Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/FvXE79oWrTdfDXWtTdYt35R9__o.roa
File: FvXE79oWrTdfDXWtTdYt35R9__o.roa (raw, json)
Hash identifier: w7kxt2LQUIaQ6B85rV9PZauqz0AKwx6nYSCS0oyvdeU=
Subject key identifier: 16:F5:C4:EF:DA:16:AD:37:5F:0D:75:AD:4D:D6:2D:DF:94:7D:FF:FA
Certificate issuer: /CN=17526ccac4f9064e058549b30172c84439787fbc
Certificate serial: 01865986365FFFE5B0BE5C99B07A92B235D4
Authority key identifier: 17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/FvXE79oWrTdfDXWtTdYt35R9__o.roa
Signing time: Thu 16 Feb 2023 09:20:13 +0000
ROA not before: Thu 16 Feb 2023 09:20:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 2a0c:b6c1::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:86:36:5f:ff:e5:b0:be:5c:99:b0:7a:92:b2:35:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17526ccac4f9064e058549b30172c84439787fbc
Validity
Not Before: Feb 16 09:20:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16f5c4efda16ad375f0d75ad4dd62ddf947dfffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:80:3c:94:fb:e8:4a:d3:62:40:67:05:35:4e:
c2:bd:be:24:03:b9:90:33:d4:80:36:e7:f8:ca:be:
11:6a:f7:5e:f9:53:e7:11:55:2c:b3:5a:45:49:21:
f2:cd:0f:10:ea:1b:fa:ec:f8:e3:7c:8a:28:92:7a:
c6:49:b2:28:5a:5e:25:02:1b:f3:40:c5:ce:df:3e:
96:ab:5d:31:15:c4:ef:f4:cb:ab:8a:6c:7a:98:b4:
d8:4d:0b:d6:9a:e5:44:83:4d:22:93:f3:37:86:8a:
a1:de:ae:6a:21:e9:4f:e0:46:f3:30:8e:d6:fe:0f:
9a:1f:bc:79:4b:58:cc:a9:94:d2:80:6f:ea:1d:db:
71:b1:3a:f4:51:2d:00:c1:96:0a:f4:c4:b2:fd:28:
ae:ad:8c:70:f3:13:45:6c:66:1b:39:6e:97:53:6f:
19:28:95:7a:a4:e3:f0:73:ff:26:1b:3a:a0:6c:5c:
68:81:c6:44:82:9b:72:61:4c:47:a4:73:68:fb:07:
9b:ec:1f:57:d0:3f:56:c8:36:7d:2d:ce:52:5b:c3:
a2:52:81:c1:63:c3:ac:dc:20:c2:01:e6:53:90:99:
e5:3c:35:ef:59:03:6f:1d:c1:3e:7b:0e:d7:ca:76:
3e:8a:df:9e:ec:fb:17:8c:45:63:41:45:fb:6b:27:
e5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F5:C4:EF:DA:16:AD:37:5F:0D:75:AD:4D:D6:2D:DF:94:7D:FF:FA
X509v3 Authority Key Identifier:
keyid:17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/FvXE79oWrTdfDXWtTdYt35R9__o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/F1JsysT5Bk4FhUmzAXLIRDl4f7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b6c1::/32
Signature Algorithm: sha256WithRSAEncryption
38:a2:22:e5:3d:83:4d:99:6b:6c:f9:8c:6d:9d:a8:b3:c6:68:
50:12:14:18:30:0a:93:6c:f4:0e:9a:cf:50:88:30:d1:87:c2:
b8:b7:80:e4:42:79:77:20:00:a1:33:dd:98:17:8c:74:cb:b0:
29:9d:0a:bc:21:3d:87:70:db:9e:00:82:12:a0:0c:30:3e:bb:
1a:96:b7:7d:e1:ad:df:a7:4d:8e:69:fc:ec:3d:9f:32:ec:e1:
5f:ac:db:17:34:28:a4:53:67:5e:b3:4d:7b:32:0f:e7:b0:0a:
46:fe:b3:2d:7c:0a:fe:15:c6:dd:bb:3d:b8:c2:d5:b8:16:cb:
99:c9:44:44:31:d4:17:c9:b7:f1:61:4c:8a:d1:31:3c:5f:bf:
67:6a:25:1b:bd:39:d8:ad:02:ba:41:25:cd:23:64:69:67:29:
0f:d4:1a:9e:95:ff:33:69:57:c1:30:7d:34:e3:56:81:68:21:
f7:df:8c:89:c7:26:db:fa:50:58:9a:ba:e0:df:2b:69:f6:b9:
84:73:ed:1f:bc:dd:be:45:14:0d:5d:e4:71:80:8a:c9:38:7b:
14:54:9c:c8:77:78:66:64:c5:8e:9c:2b:76:37:3d:60:84:7a:
25:d7:92:3e:f3:8a:b2:52:06:fb:fe:af:9e:df:ad:75:72:b2:
ea:61:90:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 3 10:02:42 2023 by rpki-client on console-fra.rpki-client.org