Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/LBSVJw8VMn-or-bjwcdh_jZsLWw.roa
File: LBSVJw8VMn-or-bjwcdh_jZsLWw.roa (raw, json)
Hash identifier: ikvtBKpSItZJV8dtrIoxERWUt/kqE4u6AVhu1NcJvRo=
Subject key identifier: 2C:14:95:27:0F:15:32:7F:A8:AF:E6:E3:C1:C7:61:FE:36:6C:2D:6C
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42E5889CCA03817CF0C03E05FD89AB
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/LBSVJw8VMn-or-bjwcdh_jZsLWw.roa
Signing time: Sun 01 Jan 2023 21:35:33 +0000
ROA not before: Sun 01 Jan 2023 21:35:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212057
IP address blocks: 2a0e:8f02:f018::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e5:88:9c:ca:03:81:7c:f0:c0:3e:05:fd:89:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c1495270f15327fa8afe6e3c1c761fe366c2d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9c:2b:17:78:ba:61:65:ad:46:2a:07:6a:85:
ab:6c:4a:1a:cb:6a:10:65:51:f7:32:bd:a1:d0:89:
f8:39:b9:48:da:35:b1:81:fc:15:f7:6b:63:1e:e2:
da:4d:ed:fb:00:16:a3:3e:d7:9e:ea:d1:58:e7:58:
ee:5d:c1:7c:91:ce:2f:b5:83:b9:2a:58:fd:6f:67:
3a:bc:9f:a5:56:c8:63:1d:ff:7f:1a:62:2f:9f:3a:
56:a3:98:03:7e:a4:76:a2:a5:e4:c9:d4:c0:0a:0f:
a6:00:91:5d:c1:13:b0:9d:b4:38:1a:c7:4c:96:ed:
32:2c:9e:33:01:d9:6f:00:ea:6e:f3:de:3e:68:2d:
83:9e:9f:89:37:c3:65:e5:c4:4f:15:87:68:9c:f4:
dd:e9:0f:78:2e:e2:91:e6:fa:f1:c0:e8:5e:5c:28:
e2:9e:d8:51:3e:9c:54:8e:45:9d:a4:fb:80:3e:1d:
bb:6c:95:83:8e:7b:dd:ab:f0:82:85:53:1b:e1:14:
ad:1c:41:50:46:fb:21:2b:48:bd:df:a4:57:28:48:
89:92:94:48:84:3d:91:00:8e:91:8b:4d:f9:89:69:
0d:a4:e5:34:d1:a6:74:6e:d3:57:99:31:b5:08:05:
1f:35:43:90:1e:dd:6c:ed:6b:ff:ad:b0:69:ae:4f:
57:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:14:95:27:0F:15:32:7F:A8:AF:E6:E3:C1:C7:61:FE:36:6C:2D:6C
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/LBSVJw8VMn-or-bjwcdh_jZsLWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f018::/48
Signature Algorithm: sha256WithRSAEncryption
16:51:b1:f4:ef:61:bc:1f:5b:f9:47:b3:b6:b1:cc:be:59:90:
61:a2:d7:9c:35:c1:a1:de:03:d4:15:ea:63:8a:c6:f0:eb:af:
dd:4c:c3:f5:11:9a:db:7d:a8:6e:f3:1d:ca:fc:35:28:34:1c:
c8:f6:07:ce:64:0c:8d:e7:ab:e5:24:22:2f:9e:ad:27:f8:39:
99:ec:68:7e:80:ef:1f:34:61:c1:2e:45:34:a6:5b:f1:8c:28:
56:3c:33:19:54:9e:83:04:86:1d:a1:4a:40:5c:de:01:7d:0e:
d8:bb:c0:a8:e3:12:92:62:2c:99:02:75:91:09:3b:c9:ce:b3:
87:0f:50:58:ed:22:77:e1:a1:c8:56:8b:a2:bc:5f:df:22:e2:
74:ca:99:bf:25:de:cf:c3:f9:39:60:63:b0:9d:e3:96:46:06:
85:50:c0:0d:27:9e:a7:51:ed:8b:ed:50:54:af:1d:0b:67:82:
68:6f:ca:ff:2d:76:a7:a9:ae:80:4e:6b:09:eb:72:ed:30:9e:
b7:39:e0:27:9f:d4:5d:df:b8:80:f1:26:65:ab:14:2b:ad:81:
79:f3:4c:56:f6:6f:38:b7:ee:05:fb:ca:db:a4:b4:45:5a:1a:
83:d8:3c:ef:e6:b6:88:b8:18:5c:54:a7:48:7f:02:b0:f6:e4:
3f:23:ba:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org