Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sOcTqKxycuItb51EeXYRDd-YT74.roa
File: sOcTqKxycuItb51EeXYRDd-YT74.roa (raw, json)
Hash identifier: n67Em1rs+UID+PN/NbNcpOTchYrMVM3y+2R3hLXIznA=
Subject key identifier: B0:E7:13:A8:AC:72:72:E2:2D:6F:9D:44:79:76:11:0D:DF:98:4F:BE
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E5F8DEB668E25C21C2741A2F2F8A9
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sOcTqKxycuItb51EeXYRDd-YT74.roa
Signing time: Mon 02 Jan 2023 06:14:53 +0000
ROA not before: Mon 02 Jan 2023 06:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207301
IP address blocks: 2a0c:b641:780::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:5f:8d:eb:66:8e:25:c2:1c:27:41:a2:f2:f8:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0e713a8ac7272e22d6f9d447976110ddf984fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:5e:f7:4d:f9:d0:66:d1:14:84:42:57:a6:
4b:47:88:10:03:18:6d:b2:a5:2a:ef:bc:f4:63:32:
ae:cf:fd:16:59:6a:ee:d6:48:0e:4f:30:50:50:26:
b8:f3:a7:db:bf:e9:d5:a1:d5:33:c6:54:fe:5a:12:
43:4a:c1:b9:16:2c:d7:0a:c2:08:97:f4:d4:e9:08:
35:25:70:2c:14:9b:74:70:29:7c:8e:24:18:fa:e9:
bb:a8:bd:97:fc:aa:e4:65:f4:b0:3c:5d:0d:ff:81:
a1:97:06:88:8b:cb:01:01:c6:7b:f9:04:49:0e:0b:
ab:ad:79:ae:ea:53:7e:c3:2d:c3:1a:47:b2:9f:d9:
58:b5:a2:8f:a7:20:e7:8f:42:2d:0d:24:87:0a:e4:
2b:b1:94:2e:26:e5:6b:3a:a3:a2:aa:b9:c4:10:07:
21:e2:b4:dc:01:b3:cc:e4:c0:16:2a:a4:c4:4f:84:
f9:35:5f:f5:0a:bf:ff:1f:72:bd:3d:b2:e1:95:d3:
52:a9:d8:9f:44:dc:1a:dd:66:dd:31:95:2e:c8:a3:
ca:86:e1:97:df:f9:a5:a3:44:0c:19:d6:07:15:a8:
dc:85:1f:f0:a9:10:f4:0b:59:9a:36:95:3e:01:c9:
af:ef:a6:f4:2c:16:26:5a:f1:80:05:57:7f:f4:af:
60:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E7:13:A8:AC:72:72:E2:2D:6F:9D:44:79:76:11:0D:DF:98:4F:BE
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sOcTqKxycuItb51EeXYRDd-YT74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:780::/44
Signature Algorithm: sha256WithRSAEncryption
9e:42:7a:f7:ea:fd:86:2e:ed:12:ec:be:9a:c5:85:e4:cd:c8:
82:b1:84:c7:fa:03:4b:9d:f4:0d:06:0b:7b:1b:34:9a:ce:9a:
08:71:e9:78:38:95:a3:32:f1:29:9e:38:d6:e6:31:2f:c9:8e:
3f:3a:3c:cb:c1:a9:d2:2a:e4:d7:d7:3d:d7:50:5f:af:07:60:
69:27:bf:ef:cd:35:88:14:ab:a8:a1:08:e9:69:32:52:b1:22:
58:aa:31:2a:13:f5:6f:32:ec:db:29:ee:c1:c8:60:d9:6a:c5:
3b:f3:ef:75:15:0f:f0:81:95:d3:fd:68:30:95:fa:5b:f5:84:
9a:0c:28:88:3e:0a:d4:53:bf:e4:b0:ae:c2:c4:96:50:eb:cd:
8c:f4:39:47:9a:b5:f9:21:c3:8e:a1:a4:63:ed:10:8e:39:e9:
5b:bf:1b:40:54:6d:7a:f3:2d:3b:fb:e5:5a:fa:1e:13:e2:ee:
1a:f0:6b:76:38:0d:a9:2f:8d:54:73:ac:0b:bc:f5:cf:4b:84:
00:70:c7:02:a9:01:67:37:b3:73:1f:1c:0b:dc:50:96:0c:14:
ba:bc:99:13:27:53:f6:ca:06:d8:7e:eb:2e:ba:ce:af:d4:a4:
eb:44:c3:43:61:b1:1b:1c:d0:b8:2c:b9:c5:91:46:57:38:c5:
70:87:4c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org