Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/XbrjvndtA84aMOnMooUEwGaDRk0.roa
File: XbrjvndtA84aMOnMooUEwGaDRk0.roa (raw, json)
Hash identifier: 1ruzcso1OkmAMhdvVcfTXzsTKGK1Da63fsa4tfkz/YE=
Subject key identifier: 5D:BA:E3:BE:77:6D:03:CE:1A:30:E9:CC:A2:85:04:C0:66:83:46:4D
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E3673BE9A9998199C6439DBAB3B0C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/XbrjvndtA84aMOnMooUEwGaDRk0.roa
Signing time: Mon 02 Jan 2023 06:14:43 +0000
ROA not before: Mon 02 Jan 2023 06:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:b641:130::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:36:73:be:9a:99:98:19:9c:64:39:db:ab:3b:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dbae3be776d03ce1a30e9cca28504c06683464d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ad:32:6b:15:b3:c6:f0:b6:03:6d:dd:bf:f9:
6d:5b:0e:92:97:de:e1:ec:e6:76:d7:90:40:91:01:
f6:e2:ad:7d:2f:95:e2:b3:a6:08:df:cb:2a:a2:76:
90:a7:99:96:00:41:35:73:b6:1a:4e:0f:74:af:f5:
be:9e:39:ee:5c:55:17:0d:92:19:a5:1d:0c:d3:c5:
b8:41:39:7e:65:d7:28:0b:33:95:29:43:4e:29:da:
2b:38:7a:05:ed:f3:62:e3:c3:3b:eb:a5:ae:6c:12:
06:04:fa:44:11:dd:e7:5c:9a:3e:fe:65:eb:0f:a5:
87:ce:3e:f8:54:11:5e:f6:45:28:a8:d3:1b:9a:a9:
69:60:74:b1:ba:b6:cb:03:03:32:ed:98:7b:87:a1:
6b:1a:17:fc:85:63:47:96:bb:45:19:09:ca:da:79:
f9:eb:c3:a2:6e:cb:fe:5f:f0:98:6b:9d:64:78:a9:
39:b8:20:4c:32:23:5c:40:a3:c2:81:52:b3:aa:2b:
73:dc:34:4e:7d:da:c8:5a:01:1c:9b:ab:c0:6a:35:
9e:17:54:2c:5c:d0:1f:cf:0c:34:4d:6a:61:b5:4d:
ce:69:09:b1:ea:32:e3:81:c7:d5:c6:bb:72:06:5f:
4d:15:48:d5:3d:cd:c2:fe:93:46:d9:97:9a:72:be:
6c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BA:E3:BE:77:6D:03:CE:1A:30:E9:CC:A2:85:04:C0:66:83:46:4D
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/XbrjvndtA84aMOnMooUEwGaDRk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:130::/44
Signature Algorithm: sha256WithRSAEncryption
91:7c:33:4a:0d:c0:94:50:ae:b0:de:82:1d:eb:10:6b:95:5a:
2c:9f:86:0c:a9:28:fb:9c:f2:8b:88:ff:68:6e:93:22:ea:a9:
4b:2b:1b:81:d3:6f:d3:8e:db:b4:86:f2:3b:de:32:49:f5:56:
af:a4:9a:b9:25:2f:3c:98:b0:fd:b4:14:dd:d9:a2:e2:ed:3b:
35:1e:9d:1e:0d:54:aa:0b:e3:8b:f3:2f:1e:f8:d1:59:c7:25:
68:79:8c:ca:41:05:4f:bb:23:c6:db:66:3f:99:1e:ea:63:70:
61:0a:82:29:38:bb:33:69:bc:77:79:dc:85:53:61:6d:d3:94:
83:ee:f6:05:2e:32:0a:9b:f1:5e:84:31:b7:03:f8:33:0d:ba:
7a:63:53:a7:c2:cf:37:f9:44:7d:b8:ce:0a:10:e3:37:d6:14:
f4:be:b2:72:e0:ce:40:36:fc:ca:0b:83:f2:18:c8:e3:0c:d6:
1b:cf:19:e7:01:39:79:c2:9a:47:69:dd:7f:30:a9:0e:24:c4:
7b:30:52:f3:1f:91:fd:02:06:e2:34:9f:70:3f:09:8e:9c:b5:
75:f9:6b:8e:9a:d3:84:ab:3d:84:bf:d9:4d:51:7d:ae:5c:f9:
91:6f:31:fb:bb:31:b3:b7:45:63:14:ee:c0:7b:1f:52:a7:6f:
98:93:cf:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 15:47:17 2023 by rpki-client on console-ams.rpki-client.org