Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0de973-6a91-4651-a3e3-7d5394531d18/1/5BtxSJqLiMgJzW4w7Qj_pcMoxZc.roa
File: 5BtxSJqLiMgJzW4w7Qj_pcMoxZc.roa (raw, json)
Hash identifier: Pjrl+cd5rb0nZOcF3sE6wEZPH18Sps81GFqoubMHKwI=
Subject key identifier: E4:1B:71:48:9A:8B:88:C8:09:CD:6E:30:ED:08:FF:A5:C3:28:C5:97
Certificate issuer: /CN=f0e94a3f762c21d733b48ff2b2c5745605c2be33
Certificate serial: 01856E2F9E70F630FF09811A522598A428D9
Authority key identifier: F0:E9:4A:3F:76:2C:21:D7:33:B4:8F:F2:B2:C5:74:56:05:C2:BE:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8OlKP3YsIdcztI_yssV0VgXCvjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0de973-6a91-4651-a3e3-7d5394531d18/1/5BtxSJqLiMgJzW4w7Qj_pcMoxZc.roa
Signing time: Sun 01 Jan 2023 16:34:52 +0000
ROA not before: Sun 01 Jan 2023 16:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197942
IP address blocks: 2001:67c:2384::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:9e:70:f6:30:ff:09:81:1a:52:25:98:a4:28:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0e94a3f762c21d733b48ff2b2c5745605c2be33
Validity
Not Before: Jan 1 16:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e41b71489a8b88c809cd6e30ed08ffa5c328c597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:db:f5:27:15:0e:d5:f2:0f:0a:f8:ec:93:24:
8e:e9:00:b2:cb:20:f4:52:62:92:8f:cb:14:44:e0:
33:c9:18:3f:08:d9:7c:e5:bc:99:58:83:fa:83:fc:
ca:ae:4e:cf:27:93:5a:8f:1b:2f:4a:0c:93:8d:01:
d5:fb:bc:8e:79:78:84:62:a5:e9:13:60:09:e8:41:
3d:78:e5:01:fe:41:e2:db:7b:66:fd:e7:b4:d1:ca:
f1:72:21:31:cf:4b:dd:d7:43:98:40:75:8a:4d:54:
37:74:d8:9c:df:3e:7c:dd:76:cc:8b:ba:10:64:98:
00:bc:a5:ca:e4:74:95:40:36:87:b5:b9:ba:7d:fc:
9d:c0:9d:53:89:ec:0b:05:a1:29:ab:b5:80:4a:9b:
21:56:eb:d0:de:77:df:4c:f2:04:ae:d4:b7:20:1b:
90:5d:e0:60:6f:4a:51:7b:b8:33:ef:e2:28:6a:62:
e8:a4:4b:23:f2:32:ba:d6:e9:c8:ed:4f:51:15:22:
02:65:a3:45:eb:e9:ba:05:75:e3:99:01:84:db:b3:
6a:b6:e9:ed:a4:6a:50:83:49:e6:bf:48:e4:af:62:
81:3b:c3:9c:2f:bb:24:b2:01:3a:be:4f:b7:5c:39:
2f:d6:6b:ea:8c:8c:e3:ec:68:0d:c7:66:46:5e:3f:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1B:71:48:9A:8B:88:C8:09:CD:6E:30:ED:08:FF:A5:C3:28:C5:97
X509v3 Authority Key Identifier:
keyid:F0:E9:4A:3F:76:2C:21:D7:33:B4:8F:F2:B2:C5:74:56:05:C2:BE:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8OlKP3YsIdcztI_yssV0VgXCvjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0de973-6a91-4651-a3e3-7d5394531d18/1/5BtxSJqLiMgJzW4w7Qj_pcMoxZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0de973-6a91-4651-a3e3-7d5394531d18/1/8OlKP3YsIdcztI_yssV0VgXCvjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2384::/48
Signature Algorithm: sha256WithRSAEncryption
16:e5:4c:ca:45:0e:a4:47:24:a5:c2:63:fc:00:db:19:9c:14:
85:c0:01:7b:07:90:d9:db:3d:5b:b2:84:a6:75:00:3b:36:7f:
50:ed:bf:d3:b8:cf:05:02:dd:18:e4:52:55:bf:68:4c:ed:aa:
dc:82:c5:9f:83:b4:e3:45:20:e5:a3:61:ea:a9:60:2f:0a:20:
89:35:29:49:94:f1:90:3e:97:3f:a0:2b:39:ca:3b:6f:d0:ae:
30:7b:5e:92:4f:1f:08:1e:f4:47:d0:40:82:96:64:25:75:1d:
59:16:0d:df:99:37:6d:49:2a:62:fb:1c:9f:36:60:6f:aa:f4:
d4:1d:06:15:ab:93:dd:e9:ec:07:3d:dc:6d:3c:10:da:83:66:
22:c2:e0:49:ea:dd:93:6f:c1:5c:ce:5a:08:e0:93:7e:7a:d3:
9e:08:22:c4:2b:84:51:e1:ac:25:60:74:f0:b2:04:10:7b:95:
f5:b9:bf:1a:ed:a6:bf:87:7a:6c:86:83:fc:e0:f0:a5:d9:65:
8a:b7:c1:42:29:35:ca:cc:c1:5b:07:9c:e4:e0:ae:2e:70:6f:
2a:a1:53:0f:b6:48:33:04:ed:ac:3f:95:9d:63:65:07:46:42:
a2:78:6b:50:40:75:a8:bb:08:92:6d:13:bb:97:e7:1a:a8:49:
ba:ad:a1:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:03 2024 by rpki-client on console-fra.rpki-client.org