Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/3e62d8-9e41-4f86-9313-615cb372e077/1/1vOJGyEZsneBuUBDqWnv4yNBVew.roa
File: 1vOJGyEZsneBuUBDqWnv4yNBVew.roa (raw, json)
Hash identifier: drloMLR4Sa0L2RARwpCjzkmv/aRSO4hJlqw1ZEK/M50=
Subject key identifier: D6:F3:89:1B:21:19:B2:77:81:B9:40:43:A9:69:EF:E3:23:41:55:EC
Certificate issuer: /CN=1d3b64d95f6131682b9905c440a785a60a8ac8b8
Certificate serial: 018AE0593FBBC925981B39656E01ACF3C0CE
Authority key identifier: 1D:3B:64:D9:5F:61:31:68:2B:99:05:C4:40:A7:85:A6:0A:8A:C8:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTtk2V9hMWgrmQXEQKeFpgqKyLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/3e62d8-9e41-4f86-9313-615cb372e077/1/1vOJGyEZsneBuUBDqWnv4yNBVew.roa
Signing time: Fri 29 Sep 2023 09:50:59 +0000
ROA not before: Fri 29 Sep 2023 09:50:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24961
IP address blocks: 2001:67c:d28::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e0:59:3f:bb:c9:25:98:1b:39:65:6e:01:ac:f3:c0:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d3b64d95f6131682b9905c440a785a60a8ac8b8
Validity
Not Before: Sep 29 09:50:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6f3891b2119b27781b94043a969efe3234155ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c7:40:19:6b:24:c2:b9:59:8e:60:e9:be:95:
dd:7a:d5:ea:6c:b9:4f:ee:e0:7b:80:fb:da:8c:d0:
b9:98:68:d1:b4:fc:14:0e:75:64:47:41:3a:77:5e:
41:3d:36:5f:72:dc:e5:35:54:6a:d3:e4:69:c4:13:
6b:de:b7:35:7e:13:ea:50:db:f4:4e:5d:ed:e5:3b:
2d:a4:04:1f:12:09:25:d1:c1:6d:b8:96:a0:d7:90:
f2:48:34:28:9b:a2:41:87:2c:e5:43:46:81:60:4c:
be:4c:cf:1e:8c:9d:b1:e4:d6:ed:22:a5:37:50:4e:
bf:2a:4f:dd:10:ea:01:cc:05:12:85:67:fb:9c:ae:
b5:84:1e:92:7e:c4:90:48:3a:8e:0d:59:ea:62:e2:
26:ff:eb:90:0c:3c:3f:76:c3:e8:65:0e:54:43:e2:
bf:91:ee:87:f9:90:dc:f9:2f:31:59:d5:3c:93:90:
bc:ef:08:fb:0a:93:ea:31:28:99:38:b8:df:30:3f:
50:eb:2b:9a:d1:77:88:db:8d:e1:15:51:c9:1a:60:
a1:bc:e9:47:32:d3:b8:11:21:e3:4c:92:30:01:a7:
d8:ff:e9:7a:1a:ce:99:e2:fb:e7:c3:ad:c1:38:9c:
d8:90:c1:5a:0a:1b:51:e3:36:0c:c9:8b:7a:ff:e1:
d7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F3:89:1B:21:19:B2:77:81:B9:40:43:A9:69:EF:E3:23:41:55:EC
X509v3 Authority Key Identifier:
keyid:1D:3B:64:D9:5F:61:31:68:2B:99:05:C4:40:A7:85:A6:0A:8A:C8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTtk2V9hMWgrmQXEQKeFpgqKyLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/3e62d8-9e41-4f86-9313-615cb372e077/1/1vOJGyEZsneBuUBDqWnv4yNBVew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/3e62d8-9e41-4f86-9313-615cb372e077/1/HTtk2V9hMWgrmQXEQKeFpgqKyLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:d28::/48
Signature Algorithm: sha256WithRSAEncryption
09:78:41:1e:d5:2c:ab:09:70:b1:7b:c2:3f:13:28:3e:a1:cf:
44:0a:0e:57:d7:e4:07:bb:c5:11:5c:0c:73:6c:1c:02:20:d5:
d2:55:a9:84:07:14:30:2a:e4:8b:4a:d5:19:a3:af:bd:63:e5:
ec:12:a1:9c:71:54:7b:c7:10:86:12:11:84:36:03:2a:dc:d0:
74:4e:8c:87:0b:aa:27:e0:48:23:b3:bd:83:44:e7:20:f4:15:
3e:f9:77:95:88:74:b9:ba:dd:f2:48:ae:4e:6d:90:50:03:ac:
44:69:b8:5c:07:ca:d6:00:f3:e6:87:e8:6f:55:a1:ce:f4:27:
86:a6:0c:6e:48:19:91:c2:01:8f:01:a5:2f:ee:8f:05:88:ca:
3f:09:80:fb:f3:ee:d6:60:5e:98:cc:cf:c9:39:c6:b1:b6:71:
12:33:23:c6:4a:8d:8a:a5:dc:38:86:10:31:d2:1a:4e:20:f5:
be:28:de:94:bd:f8:c6:76:a0:41:32:4e:62:fa:fc:eb:83:b1:
48:50:69:7c:41:68:3f:22:58:e4:be:a2:4e:95:75:c8:bd:0f:
bc:69:09:25:a6:c3:93:15:7c:80:59:2e:fc:b5:14:bf:f2:dc:
31:08:f8:2e:9b:fc:88:51:13:72:54:38:68:20:67:50:f9:33:
98:fb:88:64
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 1 02:27:11 2023 by rpki-client on console-ams.rpki-client.org