Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-ycaDb9e13cT0VHN9qJEsTo6rnQ.roa
File: 1-ycaDb9e13cT0VHN9qJEsTo6rnQ.roa (raw, json)
Hash identifier: SdbAcSljgCJ4MmOxk6cW2iC+sf3ZGlR1AvPafKTVWWo=
Subject key identifier: FB:27:1A:0D:BF:5E:D7:77:13:D1:51:CD:F6:A2:44:B1:3A:3A:AE:74
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E61B3EDFD474A5C22E74BA2CB48B7
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-ycaDb9e13cT0VHN9qJEsTo6rnQ.roa
Signing time: Mon 02 Jan 2023 06:14:54 +0000
ROA not before: Mon 02 Jan 2023 06:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207466
IP address blocks: 2a0c:b641:680::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:61:b3:ed:fd:47:4a:5c:22:e7:4b:a2:cb:48:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb271a0dbf5ed77713d151cdf6a244b13a3aae74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:16:74:67:9c:82:df:02:75:57:f2:b4:ab:
d7:1c:35:a2:17:72:9e:33:86:e2:1d:81:b6:3c:5c:
94:92:a8:cd:8b:2d:f7:e5:41:86:c2:0a:b3:1a:ff:
c3:5e:80:c3:f6:d3:ab:03:53:d3:b8:ef:23:19:85:
ce:d8:fd:42:3d:d5:d7:e5:be:76:dd:0c:0b:05:19:
35:ae:5a:56:13:b8:40:1d:ac:c2:3a:6d:9d:ba:f0:
75:36:c1:70:5f:b3:fa:c2:be:b3:da:ad:d2:5b:c4:
42:f0:08:f9:42:f6:7a:2b:3b:5f:aa:bd:0f:37:6a:
38:85:31:ca:58:73:61:8f:cf:79:8b:e4:52:10:f4:
dd:e8:3f:48:67:eb:49:1e:80:27:a9:ac:1d:24:46:
9f:5f:67:fb:bc:58:9a:c1:19:06:e9:21:7f:ff:23:
93:56:02:6f:82:11:1f:30:fa:19:f8:4b:93:15:b6:
33:6c:7d:c0:9f:c9:15:1a:4f:d4:8f:5c:d7:ed:20:
17:9d:58:93:2e:df:92:b8:48:aa:8f:b8:98:98:ab:
08:68:20:78:09:c4:b5:b0:b8:a8:e8:0b:95:69:be:
22:0b:d7:72:19:ac:ca:e8:1b:36:81:20:fa:ad:56:
32:75:ff:cc:07:c5:2a:5a:03:14:1b:69:2a:ec:c9:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:27:1A:0D:BF:5E:D7:77:13:D1:51:CD:F6:A2:44:B1:3A:3A:AE:74
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-ycaDb9e13cT0VHN9qJEsTo6rnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:680::/44
Signature Algorithm: sha256WithRSAEncryption
8e:ef:bb:dc:70:19:84:3a:b4:97:c3:63:28:c5:8a:6f:b0:a7:
59:89:da:56:b9:b4:ad:ed:95:f7:aa:15:a3:82:ca:25:f2:e5:
89:e0:e1:4c:35:72:ec:be:8c:d6:92:f5:aa:a3:fd:7e:5c:fd:
d7:14:38:11:9f:41:67:70:c4:e5:ac:4f:c6:ae:61:2b:ad:90:
aa:db:3c:10:02:ae:31:aa:47:65:39:46:26:0f:e8:0e:b7:d0:
89:5d:c4:ca:fe:67:16:f6:98:88:d3:5c:6f:56:3c:39:02:61:
75:ac:49:93:c5:8d:7e:78:bd:cc:9e:8b:49:8e:95:40:4b:28:
8c:aa:6e:94:4c:20:a7:2c:11:a9:f7:4f:aa:1d:28:80:a4:07:
67:85:ae:71:ca:bf:5a:ef:ef:a4:8d:84:47:ae:44:a1:bc:c0:
4c:0f:5e:58:fb:de:3d:c5:05:5e:c8:7e:0b:1d:e9:c3:f6:5a:
52:71:01:05:9d:1f:1e:ea:89:14:e8:4f:77:d9:d2:6e:6c:a8:
51:d5:ed:b2:41:80:5d:a1:6d:b0:d7:3c:6b:53:90:64:97:33:
9c:1b:33:b3:99:ef:38:7a:44:63:5e:77:c6:fb:7b:65:4a:52:
77:07:3b:2b:e0:ad:3d:f2:64:06:d2:ca:6f:8f:4e:2a:f0:47:
a1:3f:66:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:36 2023 by rpki-client on console-fra.rpki-client.org