Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/g_2557KK_aN3K_tHs1H6NNyo5ME.roa
File: g_2557KK_aN3K_tHs1H6NNyo5ME.roa (raw, json)
Hash identifier: 4sldo17xhQ9nHvrLOBzi0/CGJWG4zXuDCCGzyCCH8mU=
Subject key identifier: 83:FD:B9:E7:B2:8A:FD:A3:77:2B:FB:47:B3:51:FA:34:DC:A8:E4:C1
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42CFDF029F27C511831AB63DAD5E3C
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/g_2557KK_aN3K_tHs1H6NNyo5ME.roa
Signing time: Sun 01 Jan 2023 21:35:27 +0000
ROA not before: Sun 01 Jan 2023 21:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203738
IP address blocks: 2a0e:8f02:f041::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:cf:df:02:9f:27:c5:11:83:1a:b6:3d:ad:5e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83fdb9e7b28afda3772bfb47b351fa34dca8e4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e5:17:05:dd:2b:ca:81:cf:3a:69:99:d7:9a:
da:d1:75:ba:be:50:70:8a:42:12:c0:c3:87:8a:7d:
71:d5:c5:c1:df:a5:88:99:b8:af:03:cd:e8:0e:66:
46:87:c2:e1:71:a1:36:e5:49:62:07:09:68:bd:55:
14:fa:d2:c9:d5:48:73:4d:c1:de:ef:e1:f7:8f:1d:
0e:72:17:f9:b0:5d:f0:5f:35:d0:b0:19:f9:b0:31:
ac:93:96:d4:de:4a:7e:41:4c:84:4b:df:e9:ae:65:
a7:dd:cd:86:0a:57:4a:9c:fe:56:a0:0e:2d:04:5f:
15:90:90:11:e7:a7:e9:67:50:6b:b5:c0:60:a8:d1:
e2:38:96:89:6b:7c:4a:70:7e:39:42:a0:c0:61:16:
20:9e:b2:97:2f:57:a4:6e:37:4c:10:4d:87:70:5f:
0b:a9:d4:25:fc:22:1a:0a:60:44:8e:d6:f5:ce:f3:
13:2e:83:75:77:9e:da:a5:4c:3a:00:c6:ec:59:17:
62:a5:c8:07:a6:99:87:dc:f2:cd:b3:c8:25:6e:8c:
de:3a:12:29:34:9a:ca:0b:6c:6c:b5:49:bd:8f:b7:
c1:6e:83:84:4d:c0:4c:31:2c:ef:8d:da:3d:cd:ab:
b9:90:be:65:1a:22:2b:7b:85:8b:31:13:16:18:ab:
7a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:FD:B9:E7:B2:8A:FD:A3:77:2B:FB:47:B3:51:FA:34:DC:A8:E4:C1
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/g_2557KK_aN3K_tHs1H6NNyo5ME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f041::/48
Signature Algorithm: sha256WithRSAEncryption
13:4d:c2:cc:d0:58:1c:33:3d:e9:cc:ba:39:47:9c:a2:42:c0:
5b:db:89:ac:c2:f6:a4:1b:ce:04:ca:ae:c9:f0:73:7b:7c:c7:
95:b7:25:e7:b8:44:e5:0c:57:79:b1:43:4a:ec:41:34:4e:50:
87:ba:89:ec:c5:89:04:ff:79:5a:67:b3:10:2f:43:2e:5a:f2:
6e:21:c7:39:2d:14:93:78:ba:0b:a5:68:61:ed:88:1c:62:28:
5e:e7:da:e6:e7:53:71:82:0f:ab:dc:c6:f3:cf:a8:2d:96:8d:
8c:ef:d4:55:9a:dd:60:4b:4b:55:e0:22:e1:0d:fe:cc:ba:6e:
26:dc:31:1a:f5:a5:97:c5:6a:d1:94:32:16:96:04:ae:bb:5f:
8f:7c:57:4a:1a:24:41:61:33:f6:65:33:d7:00:97:b5:e5:b5:
cf:81:bf:61:60:a7:cd:82:7b:b1:e9:32:4b:16:24:d5:01:c5:
54:c4:4a:4e:a3:19:7c:d0:45:94:66:99:57:8e:ae:d6:2c:4a:
74:36:e7:b1:ef:bc:0e:95:e8:62:d8:83:81:37:50:7f:74:3f:
84:37:b6:35:56:08:68:c8:6a:96:3a:52:5c:7b:e1:2b:4b:d7:
46:e7:de:cd:22:bc:7b:13:b0:de:35:67:96:68:ce:2d:3b:7c:
ab:25:89:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org