Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c1y7_l_rXBnNfB4bEwEI2akTtvs.roa
File: c1y7_l_rXBnNfB4bEwEI2akTtvs.roa (raw, json)
Hash identifier: /0JCljCr9q1AOgK9qGMqmjCg+j7763yGEgHb5LNdk/g=
Subject key identifier: 73:5C:BB:FE:5F:EB:5C:19:CD:7C:1E:1B:13:01:08:D9:A9:13:B6:FB
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018C10D0158781B6A71C198A99E5A42F1374
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c1y7_l_rXBnNfB4bEwEI2akTtvs.roa
Signing time: Mon 27 Nov 2023 12:45:21 +0000
ROA not before: Mon 27 Nov 2023 12:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215939
IP address blocks: 2a0c:b641:b30::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:d0:15:87:81:b6:a7:1c:19:8a:99:e5:a4:2f:13:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Nov 27 12:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=735cbbfe5feb5c19cd7c1e1b130108d9a913b6fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:a8:7f:70:66:88:c5:39:7a:08:6f:fa:8e:
51:4f:12:aa:aa:c2:7d:ad:cb:71:95:bc:80:f7:9b:
4f:4d:77:5f:b5:b7:58:d2:c0:15:49:0f:71:d7:02:
91:8d:62:3d:f6:10:b5:51:26:34:0e:79:6d:a5:f9:
2e:d5:95:0d:d6:34:7b:7a:57:c1:62:94:3a:18:e7:
50:3a:cf:45:55:f0:ff:30:6e:93:c0:5f:d8:d6:c8:
84:81:3b:2b:58:54:d1:2c:60:a6:05:42:83:ac:81:
d9:9e:7a:f9:f0:19:0a:95:f5:ca:4e:40:33:61:8d:
6e:b9:f1:cd:71:51:52:6e:d9:65:5f:0a:a1:8c:2f:
0a:01:f8:bb:a2:cd:a1:d6:d9:bc:8b:b9:a4:8a:00:
f1:c4:b5:8f:14:e6:15:63:d9:3f:2d:c0:be:69:d5:
10:87:24:48:23:c2:05:3b:9a:f1:ef:06:f1:e5:fd:
70:6d:1c:32:c7:ea:3c:99:3d:37:0e:ce:67:76:20:
89:26:0f:cf:35:cc:83:c8:95:1f:f9:02:64:b3:c4:
ea:b3:3e:bc:3d:07:2f:06:32:17:b8:8f:53:43:f2:
f8:b7:75:eb:2d:56:32:98:34:d5:50:a9:95:bc:b9:
6a:15:89:d6:10:50:85:49:18:34:ba:a7:8f:69:e4:
9e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:5C:BB:FE:5F:EB:5C:19:CD:7C:1E:1B:13:01:08:D9:A9:13:B6:FB
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c1y7_l_rXBnNfB4bEwEI2akTtvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:b30::/44
Signature Algorithm: sha256WithRSAEncryption
0c:c0:2e:25:10:31:9d:07:ed:d8:7e:53:eb:48:7e:d3:6f:90:
62:3c:da:95:5d:0f:4c:7e:fe:2d:85:43:d7:14:d3:12:ef:62:
0f:9c:6a:fc:5a:c5:71:bc:65:13:29:2f:40:f8:eb:9d:8e:3e:
e7:ae:8e:73:ff:2b:f1:df:b0:a8:84:6e:f1:7b:0c:cf:4f:a4:
3e:95:8f:36:ab:db:7f:85:7c:a1:fe:13:0c:b3:db:45:33:a8:
e6:9a:6f:8b:2f:81:14:df:99:ff:bf:67:3b:8a:57:84:e6:e3:
ba:75:9a:1d:8c:94:d7:17:77:44:3a:6f:fe:ef:56:b7:83:f7:
a5:b4:3f:53:6e:11:8e:43:9c:1b:98:68:82:02:38:bb:db:42:
0d:4b:9d:07:73:95:01:b0:cb:15:e4:d5:06:f6:fb:ed:b4:91:
7a:2b:f9:ae:f6:2b:20:9b:5a:f0:6c:ee:38:48:a1:e6:8b:5c:
f6:f4:1a:ef:9f:dd:2b:9b:a2:0b:1c:0e:9b:76:c4:61:96:1d:
38:4d:48:e3:f7:f6:73:1a:fb:e6:35:2d:73:c7:30:b2:6c:1e:
2c:58:85:6a:1a:80:1a:9a:da:2f:7d:5e:4a:ad:eb:a3:24:4b:
e5:d7:7c:94:94:c6:4c:a7:2c:70:86:04:12:b6:f0:44:49:63:
ed:c7:24:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org