Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/7y_Cf5oTZjjCfEO8FQsaLkr7Zb0.roa
File: 7y_Cf5oTZjjCfEO8FQsaLkr7Zb0.roa (raw, json)
Hash identifier: AkGNbQeMfkf91uWT7WScWFWcp7xbsyuk6DZtqeoztok=
Subject key identifier: EF:2F:C2:7F:9A:13:66:38:C2:7C:43:BC:15:0B:1A:2E:4A:FB:65:BD
Certificate issuer: /CN=6d68d33d3da14d3bbcfcfc2e492dc1673849aa6c
Certificate serial: 01856C4151E7C093536C103922A5B1D11111
Authority key identifier: 6D:68:D3:3D:3D:A1:4D:3B:BC:FC:FC:2E:49:2D:C1:67:38:49:AA:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWjTPT2hTTu8_PwuSS3BZzhJqmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/7y_Cf5oTZjjCfEO8FQsaLkr7Zb0.roa
Signing time: Sun 01 Jan 2023 07:34:57 +0000
ROA not before: Sun 01 Jan 2023 07:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200723
IP address blocks: 2a13:4a40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:51:e7:c0:93:53:6c:10:39:22:a5:b1:d1:11:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d68d33d3da14d3bbcfcfc2e492dc1673849aa6c
Validity
Not Before: Jan 1 07:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef2fc27f9a136638c27c43bc150b1a2e4afb65bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:22:9c:00:57:c7:f0:2e:4d:e8:b9:1a:cc:0f:
c8:19:6d:0c:a6:8b:62:92:b7:d1:db:08:a3:60:63:
e7:91:f8:6f:ab:6c:8c:91:5a:60:37:96:a5:79:f1:
1c:48:8c:e1:87:82:62:e7:b1:3f:00:5d:de:67:25:
e2:6c:dd:38:1c:00:f5:70:aa:14:45:ef:76:d5:a9:
30:5b:07:eb:65:28:1f:09:c5:25:94:89:98:dc:75:
58:cb:cf:37:63:0f:94:ee:36:e7:db:62:42:8c:26:
7d:df:dc:6a:a4:35:62:b5:dd:e5:4b:c9:57:4d:9b:
85:8d:7f:ae:53:b8:56:d7:94:00:5f:8a:44:f6:95:
36:80:41:4d:7f:9d:8c:5e:9a:ba:ce:b8:4b:9e:2b:
f5:63:80:3e:a8:f5:a2:3b:8d:dd:fa:17:ab:89:97:
76:44:57:7e:13:a0:c7:61:e6:a8:d9:b9:65:35:13:
91:57:5a:18:65:30:1b:98:6a:f8:3c:64:e8:8b:60:
52:99:e8:26:a7:36:b8:72:ec:35:b7:f1:34:e5:63:
3f:90:17:57:6e:82:a9:b8:b8:7c:bb:16:3f:5c:7e:
d8:09:c1:6f:74:4c:44:95:2b:20:d4:08:e7:fc:cf:
e7:dd:2e:53:39:cd:30:6d:bb:53:f7:86:46:af:7e:
b8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2F:C2:7F:9A:13:66:38:C2:7C:43:BC:15:0B:1A:2E:4A:FB:65:BD
X509v3 Authority Key Identifier:
keyid:6D:68:D3:3D:3D:A1:4D:3B:BC:FC:FC:2E:49:2D:C1:67:38:49:AA:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWjTPT2hTTu8_PwuSS3BZzhJqmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/7y_Cf5oTZjjCfEO8FQsaLkr7Zb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d63178-5d53-41e4-a70e-2a1e39dd633c/1/bWjTPT2hTTu8_PwuSS3BZzhJqmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4a40::/48
Signature Algorithm: sha256WithRSAEncryption
11:37:cb:3d:7c:5d:0a:f3:fc:72:f7:d1:c2:a9:22:ed:2c:8a:
38:14:d2:be:e6:a5:60:cb:b5:6d:89:52:97:44:5a:35:52:0c:
a2:ed:4a:b2:44:1c:e1:0b:e0:9e:43:64:80:ba:58:8a:76:65:
cf:86:88:d7:74:41:54:23:2c:4e:56:9f:d3:4a:ae:e7:cb:e4:
b6:37:80:27:6f:39:56:47:6e:f3:22:f8:31:42:29:16:22:d0:
8d:90:53:fa:ae:16:a3:77:56:03:d7:25:1f:47:e0:0a:5b:3c:
37:e3:2c:75:ef:d2:4a:78:97:30:9e:35:14:55:c5:d4:31:e8:
89:f0:0d:ab:be:77:86:f7:45:14:f4:40:03:6d:9b:09:8b:fd:
8a:e5:38:ae:9c:9a:e6:65:7d:b3:d2:a7:f9:75:1d:e4:2a:09:
d0:cd:00:8f:ac:63:19:6d:71:b7:6c:17:4f:98:4c:e9:55:37:
f9:13:08:bc:3a:08:29:bf:68:8c:fd:6f:7b:95:48:15:59:fd:
16:68:3c:f9:e7:cb:a1:20:a2:50:7d:41:3d:82:ff:d6:49:3d:
51:02:c0:1d:73:bc:ee:d0:41:2a:48:3c:bd:e5:a5:7d:74:f9:
50:9c:25:19:56:25:aa:6c:62:fb:d0:5b:ba:4a:53:e3:05:d2:
3b:29:c0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:11 2024 by rpki-client on console-ams.rpki-client.org