Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uGx0MDrfRtmAITPQ8Iv1O2Ko4cY.roa
File: uGx0MDrfRtmAITPQ8Iv1O2Ko4cY.roa (raw, json)
Hash identifier: D40unNBqTK5hKKYj7OaOXonNT7Xt6rittfyvEFgeXcQ=
Subject key identifier: B8:6C:74:30:3A:DF:46:D9:80:21:33:D0:F0:8B:F5:3B:62:A8:E1:C6
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E73C6696A4F3A8CAB6A3F9691D493
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uGx0MDrfRtmAITPQ8Iv1O2Ko4cY.roa
Signing time: Mon 02 Jan 2023 06:14:59 +0000
ROA not before: Mon 02 Jan 2023 06:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210351
IP address blocks: 2a0c:b641:b0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:73:c6:69:6a:4f:3a:8c:ab:6a:3f:96:91:d4:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b86c74303adf46d9802133d0f08bf53b62a8e1c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b7:74:c6:f6:e4:26:48:2d:43:ce:36:b6:1a:
64:f2:b9:9b:46:0d:56:29:56:f9:ed:ae:34:18:8c:
7c:80:97:65:f3:69:7c:4b:8c:2d:58:c6:07:48:01:
5f:18:aa:40:11:73:ce:88:02:94:ee:92:11:a0:4d:
fe:a1:c8:3c:4b:88:53:32:c6:3e:8a:4c:83:2b:8a:
85:44:a8:1d:22:03:25:2d:84:51:47:05:45:df:de:
17:6c:b8:27:60:8b:c6:55:83:a7:17:6a:b3:00:91:
d6:4d:21:f0:64:52:f8:36:87:2e:4c:87:f9:93:66:
8f:95:3b:ed:1e:6d:60:ea:da:8e:d2:47:f0:8c:0e:
80:8b:06:47:83:53:f9:1a:97:2a:47:ff:6c:36:36:
b4:15:43:48:82:e3:1d:c6:97:42:6c:79:3d:b6:48:
c8:9c:09:06:7a:39:a6:17:2d:c1:10:6b:79:ac:56:
43:92:77:c2:f4:0c:93:3f:6d:a7:53:07:c2:fc:7d:
3d:29:59:10:c2:47:e7:5b:a0:42:42:63:76:48:c9:
63:ee:db:d8:c0:06:d8:85:dd:43:40:cc:3f:05:ae:
a7:00:41:b7:a7:2c:8a:3e:54:11:a7:0e:8f:66:75:
e7:bc:87:d2:76:bb:73:0c:e7:b3:bc:bd:f8:a6:27:
40:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:6C:74:30:3A:DF:46:D9:80:21:33:D0:F0:8B:F5:3B:62:A8:E1:C6
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uGx0MDrfRtmAITPQ8Iv1O2Ko4cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:b0::/44
Signature Algorithm: sha256WithRSAEncryption
11:92:d0:7c:b7:2f:28:35:1a:b7:f4:64:db:1d:57:d1:90:28:
5b:5d:75:30:b9:ae:03:b4:a0:fc:78:a4:b6:44:b6:3b:ad:90:
02:8a:0f:76:58:15:69:ca:bc:40:57:00:d8:fc:7f:42:09:51:
55:b7:a1:77:39:f3:81:a3:7c:bc:04:a7:33:b1:f1:b7:71:60:
5e:26:36:3c:44:b1:9d:c8:9a:02:09:d6:51:1c:35:8c:6e:bf:
de:f8:b7:a8:b8:8d:98:da:25:de:2a:1a:89:66:c2:03:97:c2:
f7:a8:fb:78:4a:2e:0c:9e:0f:43:8f:62:1c:bf:64:4b:db:8e:
2b:04:2f:d2:f6:b8:2f:79:43:09:f7:77:76:cc:58:fe:55:a9:
b7:fa:3b:ef:66:90:e0:12:18:0b:b2:6d:ad:6b:0d:de:15:36:
cb:93:da:df:ad:55:2c:3f:99:51:ce:cf:15:44:bd:5f:06:75:
f7:83:ee:49:f3:9e:17:3e:d6:93:ba:4b:b3:ea:60:99:86:40:
a8:67:75:64:2a:b6:70:e2:a3:ea:45:f5:53:43:fd:90:a2:95:
26:bc:27:4c:97:01:9a:37:f3:f5:cd:57:ef:9e:79:20:5e:09:
93:87:fc:43:70:2c:70:1f:07:01:f7:8b:7e:5e:df:cf:95:a4:
06:cd:b7:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org