Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/R0jBl3V4r3NFL_VRH6YdspoLvuA.roa
File: R0jBl3V4r3NFL_VRH6YdspoLvuA.roa (raw, json)
Hash identifier: jzErvEZK4FNFeHQ6tKzC/O1xj3zOxKtjzYQj40M0rlE=
Subject key identifier: 47:48:C1:97:75:78:AF:73:45:2F:F5:51:1F:A6:1D:B2:9A:0B:BE:E0
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 018655468F0D4CB14A19D058EAF1E0BE0746
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/R0jBl3V4r3NFL_VRH6YdspoLvuA.roa
Signing time: Wed 15 Feb 2023 13:32:12 +0000
ROA not before: Wed 15 Feb 2023 13:32:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57913
IP address blocks: 2a13:f600::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:46:8f:0d:4c:b1:4a:19:d0:58:ea:f1:e0:be:07:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Feb 15 13:32:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4748c1977578af73452ff5511fa61db29a0bbee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e2:3a:e7:02:55:d1:09:6b:26:ed:75:08:36:
f0:10:5d:04:aa:33:95:6e:f2:4d:46:49:1e:bc:af:
3b:e6:7f:dc:09:65:a8:c9:4d:e4:6f:97:2c:ed:0a:
64:39:85:ba:2f:a2:d0:0d:0b:32:12:3d:2c:e7:fb:
5c:c4:fa:f4:11:85:b6:1b:e9:82:92:66:e0:09:95:
7a:1b:5a:c3:4c:05:52:79:16:51:e1:33:64:2e:eb:
ff:c8:b0:7e:0b:a0:9c:18:6c:d2:eb:7f:78:d3:1c:
9f:1a:f3:20:64:f6:80:b8:01:a0:ff:b3:93:73:9a:
cb:21:5e:ff:4a:0b:dd:21:36:a7:d7:8a:c4:71:34:
f2:23:dc:74:13:dc:df:11:3a:59:d6:3f:d4:d4:f0:
e1:41:d8:90:18:b6:a1:0a:a7:72:e0:7e:7f:05:89:
04:cb:8d:fd:f4:d8:c7:45:9d:1e:f6:a0:5c:b1:21:
d2:bf:8d:cc:b5:fd:da:09:62:c3:47:20:ad:06:6b:
9a:1c:ba:64:8a:30:61:a6:11:38:c0:7a:df:b6:ec:
df:29:45:37:7a:59:41:e6:f9:1b:30:22:03:8f:b6:
59:17:05:7b:14:05:36:f9:73:3c:54:4f:02:cb:f3:
d0:16:4d:c7:a5:d2:c9:8a:77:a0:5f:f2:03:d9:5d:
73:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:48:C1:97:75:78:AF:73:45:2F:F5:51:1F:A6:1D:B2:9A:0B:BE:E0
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/R0jBl3V4r3NFL_VRH6YdspoLvuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:f600::/29
Signature Algorithm: sha256WithRSAEncryption
70:70:a0:80:64:e7:a0:93:4a:bd:80:64:82:96:36:8d:72:2c:
69:75:44:67:2b:a3:eb:95:aa:69:9c:aa:12:7a:1b:65:88:6b:
10:85:d5:39:5e:4b:1b:63:b8:38:8a:7e:bb:9b:fb:28:25:49:
26:70:33:fa:a0:6c:a4:ee:d7:a6:50:2b:21:4b:10:fd:3d:6b:
e4:aa:ec:17:45:88:f5:a2:35:1e:bc:ef:ed:e8:4c:19:a2:3f:
5f:7c:c5:06:8e:13:12:61:73:2e:78:db:4e:81:04:16:73:f3:
49:5d:f3:3a:96:f8:e1:a9:65:67:b3:8c:aa:2a:ce:2c:d5:1d:
4e:e6:11:ab:7f:d7:81:0b:2e:25:03:4e:99:84:ed:e1:fd:de:
9b:61:96:27:d9:49:f7:45:7c:75:28:83:ab:11:82:3c:2b:b9:
5d:a2:ea:97:52:17:0e:55:68:93:bb:c5:2b:78:16:b7:69:02:
4b:80:cf:fc:7c:c6:9e:68:63:12:ed:b9:4f:7a:77:72:00:30:
96:c3:f1:80:d0:d8:79:38:b8:ee:c8:af:1c:54:c1:82:c3:64:
66:f8:78:d3:37:77:81:d9:ba:cd:d7:1b:7f:39:b6:e7:ad:e5:
b0:5f:f1:ca:82:00:e1:84:79:aa:40:03:55:77:e7:56:20:97:
6b:33:50:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:48 2023 by rpki-client on console-ams.rpki-client.org