Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uFrH69_gtayITklSUAEyHax2ZbY.roa
File: uFrH69_gtayITklSUAEyHax2ZbY.roa (raw, json)
Hash identifier: VdU/7Pq7rWbJG7q+iC4sVwpwEYlc17MIEP4xJMwyql4=
Subject key identifier: B8:5A:C7:EB:DF:E0:B5:AC:88:4E:49:52:50:01:32:1D:AC:76:65:B6
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E6AC812B9B66A5A52FA0C563B4893
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uFrH69_gtayITklSUAEyHax2ZbY.roa
Signing time: Mon 02 Jan 2023 06:14:56 +0000
ROA not before: Mon 02 Jan 2023 06:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209586
IP address blocks: 2a0c:b641:510::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:6a:c8:12:b9:b6:6a:5a:52:fa:0c:56:3b:48:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b85ac7ebdfe0b5ac884e49525001321dac7665b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:24:a1:21:35:4a:f2:8a:c4:21:f0:47:af:be:
ed:2b:b9:c6:40:9d:08:af:62:ce:12:b8:16:2f:29:
bd:a3:02:02:ad:d5:ef:0c:25:1d:3f:d7:53:4f:9b:
f5:59:bc:dc:20:6b:1d:70:59:bd:f9:83:54:db:c4:
e5:53:6c:d8:18:39:07:21:96:fb:15:fa:d8:d0:d0:
ab:18:72:bd:08:5c:40:78:a1:79:6e:e3:f0:cb:0f:
c5:ef:c1:88:4a:15:33:16:de:52:ad:e7:2f:24:e8:
3b:0d:2c:42:bb:d7:7e:3e:10:e6:e2:06:06:74:41:
b0:28:8b:11:37:15:f9:7e:b5:f0:02:04:53:9b:3c:
9b:5e:e1:96:a1:86:92:48:50:26:97:b0:44:cb:f6:
ba:b5:d9:4d:de:60:c2:46:f8:44:57:2c:9d:28:84:
9d:40:51:eb:9d:99:d2:74:ad:8a:74:e8:d0:a7:0d:
b5:b2:2f:96:8b:77:46:ab:bc:62:4c:87:d2:9f:cb:
d9:31:82:36:89:ca:04:19:d1:ec:61:ad:c7:da:e2:
8c:fd:d7:fa:a0:af:77:7a:76:aa:8a:2a:13:12:64:
8a:05:28:d5:13:c6:c7:80:05:af:57:71:e4:cb:6c:
3b:48:61:68:10:8a:d2:2a:f9:3c:0c:99:7f:67:90:
d8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5A:C7:EB:DF:E0:B5:AC:88:4E:49:52:50:01:32:1D:AC:76:65:B6
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uFrH69_gtayITklSUAEyHax2ZbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:510::/44
Signature Algorithm: sha256WithRSAEncryption
35:f5:b9:ba:8c:e2:9d:f1:5b:a9:02:1c:39:10:d8:ef:c7:5d:
25:33:ca:bd:97:48:86:bc:0b:6d:bd:64:e7:35:49:9c:55:6e:
bb:b1:60:00:ad:a5:82:77:e3:85:ce:70:36:a4:2a:ef:77:35:
6d:2c:2b:d9:bb:8b:1f:a9:a6:ce:d8:18:6b:b3:66:5b:07:1f:
6a:1c:a2:90:83:ed:71:a9:b9:d1:fa:60:ce:0d:6e:fb:4f:b0:
d8:7b:d6:b0:a0:ed:54:7b:c5:dc:10:64:41:cd:3a:b3:2a:0b:
db:7e:33:43:6c:5a:9e:e7:6a:c3:34:01:24:2e:6c:69:f7:11:
9e:74:4e:68:5f:bb:bc:79:3d:57:d9:d0:41:93:3f:94:00:b6:
f1:fa:b0:b6:d3:f1:7d:ab:82:29:b6:94:0b:6e:c1:ec:2c:7b:
ed:67:11:9f:e2:fb:fc:c4:2b:4d:12:68:a6:ba:8f:34:73:47:
19:ab:5b:8d:f2:b3:f3:53:bb:94:3e:eb:36:31:78:63:24:ce:
87:7c:12:7f:6f:d3:58:75:cf:30:da:d7:c0:17:d0:b7:63:55:
56:2e:78:d0:86:d5:81:e3:b6:ba:3c:6b:1a:08:fe:6e:a6:f6:
c1:b4:35:8b:aa:fd:30:49:4c:a8:4c:8b:22:bb:c6:ec:0e:d5:
e4:70:24:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org