:da:
91:00:fc:14:7a:c9:78:de:de:47:fc:21:4c:cb:95:64:c1:a5:
0a:d5:bf:25:74:1f:fc:b4:35:b6:ff:b0:b5:9f:07:8f:e3:55:
05:b6:e4:71:05:ef:19:cf:76:54:c4:2a:0d:e4:0f:c9:0f:03:
41:a6:d4:97:1b:70:59:8d:27:97:53:a3:10:9c:9e:50:1d:bb:
18:8c:41:51:e7:d9:81:40:62:b5:1e:88:1b:55:eb:4f:bf:9f:
8b:dd:5f:94:88:9f:1e:9a:17:c4:0c:7b:8c:77:af:d3:30:9a:
0e:b9:fe:96:5f:15:1b:a6:46:a6:f9:ce:64:52:2a:ea:4f:6b:
9e:e8:80:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org