Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/hGo-VF_k6RytH2PIJV2mQeY0f_s.roa
File: hGo-VF_k6RytH2PIJV2mQeY0f_s.roa (raw, json)
Hash identifier: 6hmoTr9OvKod1R0GxcrvMyhMq5pf2ucbpBq4e0MkE44=
Subject key identifier: 84:6A:3E:54:5F:E4:E9:1C:AD:1F:63:C8:25:5D:A6:41:E6:34:7F:FB
Certificate issuer: /CN=505127723ea0cfd0724713b291734caa353e20ea
Certificate serial: 0187F426055AA2781271087C5F7781A3713B
Authority key identifier: 50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/hGo-VF_k6RytH2PIJV2mQeY0f_s.roa
Signing time: Sun 07 May 2023 02:59:05 +0000
ROA not before: Sun 07 May 2023 02:59:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46261
IP address blocks: 2a07:a900::/29 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f4:26:05:5a:a2:78:12:71:08:7c:5f:77:81:a3:71:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505127723ea0cfd0724713b291734caa353e20ea
Validity
Not Before: May 7 02:59:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=846a3e545fe4e91cad1f63c8255da641e6347ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:39:6e:ed:34:b7:1a:0c:21:d9:5f:16:c0:74:
a6:b0:02:58:68:4c:9b:90:3a:1e:da:a8:43:67:bd:
20:1a:98:6d:cc:5b:73:42:2a:5d:3d:b0:64:68:e9:
05:d3:22:24:4f:77:ce:15:68:87:e0:a8:2a:1d:c4:
a6:97:4c:1d:7e:cc:ef:af:35:e2:cb:8a:76:94:5d:
0a:96:3e:0d:37:5d:c7:80:7f:f5:fc:fa:e0:a6:64:
1e:83:ab:e3:ad:12:83:54:bc:0e:72:18:f3:ce:1c:
e7:01:51:0f:0a:2e:b4:b6:c5:ad:be:0c:bb:db:df:
49:32:f7:ce:b2:97:b3:1f:76:6b:9f:c8:41:61:3e:
ea:d5:33:fe:d8:dc:50:96:e7:b7:74:2b:7d:79:2f:
b4:23:0a:d7:29:48:3c:3f:35:1d:0d:be:65:64:c2:
6c:7a:c1:77:7a:80:dc:9f:2e:75:83:b0:66:b0:94:
46:dd:4b:1b:a6:14:fd:3f:fa:dc:1b:23:f4:33:e8:
16:b6:c6:98:b5:a7:94:2e:c9:fa:a9:c3:01:4f:68:
f5:07:4a:e7:cb:86:70:1d:be:74:11:be:0d:67:a5:
c4:7e:1b:92:66:12:9f:4d:50:a2:6d:cf:12:e4:00:
72:be:ff:67:0a:7d:1d:39:94:8f:8d:c9:49:34:22:
43:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6A:3E:54:5F:E4:E9:1C:AD:1F:63:C8:25:5D:A6:41:E6:34:7F:FB
X509v3 Authority Key Identifier:
keyid:50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/hGo-VF_k6RytH2PIJV2mQeY0f_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:a900::/29
Signature Algorithm: sha256WithRSAEncryption
83:ad:49:54:0e:5c:37:45:c0:88:d5:5d:6d:89:7c:62:3b:4b:
eb:d1:db:f7:6f:55:eb:2a:aa:8f:ec:36:4a:f6:87:22:e9:e8:
a5:a5:db:3a:e9:50:32:0f:26:a3:19:41:7c:c0:7b:20:69:af:
f3:76:a9:54:c0:97:19:a4:39:be:74:9e:e4:27:88:b7:f3:66:
5d:8b:d0:4c:e2:f1:38:e2:86:c1:30:6e:94:a3:47:ed:14:3b:
c1:50:6c:e7:8c:d2:32:f1:34:e9:c7:dd:f7:ff:fc:92:e1:c3:
81:b2:18:56:f3:95:b9:b3:d6:b7:29:26:6b:70:27:0e:6f:8d:
ce:fd:0c:ae:05:9a:2c:ba:f1:10:32:2c:c2:1c:28:23:86:8a:
b5:46:57:15:3c:51:f3:18:6e:c4:22:73:b4:bb:60:7f:f3:8a:
a8:9d:67:72:d9:de:8a:b6:ef:17:31:25:27:93:51:ce:51:4c:
e3:71:df:49:82:e9:0a:e1:d5:32:7a:5b:21:02:ba:55:32:bf:
50:ad:68:e8:b0:19:3a:4e:f5:89:ee:4c:70:dc:2f:7a:46:d2:
ec:25:bd:d8:c6:f9:89:4b:d1:9b:1a:43:48:cd:89:03:5c:7b:
cd:51:60:e1:4e:5a:7b:7f:e9:b4:8f:d3:06:2b:df:03:76:1a:
a4:50:23:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 19:57:09 2023 by rpki-client on console-ams.rpki-client.org