Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DTmFuUxYHP56SE2QviPXLOPvwtc.roa
File: DTmFuUxYHP56SE2QviPXLOPvwtc.roa (raw, json)
Hash identifier: zIU5CZgtAp7hVItI9Ze6m5ttBINVyoUGY9fDvjKvYeQ=
Subject key identifier: 0D:39:85:B9:4C:58:1C:FE:7A:48:4D:90:BE:23:D7:2C:E3:EF:C2:D7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E6441B2F85938BF1A8F8B0137C043
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DTmFuUxYHP56SE2QviPXLOPvwtc.roa
Signing time: Mon 02 Jan 2023 06:14:55 +0000
ROA not before: Mon 02 Jan 2023 06:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208029
IP address blocks: 2a0c:b641:470::/44 maxlen: 48
2a0c:b642:5000::/36 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:64:41:b2:f8:59:38:bf:1a:8f:8b:01:37:c0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d3985b94c581cfe7a484d90be23d72ce3efc2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ac:3d:a7:f8:61:8f:5a:46:57:80:30:f0:03:
a3:d0:48:ea:0d:5e:c2:1c:96:2d:07:81:4c:56:b6:
3e:cb:8f:9b:1c:3e:04:3e:2b:16:2e:02:a8:0a:b9:
41:e0:ef:a8:8d:4b:20:28:c5:7d:5c:2e:0f:ed:6c:
6b:6a:35:09:bc:02:0a:fe:ec:bf:5d:43:2e:63:ae:
ba:43:0d:ef:6c:07:0b:db:73:1e:a1:eb:c6:f0:6b:
b6:87:a9:eb:04:72:1e:3c:a3:ae:d9:62:a9:be:84:
e1:8d:13:09:9d:fc:85:8e:b8:88:1f:bf:c2:46:c6:
5c:81:7b:96:e5:19:e6:be:37:a5:ef:88:ed:53:c6:
0b:ca:c7:b5:f4:7c:3e:0f:60:af:d6:35:70:a1:c3:
b9:be:f9:35:0c:a1:79:f1:01:1d:66:3f:fe:3e:34:
4e:29:f7:41:5d:6c:cf:98:e8:92:e5:26:86:a1:df:
47:46:dc:56:ab:57:60:2f:36:f8:94:87:85:cb:66:
56:c4:33:01:8a:9d:71:38:6b:04:a6:18:b0:94:11:
8f:87:d2:7c:ee:29:2d:70:2d:48:2d:ad:ee:67:45:
14:d2:e0:e0:71:cc:c0:c2:48:e1:17:84:31:45:ac:
04:a3:26:ca:d7:e0:9e:63:77:fd:d7:19:23:1f:29:
8d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:39:85:B9:4C:58:1C:FE:7A:48:4D:90:BE:23:D7:2C:E3:EF:C2:D7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DTmFuUxYHP56SE2QviPXLOPvwtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:470::/44
2a0c:b642:5000::/36
Signature Algorithm: sha256WithRSAEncryption
48:ae:17:85:6e:4a:e4:f8:4d:42:d9:e2:b2:6e:01:6a:c6:02:
21:81:9b:25:8d:59:66:e4:c4:43:c3:29:76:ec:73:d4:33:d0:
c4:b8:2f:c7:bb:6d:64:f1:b8:c8:0d:ac:19:86:58:94:85:e2:
31:e1:07:3f:66:a8:5c:05:74:00:9f:c1:16:99:e2:4e:5f:f6:
2e:fe:3d:f5:e3:f8:e2:11:ab:6b:59:6d:07:3a:79:83:9f:a5:
9c:65:81:71:a7:e9:26:d5:6a:09:d2:4f:e2:0f:aa:1e:09:c0:
78:18:e0:1c:c3:de:b5:ca:19:29:53:19:da:bb:15:7e:92:56:
63:d1:00:b5:59:ed:d0:2f:ef:98:53:bb:38:fe:41:f9:0a:41:
02:f8:dc:70:44:90:8c:ce:b3:93:c7:11:3b:3d:f7:f7:bf:14:
8f:ae:ee:96:1d:92:22:aa:51:d3:82:85:c7:ac:38:4b:0b:07:
44:c9:ba:ac:ab:2f:63:a8:06:1e:bc:93:47:d5:d0:55:22:55:
ed:df:b2:7b:86:3b:a0:63:87:aa:85:13:ad:a2:1f:1e:df:1c:
ea:97:7a:c8:57:24:d1:13:0b:c1:66:51:bd:74:81:ac:7d:86:
47:13:d3:13:23:a6:48:19:a4:56:a0:0a:a8:e5:be:ed:1b:e2:
b0:93:04:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org