Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/epgAm0zfjvPB3J3Ipaq1Ig-PPLg.roa
File: epgAm0zfjvPB3J3Ipaq1Ig-PPLg.roa (raw, json)
Hash identifier: PSaMkIWxL4XCSlhUCdl0dOHEWYYcMJakO0S/QtVMgGQ=
Subject key identifier: 7A:98:00:9B:4C:DF:8E:F3:C1:DC:9D:C8:A5:AA:B5:22:0F:8F:3C:B8
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 01892F9B8C0AE4F1C0E2B2D38F7752502241
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/epgAm0zfjvPB3J3Ipaq1Ig-PPLg.roa
Signing time: Fri 07 Jul 2023 09:07:50 +0000
ROA not before: Fri 07 Jul 2023 09:07:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50321
IP address blocks: 2a05:541:130::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:9b:8c:0a:e4:f1:c0:e2:b2:d3:8f:77:52:50:22:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Jul 7 09:07:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a98009b4cdf8ef3c1dc9dc8a5aab5220f8f3cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:49:a7:25:62:3f:ac:26:1e:0c:59:27:77:ea:
9c:ae:52:ad:b0:a5:f9:e3:d2:82:f4:ae:e7:f2:5c:
3f:1f:dd:49:0b:7e:e5:c7:98:45:9d:97:91:f1:28:
d3:7e:f0:b4:6b:6f:64:95:48:cd:20:7e:64:a4:3c:
29:d3:d8:ad:8a:c1:4a:8b:48:1f:a4:31:60:c2:0f:
a0:ec:90:ae:bb:b3:bd:83:02:69:31:0a:17:2c:04:
c6:85:54:ad:23:a1:e6:18:d9:59:98:c0:61:9d:c3:
9e:3c:d6:3b:13:a1:73:c4:17:a5:29:87:7b:23:91:
be:08:91:39:96:d2:40:19:f6:a8:eb:d8:5d:b9:cb:
22:87:85:8f:57:e1:01:e0:1e:6b:38:6c:b3:f7:4f:
21:c3:83:32:84:82:e3:ff:a3:8c:16:d3:1a:65:07:
b4:7c:ad:db:27:fd:18:32:e2:c5:28:ae:9b:7c:6b:
f0:ab:a8:1f:e5:49:f8:cd:d1:5e:68:b3:8c:c8:71:
ac:98:4d:64:80:d4:85:80:4c:c5:c1:a7:88:d9:a8:
47:13:6a:12:5a:3e:cb:3e:6a:a0:d8:d7:98:60:e2:
75:79:58:bf:88:07:af:f0:64:66:3f:10:d8:74:a1:
84:20:64:c7:03:5c:9a:4f:a2:8a:d5:a9:b9:4a:38:
97:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:98:00:9B:4C:DF:8E:F3:C1:DC:9D:C8:A5:AA:B5:22:0F:8F:3C:B8
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/epgAm0zfjvPB3J3Ipaq1Ig-PPLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:130::/48
Signature Algorithm: sha256WithRSAEncryption
31:c0:66:25:5a:00:85:11:3f:fe:38:93:67:ec:c9:91:2e:2a:
5e:05:c3:9d:a5:c5:e9:a5:23:c9:49:c4:c7:e7:73:44:1e:ce:
6c:0b:62:32:0c:8f:32:40:ce:0e:1e:d1:5c:a8:9d:22:16:06:
8f:b4:d2:21:e4:8a:64:9c:f2:d1:e2:9e:9f:1a:51:b1:f1:3a:
54:40:e1:73:00:0d:71:ce:b1:19:e2:ce:66:4b:d4:e3:10:2c:
77:9e:77:af:62:7a:c8:41:6d:e2:3a:b3:00:dd:43:7b:d8:2d:
15:24:be:f0:65:31:03:eb:f5:32:2e:84:db:be:eb:bb:2d:ec:
f8:16:25:96:fc:10:1d:ee:f3:b7:2d:26:5c:16:92:28:59:4b:
7b:32:33:c6:86:22:0a:10:08:28:69:5e:84:46:eb:59:61:5b:
97:cb:85:d0:58:ce:c7:65:b7:10:d7:15:fe:a2:07:6e:89:0a:
29:cd:51:0c:53:f2:da:cf:6a:63:3c:94:cc:9b:c7:73:5d:b1:
9c:19:b1:c8:e9:cd:e8:ee:a6:77:c2:c3:03:f0:0d:9a:4b:42:
85:40:ce:59:a6:6c:95:05:7e:e2:15:f1:c7:77:25:c7:94:b7:
df:53:3e:dd:b8:e2:7f:d3:b8:77:a7:e4:57:1c:fc:53:27:17:
cd:c3:0e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:42 2024 by rpki-client on console-fra.rpki-client.org