Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/jm3CuvJzE1zH5uw-o5aq36husm8.roa
File: jm3CuvJzE1zH5uw-o5aq36husm8.roa (raw, json)
Hash identifier: Roc1Y8OeDCY4WJYOH3Q2U6QQEC7zYjwHAvnIYTPAhpE=
Subject key identifier: 8E:6D:C2:BA:F2:73:13:5C:C7:E6:EC:3E:A3:96:AA:DF:A8:6E:B2:6F
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42E961D0C939F6D8CB5E581129A107
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/jm3CuvJzE1zH5uw-o5aq36husm8.roa
Signing time: Sun 01 Jan 2023 21:35:34 +0000
ROA not before: Sun 01 Jan 2023 21:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212331
IP address blocks: 2a0e:8f02:f010::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e9:61:d0:c9:39:f6:d8:cb:5e:58:11:29:a1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e6dc2baf273135cc7e6ec3ea396aadfa86eb26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7a:1c:57:32:38:af:31:52:5f:34:dc:d3:d5:
62:fc:8b:32:36:c0:85:e3:60:ea:de:f1:90:c6:fc:
1b:37:d9:5f:5a:77:d0:62:ca:47:06:36:5c:ab:5c:
ef:99:fc:9a:9f:af:61:17:1c:46:fd:5f:cb:9b:13:
b5:fa:d8:78:dd:4e:2e:2b:68:80:8d:fd:04:66:42:
75:56:f2:79:dc:5c:b8:f9:72:83:1e:99:ec:51:e8:
7b:d9:90:0f:bc:3a:d6:42:90:a6:92:34:36:26:46:
0d:ac:86:c6:52:18:29:66:39:7d:52:e2:d4:4f:4c:
16:37:ca:1b:08:05:7a:2d:f5:5e:a3:4d:7a:f3:33:
f4:61:97:04:67:64:c2:c8:49:50:90:f7:aa:7d:f6:
75:5a:18:ab:3a:8c:6d:e5:68:d1:e3:d6:9d:62:77:
a4:94:3c:fa:f2:cd:12:c6:9c:29:88:ff:f7:37:35:
a3:79:b3:ee:98:b5:aa:ff:22:60:77:73:8e:41:92:
76:97:13:0b:4c:76:3f:32:35:9f:fd:ac:9a:eb:e4:
fe:41:f3:2d:03:d6:83:f4:d2:d5:0c:13:e2:e2:f4:
c6:90:97:23:2d:8d:35:fa:de:21:55:0a:f0:3d:ff:
e4:41:c6:6a:85:04:fb:a7:af:96:9d:90:6f:91:7f:
30:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6D:C2:BA:F2:73:13:5C:C7:E6:EC:3E:A3:96:AA:DF:A8:6E:B2:6F
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/jm3CuvJzE1zH5uw-o5aq36husm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f010::/48
Signature Algorithm: sha256WithRSAEncryption
3f:01:2d:f6:e6:8e:54:c3:ac:d3:8a:f2:65:b2:3d:98:56:72:
c9:43:60:ac:fd:b1:96:40:10:fc:ba:29:8b:29:e8:9e:33:f2:
85:b7:dd:a2:ae:06:fc:25:49:41:ea:e6:17:19:aa:90:22:cf:
a1:5f:42:65:07:74:b8:9e:8d:67:ef:12:8f:39:00:bf:93:0b:
63:1a:12:21:ee:e2:74:78:2e:65:95:76:57:1c:e8:4b:00:68:
d4:bc:19:89:b8:d7:1e:e9:2b:48:ef:08:b7:6e:c8:7a:93:36:
e6:bc:be:4a:a7:db:83:38:0c:fa:57:9a:cc:f2:5e:b9:c5:37:
dc:e7:42:83:54:73:20:db:75:7c:d2:8a:ef:44:be:63:e6:cd:
b2:ad:2c:9b:30:3e:3b:66:91:d7:29:f8:b7:67:a9:e0:c3:3d:
4d:e8:d0:22:6f:bb:54:11:5d:86:90:96:28:04:80:a4:d5:ac:
5b:b1:4b:06:cf:26:cc:7a:9d:3a:3b:4f:d1:5d:ec:5a:2b:bd:
e4:28:5e:29:c2:55:79:38:57:0f:4c:e3:2e:f2:ef:c0:65:74:
cc:63:36:ee:5f:3c:8f:c8:fd:0c:61:c4:96:2e:54:49:ed:01:
db:7d:46:9b:3a:91:02:fe:79:ff:23:82:44:06:97:d6:45:b5:
a0:b5:d2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org