Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Rrc0kQtpEsGz-ozN6CWHEXPapI8.roa
File: Rrc0kQtpEsGz-ozN6CWHEXPapI8.roa (raw, json)
Hash identifier: qDHNGKbwEjun4mZ9T8IY2oQimOJ6cAty+LKKy3n6FeQ=
Subject key identifier: 46:B7:34:91:0B:69:12:C1:B3:FA:8C:CD:E8:25:87:11:73:DA:A4:8F
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF880AD868E8D31808F773883250BC1
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Rrc0kQtpEsGz-ozN6CWHEXPapI8.roa
Signing time: Sun 01 Jan 2023 10:55:03 +0000
ROA not before: Sun 01 Jan 2023 10:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213109
IP address blocks: 2a07:22c1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:80:ad:86:8e:8d:31:80:8f:77:38:83:25:0b:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46b734910b6912c1b3fa8ccde825871173daa48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5d:82:ce:a9:c5:d5:c0:aa:65:d6:c6:08:76:
4b:d9:05:c9:9c:d5:8d:e0:80:e4:1e:fb:56:b1:63:
5e:79:61:b8:90:ee:43:8f:07:cc:c9:06:c9:bc:ab:
83:ec:1e:78:5e:f6:55:31:11:da:e2:9d:bf:b8:a3:
98:ac:08:9b:af:8e:c6:68:f1:56:7a:85:af:01:b4:
03:2d:46:8c:eb:b0:b7:20:91:26:7d:93:38:85:35:
cf:e3:eb:f3:ea:d8:03:87:43:b8:72:bf:b2:8b:53:
3e:0a:25:8d:71:ca:0f:7d:85:fc:e2:28:46:56:b3:
e9:45:86:fd:2c:11:55:1c:21:73:43:d6:cb:49:ca:
3e:04:4d:5b:78:0d:78:2b:38:45:9a:9d:71:57:bf:
f3:81:75:f4:8d:81:b3:6e:88:1b:7a:54:af:f4:b1:
f2:14:4e:5a:98:46:7f:17:d1:7a:0c:66:8b:7f:46:
92:c0:1e:74:4e:3d:3c:5b:41:bf:85:3b:00:f6:23:
67:b0:75:a7:ac:58:e9:7f:13:89:d0:d3:42:bb:1c:
88:b9:02:f4:3f:e7:70:ea:d5:9b:f5:e8:9d:6c:10:
48:38:1d:8f:ed:6d:c5:52:60:59:d2:5b:33:f9:0c:
18:ea:bd:8f:6f:ed:65:41:4a:80:55:ac:8c:50:a2:
83:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:B7:34:91:0B:69:12:C1:B3:FA:8C:CD:E8:25:87:11:73:DA:A4:8F
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Rrc0kQtpEsGz-ozN6CWHEXPapI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1::/48
Signature Algorithm: sha256WithRSAEncryption
41:6e:e3:59:a9:0d:88:7b:d6:82:44:b5:f6:72:2c:34:a8:7d:
04:7d:7e:17:14:7c:95:c5:b4:6d:b9:53:f1:b2:c2:9e:60:5e:
fe:bd:54:39:21:ba:5d:b8:3c:2d:b7:14:cc:a6:9a:dc:8a:ff:
e7:81:cf:56:2b:ba:a7:96:6e:09:0c:51:10:3e:90:7b:8f:d9:
88:e8:b1:6a:f6:dc:58:23:46:b5:36:38:dc:3c:db:a9:4a:e9:
5f:70:38:b3:6e:98:1d:55:5a:ee:70:8e:ef:ce:35:f0:33:54:
e0:38:a5:44:c9:50:f1:00:52:08:a9:5f:86:72:94:40:28:33:
c3:9b:7e:e3:df:92:60:89:5c:61:8d:bf:7d:cd:3a:4f:21:81:
26:dd:f9:c5:35:ea:0c:94:a5:5a:66:c0:f2:63:79:29:a7:9f:
42:75:7a:71:e0:52:76:5b:d9:c3:88:c5:44:42:97:62:fd:22:
c9:e1:b5:a0:8a:14:38:29:5d:a2:fd:65:67:22:77:47:79:27:
7a:9d:5c:a1:d3:3a:03:4e:d6:d6:02:04:9a:2a:31:e6:8b:f6:
5c:8a:72:6b:92:46:5e:bb:bc:82:a4:82:51:ef:68:12:22:09:
c1:4d:fc:38:b1:be:66:af:67:f5:bc:46:a2:df:ef:57:29:c0:
bd:92:81:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:25 2024 by rpki-client on console-fra.rpki-client.org