Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/21icKIX9bqsOYd4StA1vzdg9VIQ.roa
File: 21icKIX9bqsOYd4StA1vzdg9VIQ.roa (raw, json)
Hash identifier: S6UpKrM+f8SoayiPCSld/tG51SlazGmNudEmBTMW218=
Subject key identifier: DB:58:9C:28:85:FD:6E:AB:0E:61:DE:12:B4:0D:6F:CD:D8:3D:54:84
Certificate issuer: /CN=505127723ea0cfd0724713b291734caa353e20ea
Certificate serial: 018570DE59C5DE93B4B400CDDA2DF03331C8
Authority key identifier: 50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/21icKIX9bqsOYd4StA1vzdg9VIQ.roa
Signing time: Mon 02 Jan 2023 05:04:58 +0000
ROA not before: Mon 02 Jan 2023 05:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206479
IP address blocks: 2a07:a907:50d::/48 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:59:c5:de:93:b4:b4:00:cd:da:2d:f0:33:31:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505127723ea0cfd0724713b291734caa353e20ea
Validity
Not Before: Jan 2 05:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db589c2885fd6eab0e61de12b40d6fcdd83d5484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f6:ac:52:4d:1d:b7:10:86:41:31:87:20:3e:
d1:57:ec:38:04:cf:e5:aa:6f:45:9e:22:cf:48:28:
d2:ee:85:f2:8e:e5:7e:ac:3e:7b:e0:13:50:93:5c:
04:10:84:12:1c:2d:24:c2:0a:dc:5e:4d:2b:9e:33:
04:74:c3:dd:df:39:33:c1:de:7d:bc:db:c3:30:79:
77:e5:2e:c0:63:61:74:a6:38:b9:30:94:bc:de:ea:
1f:db:7b:98:df:7c:ba:54:55:9a:9f:0a:ad:86:da:
3b:4a:37:9b:f3:c2:42:28:df:90:e0:4b:99:93:64:
7f:f9:2c:03:70:36:c6:70:91:05:98:f6:3e:5a:48:
c4:8d:b7:c6:60:6a:ea:c0:e5:c7:7d:1f:42:65:c7:
b8:d1:f6:cc:99:dc:e4:31:cf:69:9e:1e:6c:40:7b:
ca:9c:7b:7f:6a:54:51:c0:66:5d:22:ee:5c:e1:dd:
c4:a0:0b:de:55:42:67:7f:bc:ec:10:01:46:67:a8:
c4:b1:20:3c:e2:28:b5:a2:c3:6e:60:c4:38:11:f3:
bf:f5:33:55:cc:ae:c5:c5:32:f4:cf:c9:d0:77:89:
a8:8a:63:5a:d8:77:8b:c9:32:2a:6f:6d:35:d0:98:
5c:e7:a2:a7:2d:b1:47:18:56:c0:17:e3:52:87:a7:
9d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:58:9C:28:85:FD:6E:AB:0E:61:DE:12:B4:0D:6F:CD:D8:3D:54:84
X509v3 Authority Key Identifier:
keyid:50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/21icKIX9bqsOYd4StA1vzdg9VIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:a907:50d::/48
Signature Algorithm: sha256WithRSAEncryption
7f:d0:0a:17:0d:45:86:41:0d:87:57:9c:58:d6:dd:03:a8:e8:
78:49:c0:32:72:ca:09:7c:55:99:05:6e:28:7d:2b:42:3b:0a:
4f:79:e4:69:11:a4:81:a4:63:5d:20:64:c3:4e:9a:2b:e0:ae:
27:8e:a9:14:f2:dd:0f:20:41:cb:29:00:09:5c:17:9a:45:31:
fb:b2:d6:b0:0a:77:6e:67:7c:f6:3c:45:93:e1:fc:c1:23:3c:
f7:84:d8:aa:22:3b:c9:60:5b:6c:76:c3:be:16:f6:b0:a6:ae:
5c:13:de:e0:63:16:1f:08:61:c3:76:65:67:49:db:bb:06:19:
d3:13:72:c0:6f:ec:bd:df:a1:c8:a3:9b:22:f0:69:33:5e:a2:
ea:ae:e2:27:a4:32:ec:b7:55:05:4a:98:1a:0b:b9:2e:b2:e3:
5d:1d:b6:60:e8:31:aa:76:39:42:c7:26:0d:47:c1:c7:1f:70:
6e:b4:12:fe:a1:bf:83:1b:f8:b1:a1:b7:0d:c4:c9:9f:db:5e:
11:bb:d9:7b:ff:11:b6:46:c0:8f:e9:5c:3f:ee:c7:b7:fd:12:
1d:37:06:0c:60:a5:9b:bf:75:df:49:ee:d5:52:8f:ca:b7:71:
7c:83:87:69:8c:69:cb:82:3c:e2:29:a5:96:e6:5f:56:2d:b4:
d7:11:1e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:41 2023 by rpki-client on console-fra.rpki-client.org