Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/N7vWHSYhmpPG2OlDkIMOwtRbY9g.roa
File: N7vWHSYhmpPG2OlDkIMOwtRbY9g.roa (raw, json)
Hash identifier: 8dJw0mxgE0Doa9GVKVEDGexG3DBxJS89A7Odg/Ng1uw=
Subject key identifier: 37:BB:D6:1D:26:21:9A:93:C6:D8:E9:43:90:83:0E:C2:D4:5B:63:D8
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42CF7B37E5094BF74A1F8C5592D1EC
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/N7vWHSYhmpPG2OlDkIMOwtRbY9g.roa
Signing time: Sun 01 Jan 2023 21:35:27 +0000
ROA not before: Sun 01 Jan 2023 21:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203528
IP address blocks: 2a0e:8f02:21d0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:cf:7b:37:e5:09:4b:f7:4a:1f:8c:55:92:d1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37bbd61d26219a93c6d8e94390830ec2d45b63d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:52:81:18:c2:b5:e5:f9:bf:da:6a:9d:67:72:
99:6c:5d:46:cc:ca:b4:47:68:b5:5d:9d:2e:7a:ec:
eb:17:f7:9a:8c:da:03:f3:16:77:c6:60:86:be:e2:
0a:63:f6:b0:c6:53:a9:6a:1f:dc:5e:7d:83:a4:56:
d4:cb:6a:b9:c6:ac:56:31:bf:e3:35:64:83:89:6a:
41:61:87:6b:21:fb:6d:bb:18:de:9f:07:9a:b7:66:
f2:9d:af:38:3f:82:da:81:ba:59:88:3e:e6:51:08:
0d:3f:fb:93:52:68:3f:29:a8:66:c9:29:f3:b5:5d:
ee:6c:3e:82:cb:f2:91:ed:f2:71:95:c0:57:e1:f1:
20:b3:88:fd:c4:bf:63:ed:94:8b:ab:f5:19:33:60:
c7:83:7e:f8:1d:e1:db:f4:dc:6b:b6:e5:c1:2f:da:
bc:bc:7d:5a:63:e0:42:42:68:c5:c0:30:11:74:f6:
08:14:7e:5f:dd:9a:34:69:33:33:52:35:ce:a6:2c:
99:f2:81:e4:3f:32:67:75:30:be:fd:9d:ba:c7:2b:
51:a6:42:c0:c6:b1:12:e6:7b:0f:9f:81:00:d5:13:
12:fd:4e:75:70:98:b4:ec:55:a9:34:9d:2c:7e:ac:
7c:f3:c8:d2:cb:75:33:58:28:98:e0:fc:43:f3:bd:
44:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BB:D6:1D:26:21:9A:93:C6:D8:E9:43:90:83:0E:C2:D4:5B:63:D8
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/N7vWHSYhmpPG2OlDkIMOwtRbY9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:21d0::/44
Signature Algorithm: sha256WithRSAEncryption
89:2f:81:9c:13:cc:83:e1:96:72:95:4b:e3:88:f7:bc:e3:51:
a2:7c:0d:40:ce:eb:81:d7:e9:a5:2c:65:dc:a3:b2:e7:25:3b:
74:40:07:e3:4d:a3:cd:ea:0d:31:71:8c:e7:ef:38:99:7d:62:
af:cc:0e:30:9e:6c:93:d3:4b:3a:59:6c:e3:47:d6:22:07:8a:
83:30:01:76:2f:ae:81:3c:03:d2:44:aa:8b:7d:3a:e5:fb:39:
e3:c3:73:d5:07:e9:0c:b6:49:78:4d:85:32:c7:3a:1c:ad:dc:
23:ea:e3:3c:c6:dd:99:7f:43:be:ef:45:df:f7:65:c5:9e:36:
ce:26:e9:14:93:1c:a7:d6:7a:20:7f:f8:b9:ae:8b:1c:ee:42:
b1:af:4e:50:9c:48:b4:e6:cb:ee:ce:6a:ca:9e:b2:63:d5:1f:
f7:4a:1e:6b:4f:9c:1d:96:7a:15:2a:2a:0f:bf:84:2f:95:c5:
ac:c1:51:c7:65:3a:49:c9:b6:9f:b0:84:f3:55:67:2c:7d:98:
79:5a:e9:61:7b:0a:97:2c:98:45:94:08:97:c3:59:bd:17:eb:
33:fe:76:b6:70:7c:51:0a:66:55:2c:40:3c:af:29:32:28:0d:
7f:fb:c8:ec:3c:c2:d6:7f:56:33:fd:85:9d:95:d9:57:e7:e3:
3c:52:ae:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org