Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/vNo70oWUWGhcChvhWX26ajCRNeY.roa
File: vNo70oWUWGhcChvhWX26ajCRNeY.roa (raw, json)
Hash identifier: 5V64UDxxmP2U9EY1CzxEkFz/BNr5l1WmPq8Ho0txu2c=
Subject key identifier: BC:DA:3B:D2:85:94:58:68:5C:0A:1B:E1:59:7D:BA:6A:30:91:35:E6
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 01856EF8E813B15AB072C73E338054B5EDBB
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/vNo70oWUWGhcChvhWX26ajCRNeY.roa
Signing time: Sun 01 Jan 2023 20:14:44 +0000
ROA not before: Sun 01 Jan 2023 20:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210616
IP address blocks: 2a0e:3247:8001::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e8:13:b1:5a:b0:72:c7:3e:33:80:54:b5:ed:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 20:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcda3bd2859458685c0a1be1597dba6a309135e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2e:96:66:ae:7b:05:8d:c2:d4:b8:81:58:ff:
be:c4:13:70:d2:d1:5c:9f:3e:61:d5:fa:f1:34:9e:
dc:90:d7:94:b3:13:57:27:ed:94:ff:fc:1e:b4:97:
22:81:31:3d:66:62:06:78:c1:1a:64:48:dc:e2:db:
4d:74:d4:90:d4:c3:b3:2a:65:8a:b4:05:b4:e5:cd:
34:27:89:77:ca:07:37:e1:8c:82:44:64:9f:fd:e7:
1e:25:18:b5:60:6c:8a:14:f7:22:b7:41:2c:fb:7c:
48:d6:ad:5b:30:2f:a2:6d:4f:eb:8e:56:c5:08:af:
39:37:5e:ef:46:f3:37:53:72:67:44:f7:af:6b:da:
a3:4b:26:e8:6c:50:62:f1:7c:59:51:23:86:80:0f:
80:a6:5c:f3:a9:f2:a3:9c:9d:3d:f1:d4:91:9d:0f:
9d:ee:bf:4a:eb:7c:0c:e7:e6:89:70:05:8f:ff:25:
c3:6c:69:0d:5d:39:50:cf:ea:0a:c7:17:70:d3:95:
75:29:17:c4:58:34:17:ab:7c:05:30:85:c0:ff:b1:
7c:86:b8:cf:57:09:a9:71:2d:bd:84:1e:db:23:4f:
82:72:40:e7:31:e9:f0:36:af:6b:12:54:fd:af:7d:
12:04:40:2f:3f:18:83:2f:06:84:32:49:28:5a:8c:
1a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DA:3B:D2:85:94:58:68:5C:0A:1B:E1:59:7D:BA:6A:30:91:35:E6
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/vNo70oWUWGhcChvhWX26ajCRNeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3247:8001::/48
Signature Algorithm: sha256WithRSAEncryption
19:d8:77:64:65:8d:2f:0f:75:9d:72:50:0e:1a:bb:47:a3:5d:
b5:09:8f:ce:3b:b1:7d:69:70:9f:20:74:99:4a:b8:34:49:d7:
1a:cc:ed:c4:d1:8e:06:60:5b:2c:af:f4:c1:bf:b0:1a:4a:2d:
58:d7:83:2f:80:8b:75:ac:c4:b8:19:08:b1:23:3a:c1:a9:a1:
cd:e1:8b:73:70:d6:ad:46:93:b4:cc:44:78:3c:54:61:21:19:
bf:f8:e0:f4:2d:e1:07:61:c2:7d:48:68:2b:35:6e:47:f9:1a:
48:12:66:7b:9e:9c:84:a7:af:81:6e:e4:5e:ec:e9:4f:9a:a4:
2b:1d:c5:be:ba:14:0f:28:4d:30:4c:4a:ee:66:de:18:32:6a:
60:cf:19:1e:40:96:5b:e3:95:2c:11:71:ed:2f:fd:42:d8:81:
20:78:a2:7b:87:2d:56:06:73:29:58:af:67:05:66:20:21:79:
e1:24:aa:c1:ef:63:9f:7c:ae:aa:49:35:40:af:b6:52:f1:5c:
fe:f5:59:1c:84:6f:55:f8:9b:28:48:68:33:64:2a:15:21:41:
b3:1e:00:77:05:45:f9:25:34:d5:e8:08:2f:13:0f:36:38:de:
5c:70:4f:84:96:f1:84:a0:22:4a:42:3e:64:35:0f:76:50:51:
46:83:16:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:52 2024 by rpki-client on console-ams.rpki-client.org