Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1xyLb0H_ItWRzSWsDpkWlWjbOqM.roa
File: 1xyLb0H_ItWRzSWsDpkWlWjbOqM.roa (raw, json)
Hash identifier: jrlYtjmW/YEJ9b0mL1eCMtmZw7UuvMp202nUzS7P1Wo=
Subject key identifier: D7:1C:8B:6F:41:FF:22:D5:91:CD:25:AC:0E:99:16:95:68:DB:3A:A3
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E63F38A80DBA6E80C28DBBEEF21E2
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1xyLb0H_ItWRzSWsDpkWlWjbOqM.roa
Signing time: Mon 02 Jan 2023 06:14:55 +0000
ROA not before: Mon 02 Jan 2023 06:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207957
IP address blocks: 2a0c:b641:880::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:63:f3:8a:80:db:a6:e8:0c:28:db:be:ef:21:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d71c8b6f41ff22d591cd25ac0e99169568db3aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fb:48:bc:4e:b3:7e:6f:66:2b:ba:52:2c:95:
2f:24:4b:da:89:a3:67:48:f6:7b:27:f2:db:15:2e:
9e:65:7e:df:32:52:2a:41:54:80:8c:14:3c:94:11:
a7:8a:16:f0:c3:a5:18:8c:5a:ab:90:30:fd:c6:05:
27:84:74:07:0d:8e:4e:f0:fe:5b:44:3d:da:6d:fe:
c2:3d:13:9a:75:37:80:2f:c3:be:85:4d:1b:e3:d4:
01:44:d7:3e:77:d0:15:de:21:0b:ea:8a:90:e3:ef:
28:e1:dc:84:0c:de:b2:c3:d4:3f:87:98:b2:ed:86:
3d:fe:ea:b7:b6:b8:91:c0:8a:a5:e0:14:60:dd:68:
cc:7d:2e:90:b0:b0:26:e3:a4:c3:95:7f:17:6c:4c:
e3:12:36:e1:d9:7d:7a:d6:f0:a5:de:47:dc:41:7e:
b9:12:b4:63:0c:32:b5:22:4c:aa:8a:ad:04:8d:cb:
61:8c:16:72:77:b6:5e:1e:94:a5:8d:8c:ea:26:74:
e3:13:fc:be:d4:65:21:cc:0e:ea:3e:39:cf:17:86:
1b:61:33:05:20:20:52:96:98:18:89:33:35:8b:65:
6d:4a:19:8a:f9:ab:db:f6:d4:5f:96:86:e1:53:d4:
cb:66:53:e1:14:91:6b:a6:de:43:0d:79:d6:50:a0:
d9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1C:8B:6F:41:FF:22:D5:91:CD:25:AC:0E:99:16:95:68:DB:3A:A3
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1xyLb0H_ItWRzSWsDpkWlWjbOqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:880::/44
Signature Algorithm: sha256WithRSAEncryption
56:24:a5:ca:f1:21:aa:0a:71:33:40:53:05:52:1d:c5:92:a2:
2e:96:8a:dc:b0:e5:4e:01:e2:88:d0:f7:a0:19:02:24:87:25:
c1:5b:2e:79:58:87:e8:23:0c:2f:db:df:6e:ff:bf:11:2e:91:
1a:31:ab:f9:0f:20:52:bd:d3:3a:d6:fe:28:1f:49:04:6b:12:
52:ea:c6:1d:09:f7:aa:32:42:a6:63:36:35:c9:34:f5:0b:d3:
d7:2b:08:76:77:5d:47:be:9c:56:d9:cc:8a:75:91:56:c7:fd:
13:dc:5d:4e:23:71:77:68:bc:b6:a3:b9:21:d1:8c:73:21:73:
46:dd:26:24:1d:a6:d4:4c:96:54:7a:58:4d:24:61:c9:6e:e4:
8e:9e:c1:90:6f:85:e6:f2:8f:6f:73:cf:c7:ae:02:b2:9f:24:
85:7e:69:d8:d2:97:b9:94:67:23:c7:b1:c6:cc:b0:75:8a:ae:
86:ff:04:71:a4:2e:72:c0:cc:27:da:70:12:d8:3a:16:9c:d0:
c5:e8:30:31:b0:00:94:19:ad:61:31:b5:c2:31:7c:f7:43:eb:
7b:ad:64:bc:3b:a1:81:ce:1d:be:a0:48:eb:6f:08:70:02:e0:
d6:24:95:36:54:ad:15:83:17:75:d3:65:45:8e:f7:5a:12:9a:
61:79:ed:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org