Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/dAB6KdQ9KE6fGwVrpsGUhnUZlR0.roa
File: dAB6KdQ9KE6fGwVrpsGUhnUZlR0.roa (raw, json)
Hash identifier: 8MxWQ4V+yYbCLaHs8kxq9euIL3v/BmpR/9CoKCKk2rI=
Subject key identifier: 74:00:7A:29:D4:3D:28:4E:9F:1B:05:6B:A6:C1:94:86:75:19:95:1D
Certificate issuer: /CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Certificate serial: 018C3EE5298B02A5E65F61DBE3D99405836C
Authority key identifier: 2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/dAB6KdQ9KE6fGwVrpsGUhnUZlR0.roa
Signing time: Wed 06 Dec 2023 11:30:54 +0000
ROA not before: Wed 06 Dec 2023 11:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 2a0d:3041::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:e5:29:8b:02:a5:e6:5f:61:db:e3:d9:94:05:83:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Validity
Not Before: Dec 6 11:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74007a29d43d284e9f1b056ba6c194867519951d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:42:c7:8e:14:51:30:f3:39:8d:d2:a2:4f:1f:
d3:aa:e1:2e:9b:e1:b9:16:f5:56:ec:da:6b:b8:76:
f2:75:9d:cc:c4:ea:dd:b4:07:fe:61:50:ee:61:3d:
7c:21:41:a6:5a:a8:d6:aa:45:88:b3:e4:78:fc:13:
c6:3d:d2:d5:13:58:46:bd:da:7d:55:37:77:86:8e:
af:ba:42:fc:40:71:9c:69:73:1d:b5:db:b6:83:68:
2a:12:86:d1:f5:7b:85:98:41:97:5a:8f:20:e2:a2:
1e:21:e9:b5:aa:8f:c2:0f:3a:e9:e2:7b:e9:46:7d:
e5:5e:ed:b7:a7:a9:c4:19:f0:6f:53:ea:c7:04:41:
da:db:6f:24:29:6f:42:fd:b7:dc:97:0b:53:dd:e2:
52:90:5c:e0:81:94:66:55:13:f0:96:5e:5b:b5:c9:
89:ac:e7:ff:83:b5:9c:14:d2:26:8e:37:9a:6f:a0:
d0:69:4f:2f:4e:57:7b:9d:bb:78:ea:65:e9:e3:7f:
8f:6b:73:1f:ff:eb:20:32:4c:88:32:21:f4:a0:b1:
05:9a:20:3c:fa:0b:56:ec:ab:46:05:d6:8c:37:26:
c8:bc:32:51:f0:ef:da:4f:ad:76:33:7f:6b:51:40:
e4:9c:a3:23:6f:8b:c9:0e:80:b3:c0:40:f9:1b:91:
d6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:00:7A:29:D4:3D:28:4E:9F:1B:05:6B:A6:C1:94:86:75:19:95:1D
X509v3 Authority Key Identifier:
keyid:2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/dAB6KdQ9KE6fGwVrpsGUhnUZlR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/L1yrigmp_eI8ljX44WSu8J4XlIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:3041::/32
Signature Algorithm: sha256WithRSAEncryption
7d:86:05:54:17:67:28:26:33:8c:72:62:08:38:1d:25:4f:cf:
bd:21:cb:c3:fd:c0:d0:1e:63:16:cd:ae:95:4a:78:fe:ff:97:
76:87:9e:73:74:83:eb:f0:cd:11:8f:40:dc:b8:21:9b:d4:af:
9b:87:b1:a6:f8:48:c4:5f:84:fb:9d:ae:80:f4:70:3a:a4:56:
5d:fe:98:12:af:59:59:d1:c5:53:24:ac:54:a1:3f:d0:6a:db:
96:37:eb:2e:d2:60:e7:46:20:2f:18:61:c2:d5:65:ff:58:ab:
38:8c:c2:3d:d3:c8:89:f1:b6:20:f2:9d:0c:37:12:b3:64:9a:
d1:ae:f9:e1:32:82:97:97:4c:e9:af:34:b5:8c:fe:16:c7:7f:
31:da:8a:bc:ad:b8:68:28:81:a8:71:c2:39:57:2b:3d:86:99:
67:fb:b5:9e:6c:28:8d:21:25:39:26:0c:61:4f:d3:55:38:06:
ff:f1:8d:a3:44:2a:3f:b6:3e:4f:46:50:e1:12:d7:d1:9e:07:
d7:21:61:dc:5f:d6:52:b1:9d:de:1e:72:dc:99:85:7b:a8:60:
bc:11:90:39:2b:48:07:b5:9b:20:6b:94:eb:13:2a:f4:aa:94:
e6:ff:92:9a:9e:e0:5f:30:bd:1e:1c:aa:f6:c7:5f:16:33:c3:
d4:ff:23:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:50 2024 by rpki-client on console-fra.rpki-client.org