Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/_FY0MPEm7zbAYVU-XvZTBY0VxQs.roa
File: _FY0MPEm7zbAYVU-XvZTBY0VxQs.roa (raw, json)
Hash identifier: OwRLbmS1NIngQ/p87aWeglBlPeNlWOzQKgg1mpdVmCA=
Subject key identifier: FC:56:34:30:F1:26:EF:36:C0:61:55:3E:5E:F6:53:05:8D:15:C5:0B
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 018BA86BC1D770D48E611A28CFA14AB8CD26
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/_FY0MPEm7zbAYVU-XvZTBY0VxQs.roa
Signing time: Tue 07 Nov 2023 06:15:16 +0000
ROA not before: Tue 07 Nov 2023 06:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 2a0e:4206::/32 maxlen: 32
2a0e:4207::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:6b:c1:d7:70:d4:8e:61:1a:28:cf:a1:4a:b8:cd:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Nov 7 06:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc563430f126ef36c061553e5ef653058d15c50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fc:18:fa:3c:03:2e:31:38:fd:75:88:2d:0e:
87:41:02:cd:0d:43:89:89:3f:f3:1b:49:38:81:88:
a7:00:4b:7d:75:0b:f7:5a:35:69:d2:b5:df:f4:0b:
5a:76:f1:1f:c2:ca:4a:e0:42:1d:9b:14:57:d2:80:
a8:99:c2:65:4c:dc:a5:b5:d1:bc:c3:9c:e6:47:49:
4b:da:4c:21:d8:44:d0:9c:ea:e0:6a:94:55:0d:ad:
7b:f2:b9:44:c0:7d:c7:a4:95:2d:fe:e3:1e:b8:7d:
05:30:3c:10:d6:00:34:74:c3:49:1b:7e:f0:a3:45:
48:8c:21:f9:38:e6:ac:31:86:2d:ee:d7:84:45:06:
4e:66:ce:00:3b:1e:29:74:f3:ce:07:ff:c8:8d:89:
87:cf:e1:c1:64:b1:03:ed:a1:76:9d:cb:33:1e:7d:
f7:3c:a8:01:60:2c:ad:d8:9d:27:27:70:c5:ac:2f:
6e:47:7b:51:f6:b6:d8:09:63:b3:69:99:bb:db:8b:
51:53:e5:83:e5:ea:5b:86:fb:6a:69:24:97:a0:f6:
75:7a:08:b5:2d:ef:c3:ec:f4:91:87:8e:63:11:08:
ca:67:91:8c:1c:4c:3b:9d:a4:4e:76:e8:45:cc:47:
54:c9:2f:02:27:d4:30:de:2b:3d:32:49:41:d3:a4:
bd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:56:34:30:F1:26:EF:36:C0:61:55:3E:5E:F6:53:05:8D:15:C5:0B
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/_FY0MPEm7zbAYVU-XvZTBY0VxQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4206::/31
Signature Algorithm: sha256WithRSAEncryption
83:eb:9e:78:51:63:9f:f7:be:3d:85:b4:9d:b5:b6:f3:8c:2f:
dd:30:fd:ff:10:b0:f0:b7:21:12:99:c0:1b:42:44:68:c5:b8:
4b:0d:8f:eb:7a:ab:86:bd:5c:64:8f:b9:4a:c8:d8:a7:d4:4b:
c0:a6:35:ab:fe:45:1e:0d:8c:b8:2e:cd:19:dc:fc:1d:e1:03:
ec:f5:b4:c6:2f:ce:f4:36:b7:dc:37:1e:59:b8:84:92:5f:66:
17:56:f1:fc:9d:c9:e5:75:24:12:40:58:27:b2:7e:31:a7:89:
93:97:6c:8e:57:22:2e:8a:50:4c:8f:1a:31:6d:74:83:7e:55:
6d:d0:9f:d4:11:73:9f:0b:5e:dc:56:75:54:c4:94:fe:51:f8:
69:02:10:75:3a:ec:16:04:a0:fc:e1:61:48:d1:b9:16:3f:ce:
67:fb:bb:79:fc:4d:11:01:20:57:ce:99:8b:31:41:29:d7:66:
c9:fe:8b:da:22:ce:6a:91:2c:31:81:d3:34:12:c8:d9:fc:ae:
fd:8c:11:f1:f0:a3:04:4c:51:63:74:9a:0b:0e:40:fa:73:8c:
2d:eb:ef:ca:d1:40:96:51:5c:2c:cf:77:a5:9d:11:c8:1f:8b:
5a:67:b5:13:33:67:b1:65:d5:ad:72:a6:15:ec:6d:38:48:97:
31:ce:c4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:58 2024 by rpki-client on console-ams.rpki-client.org