Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/xV-JicrGLPtunUGAEoZvWaeEnwk.roa
File: xV-JicrGLPtunUGAEoZvWaeEnwk.roa (raw, json)
Hash identifier: Xw31p6AAMnyjkIQnUPmHJrqS8a23ny2mtKtvIecMkXE=
Subject key identifier: C5:5F:89:89:CA:C6:2C:FB:6E:9D:41:80:12:86:6F:59:A7:84:9F:09
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42D1F6B0709799AB524842F4240147
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/xV-JicrGLPtunUGAEoZvWaeEnwk.roa
Signing time: Sun 01 Jan 2023 21:35:28 +0000
ROA not before: Sun 01 Jan 2023 21:35:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207212
IP address blocks: 2a0e:8f02:f040::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:d1:f6:b0:70:97:99:ab:52:48:42:f4:24:01:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c55f8989cac62cfb6e9d418012866f59a7849f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ab:b6:b3:18:61:e3:f7:05:1c:c3:56:17:5e:
63:d4:eb:65:20:d6:b7:2f:bf:a7:99:63:69:6e:2d:
fe:5e:2c:09:23:cf:df:4e:ff:f1:fc:30:6a:ac:b6:
dc:cc:b6:cb:cf:27:2c:89:b3:ae:18:ba:ef:3e:af:
47:8d:1c:84:19:a4:80:ca:22:46:f9:8d:fa:2a:d8:
8b:75:fa:63:4e:96:0f:df:af:33:1f:48:9c:04:04:
18:1b:0d:06:ec:5e:8b:c1:bf:f8:b2:7d:c9:ce:a3:
e9:b0:6b:e4:8a:1f:da:86:33:d9:06:26:f6:d9:42:
fc:f8:0f:30:8b:74:5e:16:f7:4e:11:71:11:09:80:
f7:33:d5:9a:14:27:8b:50:78:c8:bf:aa:19:81:75:
10:95:d7:44:6e:6c:aa:0b:49:5f:2d:bf:9c:ca:c0:
f1:fe:e2:5a:cb:37:b0:ee:e0:d7:5f:85:96:d5:dd:
9a:16:8d:18:a4:d5:86:bc:6d:ef:ad:04:eb:a2:17:
d0:b6:55:60:fe:c3:8a:d3:f3:3d:f4:3c:3b:85:2d:
54:68:54:04:19:86:f0:04:ab:27:cc:b8:e9:9e:10:
cc:87:62:08:c8:1f:d2:f4:84:f3:1e:91:7c:69:d2:
0a:78:9a:c3:71:18:b7:0c:d3:62:fc:28:7f:b3:be:
6a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5F:89:89:CA:C6:2C:FB:6E:9D:41:80:12:86:6F:59:A7:84:9F:09
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/xV-JicrGLPtunUGAEoZvWaeEnwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f040::/48
Signature Algorithm: sha256WithRSAEncryption
88:ef:62:65:6d:57:dc:b8:6f:e7:58:a7:16:c2:4f:a2:c3:f6:
b1:9d:e8:6f:6b:b3:d3:e4:25:8d:a9:c9:a0:4d:e6:47:d2:4d:
4e:34:ef:50:46:d8:f7:5d:a7:ba:d7:f6:94:e6:b7:87:4b:e4:
11:b1:8d:b7:10:43:74:a2:a0:4e:05:ef:d9:d2:07:88:5e:b8:
b5:b4:de:6c:82:95:c7:0a:76:16:a9:ca:ba:e5:0e:c7:8b:6c:
68:d3:d7:23:d6:39:6c:46:21:bf:9f:f2:9f:d3:5a:55:5d:35:
2b:00:de:f7:6b:e2:09:36:fb:ec:d2:28:d1:a7:1b:0f:e8:40:
79:21:f3:d0:84:19:c8:1e:8e:32:cf:37:64:ca:38:e2:7e:1f:
56:d8:a3:ed:c2:36:c3:1e:22:fe:fe:0a:fb:ef:ff:f7:e3:2a:
1f:1f:15:7c:c4:b5:31:24:4c:b8:3f:0f:0b:e2:36:4f:f2:08:
e4:dd:11:aa:4c:4b:52:97:3f:81:c9:54:73:20:1f:31:6f:15:
95:9f:51:a1:66:8b:ad:00:52:2b:16:10:48:14:e3:5a:72:3e:
31:7c:8c:65:3a:79:11:1a:9e:30:61:3d:bd:bc:b6:8a:23:99:
dc:8a:e8:3b:af:38:f7:9f:d5:bc:38:65:10:2b:19:94:43:bf:
41:2e:9b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org