Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JRBjc9yea6_xKs8ZaMt5UT6tcyk.roa
File: JRBjc9yea6_xKs8ZaMt5UT6tcyk.roa (raw, json)
Hash identifier: zDhY/IcPRugbpXCWSx/0AG0zpCa0oGn77j2puJ5cMQE=
Subject key identifier: 25:10:63:73:DC:9E:6B:AF:F1:2A:CF:19:68:CB:79:51:3E:AD:73:29
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E3F06629F9B282C95A5CBEEA0EB0A
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JRBjc9yea6_xKs8ZaMt5UT6tcyk.roa
Signing time: Mon 02 Jan 2023 06:14:45 +0000
ROA not before: Mon 02 Jan 2023 06:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48646
IP address blocks: 2a0c:b642:1a09::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:3f:06:62:9f:9b:28:2c:95:a5:cb:ee:a0:eb:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25106373dc9e6baff12acf1968cb79513ead7329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c3:23:60:81:fd:0f:b0:e2:08:b4:53:9f:ee:
06:c3:80:09:4c:87:83:97:58:9d:c7:97:29:5d:fb:
84:d0:d1:71:9a:69:b3:e0:b8:c0:26:17:5b:f3:23:
12:32:63:16:2b:78:a4:c1:ee:46:c2:5c:f8:17:b7:
f1:17:5a:b7:a9:e7:2b:b2:d7:df:a6:3a:7b:fe:3b:
cb:0f:1c:72:f2:13:1b:e8:ba:91:63:c6:fa:21:5f:
b3:b0:17:38:47:e7:c6:af:d0:b0:5b:ef:17:f1:a5:
01:ec:a9:f7:b8:4f:d8:80:37:47:ac:fd:a8:ff:06:
92:69:a2:0e:ff:54:7d:6c:76:82:20:10:07:dd:e0:
f0:ad:27:92:60:4d:a0:27:c3:b9:e7:ee:70:81:7e:
14:b0:91:18:3e:19:e9:39:98:41:ca:ba:09:dd:5f:
c6:f6:0f:ea:ed:db:04:44:ff:12:90:9a:a8:b5:e9:
f3:02:03:01:1d:2f:50:c3:bc:e0:ed:0f:d3:29:30:
e9:37:a6:22:41:4d:39:00:a2:5d:73:22:c6:14:0d:
0d:53:70:37:8b:af:8e:02:d9:6f:95:c6:4f:e9:71:
42:95:75:b2:a5:2b:38:6b:3b:e4:31:0b:55:20:93:
87:eb:12:e7:b4:2c:87:d9:af:bc:fe:cb:8a:6d:13:
27:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:10:63:73:DC:9E:6B:AF:F1:2A:CF:19:68:CB:79:51:3E:AD:73:29
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JRBjc9yea6_xKs8ZaMt5UT6tcyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a09::/48
Signature Algorithm: sha256WithRSAEncryption
2b:6b:d6:82:74:65:ab:77:6d:9a:99:48:78:67:27:30:86:a5:
dc:e2:c3:d0:6a:49:f9:c2:5d:cd:fa:6e:c2:32:dc:a1:ce:1b:
3b:39:da:b7:4d:90:4e:16:cc:6a:49:46:45:02:a6:63:34:df:
06:de:c6:2a:70:cb:fa:77:b4:d7:84:57:01:de:8d:fe:92:12:
c9:13:53:d3:f7:e2:d2:23:96:9f:3d:3a:0d:26:f9:d4:e7:85:
6f:8c:e0:32:6d:e4:30:e6:53:c8:85:02:25:d0:9d:29:1e:c6:
2c:6d:98:07:7f:eb:59:a5:7c:63:af:2f:95:9d:6e:1e:86:e5:
21:6c:fd:82:58:b8:2e:17:b5:e3:6b:0f:c0:7b:8e:a4:ca:0b:
db:6c:ee:4b:5c:3a:97:e3:d4:89:de:c8:ca:ad:a0:db:59:59:
4e:ea:fa:e8:f3:43:be:4b:e6:5f:3e:76:f4:6b:e2:56:4d:b4:
7e:91:06:74:f7:11:ed:18:36:31:c5:62:47:d4:b3:e3:87:70:
e2:a5:3b:87:ab:87:e8:64:6a:28:ba:d1:d4:4b:a4:9c:fc:ad:
de:ea:3b:ef:f6:f5:d4:5f:5e:f3:e8:e5:ae:6b:91:c3:5d:33:
a3:ff:7b:2a:c2:2e:db:24:70:6b:d9:aa:ea:21:22:2d:6b:59:
f7:1c:5a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org