Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/HuppPrNYe2dazKF0S4kjCLNgJIU.roa
File: HuppPrNYe2dazKF0S4kjCLNgJIU.roa (raw, json)
Hash identifier: xrmd2r81qDR+3S2GFH8jMOKiu2dOMruhiZZ8U3Mj1Q8=
Subject key identifier: 1E:EA:69:3E:B3:58:7B:67:5A:CC:A1:74:4B:89:23:08:B3:60:24:85
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 018570304C162C11E2ABD29C82A0A042B9CD
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/HuppPrNYe2dazKF0S4kjCLNgJIU.roa
Signing time: Mon 02 Jan 2023 01:54:51 +0000
ROA not before: Mon 02 Jan 2023 01:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 2a0f:6040::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:4c:16:2c:11:e2:ab:d2:9c:82:a0:a0:42:b9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Jan 2 01:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1eea693eb3587b675acca1744b892308b3602485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9e:8d:b4:59:30:99:83:a3:fa:ba:31:91:b7:
2f:0d:83:37:d9:42:2f:9f:41:f1:45:fa:65:e1:09:
fe:84:7f:1c:18:f6:15:58:b4:0c:ed:b9:9c:f1:a9:
0a:43:4e:71:05:2c:dd:64:d7:95:64:3d:01:b9:ac:
9d:85:22:95:b2:38:4c:3a:e8:36:2a:d5:f8:3f:49:
11:6e:a6:16:35:bb:12:f5:ab:26:7f:f3:de:81:0a:
b5:bb:ef:f1:4d:f9:d1:04:73:df:93:ea:fa:49:9c:
6d:01:b7:e9:c7:d9:a7:43:c8:13:a0:64:93:4f:af:
be:64:4e:d1:c8:6a:ad:dd:05:22:c8:27:22:cf:e0:
72:82:05:74:d7:5f:30:2d:e0:07:9c:22:b1:39:de:
10:0c:ba:d0:14:01:f4:25:7a:ee:28:b3:4a:37:9c:
5e:74:b9:e7:fe:a7:59:f7:04:22:b4:9a:ed:59:38:
44:fb:f0:ce:ca:52:c5:70:d7:50:5a:ad:0f:ba:30:
d0:dd:68:85:5c:a8:61:bb:34:4b:59:77:94:44:bd:
3b:bb:97:26:41:ca:d3:02:01:ad:da:26:4e:dc:5e:
8d:11:a3:d8:b4:52:f8:e4:4a:b9:37:84:10:4b:38:
6c:01:87:8b:6d:37:35:81:4e:0e:e4:da:ad:7e:db:
5c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EA:69:3E:B3:58:7B:67:5A:CC:A1:74:4B:89:23:08:B3:60:24:85
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/HuppPrNYe2dazKF0S4kjCLNgJIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6040::/29
Signature Algorithm: sha256WithRSAEncryption
3b:8c:79:09:ec:8a:fd:55:62:34:ae:83:f3:28:3e:45:6e:67:
f0:23:6c:93:07:68:ec:2e:ab:26:7a:d1:b5:81:20:7e:ca:95:
4f:8e:fc:99:45:fb:17:43:3b:67:ae:90:c0:88:4f:50:20:7d:
21:20:45:23:ce:49:d6:b8:c0:3c:97:98:34:36:07:ef:a5:6d:
f4:56:f4:f9:f4:e6:74:77:a4:8d:e4:61:3a:e3:4d:44:86:5c:
07:8b:9b:40:f1:31:75:2d:43:e8:70:9a:5d:bf:16:08:c6:80:
4a:19:14:55:19:01:c8:ae:19:96:b6:38:38:6e:79:56:22:ab:
40:a1:a3:93:0d:a1:6f:94:c6:e7:b7:0a:01:6c:4f:cd:20:e5:
fb:2c:d6:32:97:e5:0c:f0:90:71:27:8c:16:91:27:fa:e1:b5:
ea:77:41:9f:95:a0:b0:f9:13:3a:4b:1a:09:07:9e:b1:1a:03:
22:4e:86:b5:87:92:27:f6:c3:bb:a9:05:c5:2c:6e:71:9f:75:
87:41:73:38:08:41:aa:3f:1f:d7:b9:1b:78:37:a8:3f:47:8e:
07:66:7e:f6:ec:c6:19:98:7c:54:68:13:8b:a5:1c:48:7b:a4:
38:8a:e0:94:3b:f8:00:d5:9f:d9:44:c9:8a:80:f5:10:61:41:
ea:07:77:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:09 2024 by rpki-client on console-ams.rpki-client.org