Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/oPQVF7zxl7z9tB5bGcE6ftwugaA.roa
File: oPQVF7zxl7z9tB5bGcE6ftwugaA.roa (raw, json)
Hash identifier: 894LvWAy3Qs/dkfB2CAcrJVt0Lv/77vB7B/sYdViUas=
Subject key identifier: A0:F4:15:17:BC:F1:97:BC:FD:B4:1E:5B:19:C1:3A:7E:DC:2E:81:A0
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018B0656A60C91DF6A42DD5FDE6A9B491757
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/oPQVF7zxl7z9tB5bGcE6ftwugaA.roa
Signing time: Fri 06 Oct 2023 18:53:43 +0000
ROA not before: Fri 06 Oct 2023 18:53:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216204
IP address blocks: 2a0e:8f02:f05f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:56:a6:0c:91:df:6a:42:dd:5f:de:6a:9b:49:17:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Oct 6 18:53:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0f41517bcf197bcfdb41e5b19c13a7edc2e81a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:10:67:88:e1:80:c9:b2:4c:7c:12:3e:00:b7:
6e:d6:33:44:42:f3:ec:ef:34:a4:64:57:ad:0a:66:
c3:36:8b:c1:eb:c5:cd:89:cc:9d:80:9e:37:55:43:
cb:0b:40:21:1e:34:63:ed:4d:f5:b9:d2:4b:9b:0d:
f2:d2:42:b1:7c:f4:44:74:fd:30:c8:10:d1:66:e2:
a7:c1:c2:24:2a:7e:ba:ee:cf:87:19:02:a2:7f:bb:
2a:d0:8f:e5:b7:bd:6b:e3:ee:7c:6b:cc:02:70:1e:
d2:5b:46:7a:91:0f:87:0a:8a:bc:49:8c:4e:a9:d9:
79:ab:20:a8:6e:8b:f8:35:3a:8b:72:e2:2e:fe:8c:
4c:f5:d1:dd:de:e9:f9:fa:f0:98:82:69:18:2f:ec:
c0:8d:d5:08:5c:68:c8:4f:00:56:bb:de:14:c3:5d:
21:60:f7:f4:f8:73:71:d5:82:03:58:3a:8f:98:5d:
ad:35:b4:19:7e:83:d6:4f:6d:04:f3:09:e4:a0:d6:
d0:e0:df:a5:cf:fb:be:00:f0:ed:1c:11:52:71:68:
7c:32:ad:69:b4:31:03:d5:c3:ce:b9:88:48:9c:e0:
7a:15:87:43:30:f2:24:b6:a2:f7:52:64:8a:3a:a6:
d6:9c:ac:a1:f5:88:b9:07:e6:1a:42:2e:bb:3a:0c:
37:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F4:15:17:BC:F1:97:BC:FD:B4:1E:5B:19:C1:3A:7E:DC:2E:81:A0
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/oPQVF7zxl7z9tB5bGcE6ftwugaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f05f::/48
Signature Algorithm: sha256WithRSAEncryption
82:46:f8:6c:55:cc:6b:6e:9c:d4:d5:7a:ab:97:6e:fd:69:30:
0b:29:1e:0d:88:24:7c:f2:23:60:d6:72:bd:3f:93:cc:ca:2f:
4f:7c:18:fb:b7:98:0d:7f:68:50:bd:c4:df:a7:52:ce:a4:5a:
29:1d:03:25:1c:95:08:75:22:12:d3:79:4b:5b:b2:09:3d:0c:
d6:44:ee:c9:07:4f:55:71:b1:48:66:09:e3:08:30:56:bb:16:
77:8d:8b:29:19:21:60:6a:6c:3c:2f:6c:9c:b7:e5:26:bd:14:
b4:55:f6:ae:95:90:fe:16:be:8f:f9:65:f7:41:bd:2d:91:fe:
11:67:b9:43:16:94:14:00:ba:6b:05:ba:68:6c:27:ab:c3:7e:
9c:ce:d1:e6:a3:19:08:83:1e:2f:5b:35:d1:ab:0f:12:7f:28:
90:95:87:2c:b4:d4:c2:7a:dc:2b:d1:f2:f3:26:d2:90:1b:5f:
35:05:aa:bf:b3:c9:2d:5d:e5:9d:e5:39:06:45:4a:79:b0:13:
14:d8:6e:6f:4c:13:38:7d:11:d3:3a:fe:15:54:f5:21:c4:ee:
4c:33:70:ce:45:b1:14:71:48:3e:1f:2b:9e:3d:8c:09:0c:cf:
29:85:4d:0c:e5:cd:9a:f3:8e:9a:88:8f:9d:e4:cd:15:8c:7e:
cf:07:78:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org