Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/m4QnuCwY6DQlfoppLZVOTk4uz3E.roa
File: m4QnuCwY6DQlfoppLZVOTk4uz3E.roa (raw, json)
Hash identifier: 2yR39MWCOMuPe8CcXYlfwzBSCdOFoBkPtimOrmfCJoc=
Subject key identifier: 9B:84:27:B8:2C:18:E8:34:25:7E:8A:69:2D:95:4E:4E:4E:2E:CF:71
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42EC02389DA9C063D8AE18CE5FD968
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/m4QnuCwY6DQlfoppLZVOTk4uz3E.roa
Signing time: Sun 01 Jan 2023 21:35:34 +0000
ROA not before: Sun 01 Jan 2023 21:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212360
IP address blocks: 2a0e:8f02:f00d::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ec:02:38:9d:a9:c0:63:d8:ae:18:ce:5f:d9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b8427b82c18e834257e8a692d954e4e4e2ecf71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d1:32:b9:0c:b5:ea:f6:38:0c:f8:e7:ed:88:
82:1c:79:2e:fd:82:a5:47:48:99:14:1b:0e:29:ce:
f7:5a:58:da:8c:c8:6b:6f:7a:31:96:53:cc:88:42:
e7:5c:0c:a9:59:dc:ef:ce:b4:8e:c9:27:a7:38:1f:
b0:e5:e9:67:b3:fd:8e:24:85:ae:f4:c7:35:e3:59:
c9:b9:68:cf:f0:95:1e:c7:3d:ce:8a:29:09:22:36:
9a:3e:c0:b1:2d:48:33:2c:59:74:52:20:73:57:7e:
50:ea:05:dc:a2:0f:cd:5a:12:80:1a:44:4a:44:11:
d9:0c:34:27:c6:b6:7f:7a:7f:bd:bd:e6:b3:82:f4:
04:19:0a:0b:99:a9:65:34:a3:a6:92:9c:17:30:90:
2d:c3:11:03:35:b4:43:f0:79:73:11:fe:50:72:fc:
ae:8e:0e:71:6d:54:9f:3b:bb:33:c6:01:20:c1:66:
d5:d4:2e:f2:ec:ab:2a:a6:78:88:b4:37:18:f1:0a:
1c:43:87:3d:24:4f:d1:4d:d2:39:97:e8:ac:4b:d1:
33:00:71:60:21:2a:49:8a:2c:4b:a4:c1:e1:1a:85:
74:38:17:af:07:df:bb:79:a7:a1:56:5d:6f:a3:7c:
0c:cc:b4:af:1c:9f:82:7e:c4:af:1f:42:14:41:df:
b9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:84:27:B8:2C:18:E8:34:25:7E:8A:69:2D:95:4E:4E:4E:2E:CF:71
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/m4QnuCwY6DQlfoppLZVOTk4uz3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f00d::/48
Signature Algorithm: sha256WithRSAEncryption
3c:b2:76:05:c9:d8:69:4d:9d:c3:77:75:7b:7b:be:0e:18:dc:
7d:ae:65:cc:36:11:b5:aa:ea:73:0d:20:b3:99:12:a8:ac:7b:
ac:5b:aa:37:1a:f9:d1:59:19:34:a4:f0:b5:be:8c:a6:29:b9:
ee:c1:f9:b9:11:c2:c1:ed:63:dd:f4:4b:ca:b0:d3:96:d5:90:
bc:b8:9c:ad:a4:e7:2b:da:f3:fe:d2:52:e9:f6:95:57:04:48:
02:46:bf:51:43:56:40:3a:f1:3c:0e:45:14:71:4c:5f:e0:63:
04:59:34:9b:f9:85:64:45:2a:56:b6:8c:92:bb:1f:cf:35:a2:
d4:fc:68:a3:72:48:39:f5:c4:10:9e:92:78:e3:f8:d9:1c:a5:
c0:b9:f3:b8:b7:a2:21:54:ae:85:12:d0:98:2a:61:26:55:48:
3d:76:d0:d9:52:4d:80:0a:82:b9:e1:3e:58:eb:c4:4c:af:ae:
1e:bf:35:59:d6:35:ca:24:e2:cf:93:71:9c:6f:c7:c4:6c:5c:
2e:72:f5:bc:42:b1:7e:5e:df:ed:e2:a3:9c:4f:6c:6a:d2:a4:
6e:a7:93:b4:60:e7:77:65:4f:da:3e:72:03:64:a7:4e:58:60:
be:14:fd:a0:32:e4:0c:44:35:56:fd:19:c5:4f:8c:85:c2:98:
fc:70:39:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org