Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/c4bdae-09f0-4334-853e-3626b8ffd1e5/1/Pk_lgtWp-PkU_bGPOHkXoc6wcCg.roa
File: Pk_lgtWp-PkU_bGPOHkXoc6wcCg.roa (raw, json)
Hash identifier: +Z7qCK9fAm6AZVJ/3UGTC/aPP+AIyvcdzFQ+uSAZInU=
Subject key identifier: 3E:4F:E5:82:D5:A9:F8:F9:14:FD:B1:8F:38:79:17:A1:CE:B0:70:28
Certificate issuer: /CN=29d59e889f99aefdde5e949fe8079d337b57f447
Certificate serial: 01856FF01D13CB4A20BC66FA19822F4326E5
Authority key identifier: 29:D5:9E:88:9F:99:AE:FD:DE:5E:94:9F:E8:07:9D:33:7B:57:F4:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdWeiJ-Zrv3eXpSf6AedM3tX9Ec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/c4bdae-09f0-4334-853e-3626b8ffd1e5/1/Pk_lgtWp-PkU_bGPOHkXoc6wcCg.roa
Signing time: Mon 02 Jan 2023 00:44:45 +0000
ROA not before: Mon 02 Jan 2023 00:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62396
IP address blocks: 2001:67c:2c68::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:1d:13:cb:4a:20:bc:66:fa:19:82:2f:43:26:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d59e889f99aefdde5e949fe8079d337b57f447
Validity
Not Before: Jan 2 00:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e4fe582d5a9f8f914fdb18f387917a1ceb07028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:b8:67:46:f2:bf:0c:55:59:a9:8d:6b:50:
19:8f:ce:b5:7f:98:97:2b:a4:e8:71:48:ab:7e:df:
cc:53:73:a1:95:b5:e5:59:8a:b5:ce:3d:43:8f:f1:
9e:90:c6:6d:85:d3:14:4a:87:de:f1:f7:b8:e3:1b:
4c:4d:58:81:e9:77:fb:7b:03:f5:f3:54:17:4c:c8:
3e:51:29:2b:88:a9:38:5d:0f:80:fa:fe:da:f3:0a:
bc:0f:a1:a1:2f:a3:c4:02:9c:84:b7:38:c1:62:14:
96:5f:99:f4:f0:21:5a:42:a1:ac:39:e7:e7:81:25:
44:cf:39:43:1f:30:6b:96:63:bc:6b:42:90:ab:7e:
3c:4d:63:44:ad:63:ec:6d:d6:13:4d:b3:2e:b1:3f:
f2:46:c3:6a:79:65:11:7a:db:43:df:f1:01:79:ee:
ba:87:e8:90:bb:8f:e7:a7:23:16:54:bb:bc:03:7a:
5e:af:43:cf:3a:ff:92:11:f6:60:21:43:74:62:17:
f6:d2:76:69:fd:31:a7:86:f9:75:64:b9:ae:24:12:
3f:21:7d:30:6a:e0:7d:f7:47:36:93:79:69:74:db:
07:9f:ab:74:ef:d4:3f:e6:40:67:16:21:07:12:11:
ee:44:67:0a:02:bc:16:72:1a:b0:d8:15:70:a1:42:
27:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4F:E5:82:D5:A9:F8:F9:14:FD:B1:8F:38:79:17:A1:CE:B0:70:28
X509v3 Authority Key Identifier:
keyid:29:D5:9E:88:9F:99:AE:FD:DE:5E:94:9F:E8:07:9D:33:7B:57:F4:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdWeiJ-Zrv3eXpSf6AedM3tX9Ec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c4bdae-09f0-4334-853e-3626b8ffd1e5/1/Pk_lgtWp-PkU_bGPOHkXoc6wcCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c4bdae-09f0-4334-853e-3626b8ffd1e5/1/KdWeiJ-Zrv3eXpSf6AedM3tX9Ec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c68::/48
Signature Algorithm: sha256WithRSAEncryption
b3:97:a0:e1:ce:ba:a9:7f:e5:69:6b:dd:75:ef:51:0b:e5:ea:
47:2e:ab:8a:c3:2f:6f:2b:6a:b4:91:a5:ed:ea:f7:85:d8:24:
02:f2:2a:3d:38:e4:7a:34:73:ba:9a:21:ab:7b:0b:5f:ef:a0:
e2:42:df:d3:e6:83:ae:44:cd:8e:3b:93:3f:58:8f:5b:4a:6c:
fb:0b:f9:65:0d:90:f0:7c:2e:17:17:7b:13:7f:09:7e:63:98:
4a:72:24:06:07:d1:02:73:af:6e:86:2e:34:06:55:a9:bd:ee:
da:ad:2f:a2:24:a5:d9:17:5d:b8:ba:76:3e:76:56:ca:c5:86:
49:eb:ea:c0:38:a6:7c:a3:e8:1c:91:33:0b:19:5f:99:99:b9:
48:88:07:c1:73:a1:b3:4c:19:05:24:87:bb:6f:9e:82:d0:42:
23:5a:a9:8e:14:27:6d:45:4d:c5:95:5e:cb:63:10:62:41:88:
ae:16:87:4c:fa:a0:a4:9f:8f:e3:20:8d:08:74:aa:54:43:8a:
54:ef:e0:63:7c:8b:48:ed:64:28:b7:dd:23:9f:4a:51:3a:0a:
b6:f1:b7:d4:c5:16:9f:d4:55:77:48:51:64:5c:b3:ac:89:81:
a0:34:80:fd:25:be:dd:99:3b:c4:95:8c:b8:88:e7:ed:fd:15:
d6:70:1b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:13 2024 by rpki-client on console-fra.rpki-client.org