Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mQAxP99h0xdc3ODFAAkFU0njrsg.roa
File: mQAxP99h0xdc3ODFAAkFU0njrsg.roa (raw, json)
Hash identifier: NGckS+VEhGy0vCxzyhGkT1k+h9YqrwvpOMubr49jOkI=
Subject key identifier: 99:00:31:3F:DF:61:D3:17:5C:DC:E0:C5:00:09:05:53:49:E3:AE:C8
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 018B1B20CB1FB43D168475D18AD0B15BC2CC
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mQAxP99h0xdc3ODFAAkFU0njrsg.roa
Signing time: Tue 10 Oct 2023 19:46:55 +0000
ROA not before: Tue 10 Oct 2023 19:46:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203105
IP address blocks: 2a07:22c1:40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1b:20:cb:1f:b4:3d:16:84:75:d1:8a:d0:b1:5b:c2:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Oct 10 19:46:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9900313fdf61d3175cdce0c50009055349e3aec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cb:b2:16:2f:0a:c3:8f:3c:4b:15:f8:67:62:
83:7e:cd:fa:cc:24:e4:45:27:78:c9:e4:e4:f4:2a:
b5:88:b4:97:af:fa:d9:51:19:e9:9d:7c:2e:9c:0c:
4a:f1:33:79:02:25:9e:c3:cb:5d:a2:e4:6e:b4:3a:
82:b9:6f:48:61:92:80:03:12:69:d7:1e:21:08:86:
97:15:12:eb:d0:6d:ab:30:a5:8c:00:e0:25:dd:82:
c4:69:97:45:d5:1b:e0:87:87:40:5a:9f:be:b2:06:
27:22:c8:47:6e:a5:62:40:34:32:7a:52:6f:ad:6c:
69:51:fe:9e:65:b8:7d:ea:5a:ab:c7:f5:73:04:a4:
ed:b0:66:d1:17:8d:24:fb:be:66:5d:cf:e3:19:82:
4f:32:97:9c:97:69:c8:86:c8:da:d6:49:0d:8e:9c:
d9:6b:c8:12:4e:30:04:c4:de:d8:cf:31:02:b7:6e:
4c:d4:d0:cf:8e:34:a8:86:45:fe:3f:b9:74:08:48:
3d:91:e9:59:35:c4:85:57:5a:6c:45:b8:3a:a2:1f:
28:1d:e2:9f:65:46:ec:de:ee:3b:41:e3:51:79:6e:
46:f2:8d:ce:56:67:96:91:15:1e:63:74:69:eb:ad:
18:dc:c4:7a:f4:4d:26:b8:e7:08:c9:e2:87:fa:a9:
0c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:00:31:3F:DF:61:D3:17:5C:DC:E0:C5:00:09:05:53:49:E3:AE:C8
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mQAxP99h0xdc3ODFAAkFU0njrsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:40::/48
Signature Algorithm: sha256WithRSAEncryption
3a:3f:60:06:2a:f2:0a:65:02:c5:fe:46:06:24:b9:a8:07:14:
1b:b1:e0:7a:42:62:f5:3b:29:ad:6d:ce:be:4f:40:22:6d:ba:
c3:eb:96:ac:1e:da:2f:ae:fa:d2:48:fa:60:40:15:c9:b7:8d:
f7:bc:65:ed:f0:af:83:75:93:05:56:e5:15:49:c2:b4:65:13:
b6:dc:6c:62:ed:d8:12:63:d8:3b:1b:2e:31:c6:ee:e1:26:cf:
06:e2:1a:eb:43:5b:bf:7c:75:03:70:cc:5f:4f:31:9f:ee:57:
90:2d:13:ec:96:72:c2:70:53:fa:3f:91:f8:7d:1c:68:68:cc:
9d:e8:3c:11:13:e6:f4:7a:57:36:5d:5b:53:a5:ff:f0:0a:c2:
af:e0:be:9c:ca:ee:fb:d7:d3:8e:25:1f:94:eb:b5:11:90:d3:
85:e6:a6:44:3a:37:18:02:67:7b:b7:4d:88:68:eb:26:d4:8e:
b5:bd:90:b6:b9:be:1e:68:d8:73:94:52:58:17:e6:72:51:8a:
80:14:34:13:23:15:03:4e:68:47:31:bc:ac:8f:37:4c:5c:b9:
99:66:de:bb:cf:d3:0d:a2:03:4c:51:06:03:20:00:0a:27:d8:
a8:0c:f6:50:9d:4e:95:b4:5e:da:0d:06:87:d2:f8:ce:9c:30:
8e:59:49:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:25 2024 by rpki-client on console-fra.rpki-client.org