Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/m8PrcVrvmMrj3e_jWLDUujrV2xE.roa
File: m8PrcVrvmMrj3e_jWLDUujrV2xE.roa (raw, json)
Hash identifier: tQJuVpaDThIEwzlAFRSoqRmKmbadfn1qOHdqZPcy+1w=
Subject key identifier: 9B:C3:EB:71:5A:EF:98:CA:E3:DD:EF:E3:58:B0:D4:BA:3A:D5:DB:11
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E98332895E4630A878FA8A0156BA8
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/m8PrcVrvmMrj3e_jWLDUujrV2xE.roa
Signing time: Mon 02 Jan 2023 06:15:08 +0000
ROA not before: Mon 02 Jan 2023 06:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213382
IP address blocks: 2a0c:b641:830::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:98:33:28:95:e4:63:0a:87:8f:a8:a0:15:6b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bc3eb715aef98cae3ddefe358b0d4ba3ad5db11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a7:64:6b:11:12:9a:63:a1:3c:81:d5:6e:7d:
b2:66:0a:50:ed:fb:d0:27:b7:b9:b2:8a:09:c5:09:
38:1a:12:37:17:31:a7:72:ab:25:80:ee:b3:26:11:
ce:bf:bc:43:af:1b:1c:6d:cd:89:7d:4a:c5:10:cf:
10:23:d8:17:51:4d:7c:e2:e4:36:ac:44:7a:87:96:
d1:7c:66:66:46:55:d3:fd:26:a7:cb:37:01:78:c1:
c7:65:a0:20:12:52:6e:f5:87:c8:b8:54:73:f8:95:
06:9a:66:e2:12:14:bf:ec:f4:ae:aa:b0:6f:d5:df:
a8:a2:a3:32:16:aa:a1:f9:61:c2:b4:15:2c:62:52:
7a:29:ee:61:39:09:65:52:2e:29:ef:41:e8:6c:9d:
8d:ea:7c:c1:cb:ba:49:49:56:11:f5:c1:4a:63:77:
92:09:c8:c6:61:4d:af:8f:b5:cf:04:51:38:7d:ad:
ce:69:aa:2b:4d:45:cb:ab:c7:d4:7c:20:17:42:a5:
ba:03:bd:f4:9a:02:6f:ca:79:15:e0:f8:05:85:b2:
06:21:2a:a9:0e:36:44:b8:98:80:0f:33:c4:3a:74:
8e:ab:b7:85:6e:b2:78:3e:3a:55:e0:e2:8e:1f:d8:
ee:38:38:83:cd:d9:62:6e:e3:5a:3a:57:26:eb:75:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C3:EB:71:5A:EF:98:CA:E3:DD:EF:E3:58:B0:D4:BA:3A:D5:DB:11
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/m8PrcVrvmMrj3e_jWLDUujrV2xE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:830::/44
Signature Algorithm: sha256WithRSAEncryption
26:94:0b:b4:15:06:68:16:fc:b3:8d:95:d6:a2:8a:c2:a8:02:
c1:48:94:53:35:3d:6b:41:f1:cd:4a:1c:ba:1b:1f:10:2d:e0:
ea:23:01:f9:1a:6a:c8:de:8b:b8:2c:1b:1b:c3:ef:db:30:1d:
1b:2a:c7:4d:fd:19:4b:e5:25:f6:e9:fa:e3:2d:ff:b9:a6:89:
25:8c:6b:6b:a5:a2:dc:42:b9:d6:12:53:bf:ef:8f:c7:a0:40:
a4:b1:6a:ad:28:86:20:7f:5a:a5:61:8f:1c:ba:67:49:bd:d6:
b7:7b:ac:6e:f3:2b:fb:24:9d:a5:e8:93:8a:26:bc:14:00:b3:
87:16:88:e6:3c:ea:2c:55:8c:49:64:76:16:c5:0e:f5:bb:c5:
e5:cd:5b:5f:57:37:1f:fe:1f:1b:7c:af:72:63:6e:8e:9a:b3:
76:1a:b9:65:6c:43:3d:97:82:a1:f9:2f:d5:4c:2c:e1:3d:f3:
bd:1e:11:e8:d7:3b:4d:9c:ee:e3:f2:09:a3:b2:8d:ed:58:38:
6b:06:1d:92:b1:2e:c0:a3:9e:7a:b2:c0:f2:00:f1:2f:b9:25:
f6:1b:84:36:38:59:23:9a:ae:48:34:bd:37:ee:18:ba:2c:ae:
ad:df:d8:01:3c:97:68:cd:c5:8c:e0:df:fe:97:b9:ec:59:4f:
f1:ee:02:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org