Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/oRv56cZofUw_xbeBaCFdW-ApSm4.roa
File: oRv56cZofUw_xbeBaCFdW-ApSm4.roa (raw, json)
Hash identifier: oZItsbYpdcPtXpsQnrYG6wDRqG4pOCbTZ9BDbO/yUV4=
Subject key identifier: A1:1B:F9:E9:C6:68:7D:4C:3F:C5:B7:81:68:21:5D:5B:E0:29:4A:6E
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 01856ED4A58000F27A9217A0655BA269A37A
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/oRv56cZofUw_xbeBaCFdW-ApSm4.roa
Signing time: Sun 01 Jan 2023 19:35:07 +0000
ROA not before: Sun 01 Jan 2023 19:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202559
IP address blocks: 2a12:4946:4010::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a5:80:00:f2:7a:92:17:a0:65:5b:a2:69:a3:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 19:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a11bf9e9c6687d4c3fc5b78168215d5be0294a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:44:5c:11:50:18:88:14:56:b2:51:9f:fb:
13:6e:00:d6:df:9a:c6:a3:6e:4a:bd:0e:e2:70:72:
22:11:64:93:74:cb:12:66:61:b2:bc:3e:0c:31:9a:
32:19:21:ad:d6:0a:53:eb:a0:cb:82:a1:61:7b:59:
fd:72:c5:37:30:aa:b9:bb:d3:c4:a4:3f:5d:a5:11:
90:22:68:f1:b7:4a:c6:ca:eb:22:4e:1f:9e:b8:83:
4a:01:54:10:c6:2f:ba:6e:f4:1c:c0:44:0b:fa:9c:
d9:fb:df:57:e0:d0:27:e4:01:c5:8c:9a:25:4a:4e:
ce:0f:8b:1e:8d:8f:8c:ac:8a:ec:f9:ed:1a:04:3b:
0c:aa:d6:41:fc:7b:4d:39:cf:22:74:e9:03:00:f9:
15:d5:f9:47:84:10:20:89:ff:16:07:d3:63:84:5c:
ce:58:01:93:4d:68:aa:ac:09:80:8e:ce:43:60:b9:
85:40:55:45:21:b6:b4:ed:83:c7:2c:19:fa:d0:cf:
1a:79:6a:1a:27:f3:ce:a6:bc:b3:f8:d2:1c:10:a5:
8f:87:29:be:f0:94:b9:0a:9f:54:97:16:68:89:f4:
0b:cd:0f:ea:5c:54:d1:92:38:90:24:cd:cc:38:56:
89:1e:e2:a3:ae:a7:20:c1:d6:02:4a:d3:d3:fa:7d:
3a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1B:F9:E9:C6:68:7D:4C:3F:C5:B7:81:68:21:5D:5B:E0:29:4A:6E
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/oRv56cZofUw_xbeBaCFdW-ApSm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4946:4010::/44
Signature Algorithm: sha256WithRSAEncryption
6f:4b:a2:85:cb:27:a8:8c:7f:36:9c:7f:68:87:c0:90:04:8e:
cc:88:89:ae:15:bb:86:db:4e:e7:c1:bc:02:b6:7d:e6:0d:91:
f3:35:9e:9d:63:da:ff:52:f5:1a:fc:36:06:26:37:54:82:0d:
3a:22:af:b8:5b:40:87:f8:0b:8a:ed:c1:72:e1:35:10:3f:ad:
e6:61:4a:7e:bf:02:fb:d3:ef:fc:d6:7e:63:01:a3:4f:7a:44:
87:ec:10:02:83:12:bc:89:ba:1e:e9:fc:ea:30:42:53:89:8a:
a6:2c:95:78:f9:1c:55:6b:e9:f2:8d:e7:1e:dd:37:9f:17:5e:
a4:0f:b1:5d:0d:70:77:48:53:e7:d6:a3:33:fc:58:a1:18:21:
b0:25:86:57:d9:3b:cb:d3:d2:1e:90:c3:e3:7a:05:88:64:5a:
d9:db:1e:3d:5c:96:e6:bf:10:4a:96:98:3c:c7:28:f5:2c:8a:
06:4a:b3:9a:8c:30:72:68:d9:26:70:33:89:ad:e0:5c:14:e4:
62:a1:13:45:35:fa:ed:c7:37:cf:c7:18:72:4b:bd:aa:35:00:
7b:59:51:9c:2a:f2:27:1b:46:c1:ad:7d:a1:25:e1:82:49:a4:
12:cb:2a:cd:7b:dc:04:02:1a:c2:d1:83:bd:d5:b7:ea:47:fe:
7c:b5:17:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:49 2024 by rpki-client on console-ams.rpki-client.org