Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/8Ak0A2CruxAcH9my6DKY6AplN14.roa
File: 8Ak0A2CruxAcH9my6DKY6AplN14.roa (raw, json)
Hash identifier: xq44XsJlO4iB3t6M2bemGyHZNLU3aJpCLXBvy8NJWRo=
Subject key identifier: F0:09:34:03:60:AB:BB:10:1C:1F:D9:B2:E8:32:98:E8:0A:65:37:5E
Certificate issuer: /CN=59f2470c03a0f0bad00846b0f67c7a232d557288
Certificate serial: 01856E266FF1982360E7260549613B78B7C9
Authority key identifier: 59:F2:47:0C:03:A0:F0:BA:D0:08:46:B0:F6:7C:7A:23:2D:55:72:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/8Ak0A2CruxAcH9my6DKY6AplN14.roa
Signing time: Sun 01 Jan 2023 16:24:50 +0000
ROA not before: Sun 01 Jan 2023 16:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211595
IP address blocks: 2001:678:f10::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:6f:f1:98:23:60:e7:26:05:49:61:3b:78:b7:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f2470c03a0f0bad00846b0f67c7a232d557288
Validity
Not Before: Jan 1 16:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f009340360abbb101c1fd9b2e83298e80a65375e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cd:39:18:ba:8a:ab:ac:b5:98:4d:08:c8:dd:
96:27:38:ca:95:3f:26:c4:27:57:0b:e1:e5:6e:28:
78:04:1f:de:31:53:59:9a:2b:aa:75:00:ce:3a:b4:
cc:43:76:6b:df:e6:94:c0:20:6f:d7:bd:6d:f2:c1:
75:65:5d:b7:d0:61:1c:1f:71:b2:5e:d6:ec:3d:b0:
53:79:7a:d3:b7:24:1a:66:e4:8c:84:50:5b:e2:7c:
8b:30:d3:93:bc:2a:24:8c:fb:9c:de:47:a5:a5:bb:
2f:a6:c7:f6:52:8a:61:d0:3a:89:e1:64:a5:1e:de:
69:a6:77:b5:f2:03:99:78:52:e6:5d:a9:6c:89:ef:
07:9c:f6:c8:e0:dd:86:9b:4b:e7:ef:1b:ff:e7:b4:
9f:b4:70:6b:f6:75:4d:1b:01:ae:22:3a:65:75:d9:
86:c9:55:af:18:a3:92:21:01:6d:a2:b5:fa:6c:2b:
ab:9c:2c:18:c4:c2:f6:86:96:f5:18:cf:b0:99:a7:
94:6e:84:26:50:f3:5b:f5:bf:62:2f:f1:cd:90:13:
87:82:55:ce:c2:77:fd:82:07:4c:ab:39:c3:7d:a2:
77:f5:89:3b:a6:5d:2e:fc:c7:1e:d1:4c:19:b3:e2:
fb:36:f9:43:73:89:8b:fd:8d:80:8e:31:2e:22:86:
f5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:09:34:03:60:AB:BB:10:1C:1F:D9:B2:E8:32:98:E8:0A:65:37:5E
X509v3 Authority Key Identifier:
keyid:59:F2:47:0C:03:A0:F0:BA:D0:08:46:B0:F6:7C:7A:23:2D:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/8Ak0A2CruxAcH9my6DKY6AplN14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f10::/48
Signature Algorithm: sha256WithRSAEncryption
a3:11:ad:c1:c0:b9:e3:3f:57:b4:5a:a6:e7:bf:b8:ed:e6:89:
a0:dd:9f:3d:82:b3:ab:de:42:4f:9b:af:c8:75:77:ea:66:b3:
45:31:58:33:63:86:0b:f5:b2:29:7c:80:a5:a8:b1:0d:13:5d:
6b:ef:34:44:ca:7c:8d:73:0a:1e:67:bb:b9:08:63:54:5c:78:
56:f1:3e:2b:e9:3e:d0:70:4a:dc:79:89:16:bb:39:f9:05:6c:
c3:d8:f3:06:33:b0:b3:97:c4:94:ed:ab:21:42:7b:6b:b7:f5:
53:21:13:f3:1a:12:d9:43:28:2c:a6:80:cc:68:6f:f3:2f:5c:
d1:de:a5:ab:b3:a3:68:4f:56:a4:0e:d3:80:0c:13:cd:38:71:
4f:1d:ee:ab:21:d8:ec:14:fd:da:35:48:53:e5:2b:b5:f8:c9:
c4:0f:33:a9:d6:d2:3f:b0:c0:ba:8e:3c:e0:4d:61:ba:7c:5a:
1e:50:50:a5:bc:97:58:19:25:7e:65:42:51:89:d2:35:f0:77:
cb:10:cb:e6:28:2f:5f:e2:da:53:95:c4:f2:cc:80:57:4c:2b:
75:49:0c:d9:3f:cc:b3:2a:4a:23:95:30:11:4d:4d:8d:e7:24:
0a:5e:2e:00:0a:f1:10:01:ba:33:ef:c2:0a:31:d9:fb:20:08:
35:24:2e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:11 2024 by rpki-client on console-ams.rpki-client.org