Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/F1YifnPnm4e7gD__xINKgdFv49c.roa
File: F1YifnPnm4e7gD__xINKgdFv49c.roa (raw, json)
Hash identifier: Ofx0tQN7UuXXa7NtZfkWh4ZQ4FeJFuNBF9SqyEmO+Wk=
Subject key identifier: 17:56:22:7E:73:E7:9B:87:BB:80:3F:FF:C4:83:4A:81:D1:6F:E3:D7
Certificate issuer: /CN=d8a711b135dfd5f34bbb98c10036f8d8f0c1731f
Certificate serial: 01856DDD39D51684AC3F9DA92F0157D04ECA
Authority key identifier: D8:A7:11:B1:35:DF:D5:F3:4B:BB:98:C1:00:36:F8:D8:F0:C1:73:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KcRsTXf1fNLu5jBADb42PDBcx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/F1YifnPnm4e7gD__xINKgdFv49c.roa
Signing time: Sun 01 Jan 2023 15:04:52 +0000
ROA not before: Sun 01 Jan 2023 15:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 2a12:7c03::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:39:d5:16:84:ac:3f:9d:a9:2f:01:57:d0:4e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a711b135dfd5f34bbb98c10036f8d8f0c1731f
Validity
Not Before: Jan 1 15:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1756227e73e79b87bb803fffc4834a81d16fe3d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:d2:2e:79:d8:a4:8f:ee:64:1e:f1:45:86:
1a:63:91:f3:3f:89:c3:56:af:c8:07:35:09:77:a9:
d7:9f:e5:d6:ae:f0:00:3b:f2:97:5a:ee:15:be:26:
ef:75:b0:62:d8:c8:90:e4:c4:c8:30:19:f6:74:fa:
54:c8:65:35:a7:bb:7b:ed:24:fb:7a:dd:ca:93:2f:
da:49:7c:ca:f5:f1:d0:ec:23:d1:cc:d9:86:5c:ad:
3b:96:47:43:4c:eb:c9:fb:78:a8:97:71:83:3a:bc:
d6:2d:fd:a7:58:ba:d7:a0:5f:74:e3:70:9d:db:d2:
7c:f3:09:49:60:c6:5a:06:eb:e7:fd:3c:97:0f:fa:
76:15:ab:4f:4a:9b:e8:3b:64:17:51:0e:08:ec:4e:
f6:43:3b:eb:23:ff:17:f1:52:e9:0d:40:67:67:62:
9c:18:77:8c:49:83:5e:fd:fb:0b:4a:73:80:1a:b5:
ae:34:ca:25:46:04:e9:61:10:5c:ac:c7:0c:82:17:
43:af:61:38:f7:8c:e1:a9:9a:1a:c2:64:4b:40:7f:
9c:2a:73:d5:9e:17:1a:37:0a:e6:09:28:bb:9f:d2:
e5:92:d0:aa:f1:ba:ec:6f:38:bd:58:a4:31:b2:d7:
f2:2d:4c:58:8b:82:5f:cc:e0:95:4d:3b:b6:21:04:
a4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:56:22:7E:73:E7:9B:87:BB:80:3F:FF:C4:83:4A:81:D1:6F:E3:D7
X509v3 Authority Key Identifier:
keyid:D8:A7:11:B1:35:DF:D5:F3:4B:BB:98:C1:00:36:F8:D8:F0:C1:73:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KcRsTXf1fNLu5jBADb42PDBcx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/F1YifnPnm4e7gD__xINKgdFv49c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/2KcRsTXf1fNLu5jBADb42PDBcx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7c03::/32
Signature Algorithm: sha256WithRSAEncryption
75:61:1a:da:ff:70:ac:db:74:33:a8:82:7a:c4:81:5c:52:55:
ee:17:a9:34:37:8f:89:68:e3:8b:d5:f5:0e:cf:f1:24:26:91:
08:3a:eb:9b:44:5e:f3:25:3f:71:cb:e6:76:7e:48:58:af:8e:
c6:5a:e9:cc:8b:73:f9:00:f1:be:95:2c:0a:1f:8b:bf:93:27:
6c:94:4c:62:25:3a:84:59:7f:f8:2d:20:82:34:46:f5:7d:da:
30:7b:61:ea:88:69:66:c5:12:06:29:48:a1:0c:eb:85:a3:b6:
fa:2a:32:60:7c:78:03:50:76:e6:c5:77:8f:dd:d7:46:02:0f:
a5:4a:a3:62:f6:c2:08:62:00:12:13:80:92:ea:c0:bc:e0:17:
4e:c4:47:1b:67:e4:34:16:ae:ad:e4:7f:63:68:fa:24:ea:08:
4b:0e:d2:80:76:e7:60:35:bf:bc:b3:b4:1a:cb:dd:1b:70:7a:
14:67:8d:08:a3:b7:3f:a2:29:c6:13:3e:14:32:89:6b:e3:9c:
41:2a:62:52:15:4b:e7:d0:6c:58:07:de:34:cc:81:24:cf:7f:
e4:65:03:0c:83:1a:39:00:b3:53:9a:18:00:9e:c3:12:7e:34:
fc:80:f4:f2:07:cd:11:cb:e3:20:bc:d9:e4:41:04:59:9f:40:
52:00:ea:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org