Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q6m7lRJ_J3ypTdXHhfPVvlscLeI.roa
File: q6m7lRJ_J3ypTdXHhfPVvlscLeI.roa (raw, json)
Hash identifier: oqSgWlvF7YcHaDkLRp1fIBPL+iSHMkD9abS+YRFtAQI=
Subject key identifier: AB:A9:BB:95:12:7F:27:7C:A9:4D:D5:C7:85:F3:D5:BE:5B:1C:2D:E2
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E478359AE34B5784DFEC2B6CD09B7
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q6m7lRJ_J3ypTdXHhfPVvlscLeI.roa
Signing time: Mon 02 Jan 2023 06:14:47 +0000
ROA not before: Mon 02 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60404
IP address blocks: 2a0c:b642:1a01::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:47:83:59:ae:34:b5:78:4d:fe:c2:b6:cd:09:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aba9bb95127f277ca94dd5c785f3d5be5b1c2de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:e8:dd:c9:b2:2e:e0:d7:d5:79:56:40:4b:
28:f8:c1:ac:45:82:0a:49:ee:b2:16:b0:6c:d9:08:
61:1f:22:8a:3d:f9:62:08:69:70:2d:fd:3a:5d:36:
2a:d8:26:bb:0d:54:9c:ac:15:2d:ee:d4:6a:77:14:
59:18:65:ad:08:e7:41:56:98:67:51:d7:fe:37:ce:
52:9c:57:d1:f6:b4:e5:34:d4:bd:b6:e4:82:0e:3b:
d3:8c:5d:ca:95:36:ac:8c:04:b9:37:72:f8:43:54:
16:7e:fc:9f:6d:ee:80:8a:1a:4a:84:c5:9d:48:9d:
11:94:d8:b0:b8:96:85:cf:3a:ff:25:30:02:92:a0:
8f:37:16:b3:c8:9e:c8:6f:95:ad:2a:75:b5:74:ae:
41:11:33:ff:36:c2:61:54:3b:ad:5b:d3:bc:6f:b1:
55:55:96:29:3f:51:7d:26:be:8f:4f:97:ac:14:47:
aa:e7:23:6f:ba:6e:a8:61:98:5a:66:83:e3:c9:b7:
22:0f:16:ff:df:b5:49:30:d3:64:ce:39:4d:46:df:
4b:53:f8:cd:aa:6f:fa:a5:ca:7a:af:95:21:a5:8c:
9b:04:f3:a7:e7:f4:19:a3:cd:90:ba:67:1b:9f:51:
ca:41:6b:45:09:8d:5e:60:ed:23:ba:b9:90:c7:79:
86:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A9:BB:95:12:7F:27:7C:A9:4D:D5:C7:85:F3:D5:BE:5B:1C:2D:E2
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q6m7lRJ_J3ypTdXHhfPVvlscLeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a01::/48
Signature Algorithm: sha256WithRSAEncryption
1f:00:95:65:1e:5f:a5:b2:e8:1b:ee:ea:dc:2f:01:06:7a:59:
30:6e:78:6e:80:1c:5e:ef:7d:a7:19:92:68:a9:a2:cc:92:91:
56:3f:b2:57:44:de:b6:b4:23:83:91:e3:1a:c4:c8:30:7f:42:
da:f8:46:36:b0:0c:3a:32:33:95:d9:36:3d:a8:b9:df:a4:93:
85:9d:98:fe:86:85:bf:1d:58:05:0c:c3:93:b2:34:49:2a:77:
1f:59:6c:53:a0:45:7e:03:a1:4e:6a:5e:63:a5:48:85:2a:e4:
e5:53:a7:45:49:6b:d9:aa:40:a3:5b:04:7b:21:c0:5a:9a:5f:
72:0b:f8:f8:b7:7e:bf:df:79:13:d6:7a:2c:ce:6e:d0:50:19:
1b:3a:60:b0:db:6f:cb:0a:83:cc:ba:a4:05:0f:90:60:bc:d9:
b2:e5:76:fb:3a:b8:a8:b8:9a:a3:a0:ca:f7:d5:96:68:dc:d5:
73:a7:f5:74:80:e5:0e:96:f7:ff:ac:19:e8:71:10:1a:13:9f:
46:23:4c:f2:14:c4:a5:83:bf:0b:81:8a:e2:e8:53:87:1d:ee:
53:33:69:3e:e4:b4:b3:8f:f0:83:b7:cf:b9:c0:ca:76:ab:0a:
73:57:21:22:00:1e:9c:74:2f:b9:3f:e8:15:e0:fe:01:bf:b4:
d6:31:9e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org