Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/hu1Dd_cMOfzGQ_9h6ZHUWpqHmeE.roa
File: hu1Dd_cMOfzGQ_9h6ZHUWpqHmeE.roa (raw, json)
Hash identifier: IfSnpyoVvb+e81MHK09sFDT/JZYmiflrt4rfaldwxdI=
Subject key identifier: 86:ED:43:77:F7:0C:39:FC:C6:43:FF:61:E9:91:D4:5A:9A:87:99:E1
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018750499A061F70AA3DE23BBAB815B45A0A
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/hu1Dd_cMOfzGQ_9h6ZHUWpqHmeE.roa
Signing time: Wed 05 Apr 2023 07:20:13 +0000
ROA not before: Wed 05 Apr 2023 07:20:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139317
IP address blocks: 2a0e:8f02:f058::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:49:9a:06:1f:70:aa:3d:e2:3b:ba:b8:15:b4:5a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Apr 5 07:20:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86ed4377f70c39fcc643ff61e991d45a9a8799e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:3b:61:98:c3:ed:b1:3d:1a:f8:4d:f3:04:
c1:3e:e1:99:ba:c2:b9:26:1d:87:4e:83:19:02:56:
cf:c7:36:db:5e:fe:d8:c8:69:19:b7:93:30:8b:70:
98:d7:b0:c5:5b:dd:98:99:af:a3:bd:0a:d9:14:57:
81:b7:11:af:98:f3:3e:80:49:c8:50:29:9c:8c:aa:
d3:53:6c:0b:98:52:6d:e6:69:d7:ba:5c:54:e4:8c:
05:7d:d0:c4:64:52:7c:96:b4:e7:b1:33:3f:c3:98:
8d:c1:92:4f:68:da:a0:a5:27:77:ec:af:53:cd:ee:
a5:da:62:84:98:00:22:b3:59:ac:a5:e2:03:af:d4:
b2:03:cc:7c:d2:46:6d:25:8c:fa:c7:a3:27:49:9c:
7f:38:7e:22:b7:3a:da:2e:64:39:d1:37:4c:c2:73:
b5:45:f6:11:90:9e:b9:a3:31:c5:91:91:c9:54:4e:
c3:45:c5:48:af:54:9f:ce:a5:88:b8:90:b2:a9:55:
1f:3d:40:91:e4:12:37:ba:88:98:95:86:60:c0:df:
16:17:d9:9f:3b:c3:81:52:da:88:e6:9a:46:1d:89:
d4:9e:0f:80:c4:12:f6:da:2a:07:88:0a:e5:13:a7:
43:ec:44:7f:df:4e:d8:fe:9d:f9:3c:85:c7:35:1c:
fa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:ED:43:77:F7:0C:39:FC:C6:43:FF:61:E9:91:D4:5A:9A:87:99:E1
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/hu1Dd_cMOfzGQ_9h6ZHUWpqHmeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f058::/48
Signature Algorithm: sha256WithRSAEncryption
21:ae:b7:05:fa:fc:d3:73:1a:0e:82:bf:09:c8:eb:ed:f8:ef:
77:0c:35:fd:5b:d7:0c:66:48:16:39:b9:78:c3:37:76:c1:f4:
30:6e:6d:d2:25:22:8e:61:bc:5e:83:a4:c5:e6:da:50:07:a9:
4a:96:0c:fd:4e:4e:c0:a1:e2:d2:0c:b9:18:c8:aa:4b:06:95:
56:77:ba:53:4a:41:67:a5:24:a1:0b:99:6b:f9:2d:7c:6f:e5:
ce:ec:fc:f6:ed:14:3b:30:9b:03:38:86:66:a9:ac:f2:05:dd:
5d:37:1c:07:0c:b4:10:e3:7d:22:66:9e:92:68:31:ca:48:4d:
90:49:23:7d:6e:11:13:6b:f6:58:7a:00:80:87:75:80:9c:83:
58:bf:1e:9b:b0:c3:2d:ab:cf:4f:02:a2:86:2b:4a:b1:77:e4:
e2:7a:03:22:70:4c:c7:bc:fc:6d:2a:31:ba:fb:53:3c:94:6e:
cc:fa:b5:a6:1f:ff:3e:88:9e:df:74:4f:23:c6:6e:59:e9:f4:
7a:64:0e:f5:49:4f:93:ff:29:73:e8:dc:83:05:fe:e1:7f:e3:
02:e4:21:b3:f6:eb:60:b9:5c:b1:b1:14:93:c5:08:5c:c0:e1:
7f:66:ae:c9:b7:71:4f:fd:91:cb:4e:27:d8:58:c8:a4:b3:d8:
23:49:75:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org