Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/ShkxXK4wlgD_wxf74okIYX3sdsU.roa
File: ShkxXK4wlgD_wxf74okIYX3sdsU.roa (raw, json)
Hash identifier: RWRr7o/Iv5xOChr4F7T5QzgTFGaJlvypID2Mwbm+Yhc=
Subject key identifier: 4A:19:31:5C:AE:30:96:00:FF:C3:17:FB:E2:89:08:61:7D:EC:76:C5
Certificate issuer: /CN=e777bc8e3ec250ce85fb90913c2c49051043ebc5
Certificate serial: 01856E01E9D3BAE1BE0C5EA9FFA46F4C8F8E
Authority key identifier: E7:77:BC:8E:3E:C2:50:CE:85:FB:90:91:3C:2C:49:05:10:43:EB:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53e8jj7CUM6F-5CRPCxJBRBD68U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/ShkxXK4wlgD_wxf74okIYX3sdsU.roa
Signing time: Sun 01 Jan 2023 15:44:57 +0000
ROA not before: Sun 01 Jan 2023 15:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35365
IP address blocks: 2a0c:6580:2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:e9:d3:ba:e1:be:0c:5e:a9:ff:a4:6f:4c:8f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e777bc8e3ec250ce85fb90913c2c49051043ebc5
Validity
Not Before: Jan 1 15:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a19315cae309600ffc317fbe28908617dec76c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:27:64:97:d6:3e:eb:c5:7f:56:92:1e:67:78:
cd:3d:d6:97:c0:74:95:9f:7a:ee:a0:34:3a:f7:a6:
f6:cf:3d:af:75:70:96:14:1a:3d:e5:71:5d:cf:ca:
31:5f:40:aa:62:3a:20:14:e5:62:85:1e:63:b3:03:
ce:4b:5a:8a:5b:0d:4a:c3:60:52:47:4b:9a:82:1f:
eb:d3:bf:14:ac:bc:74:1a:1f:39:f3:30:49:8d:ab:
30:c0:54:22:82:55:a6:1d:27:ac:08:f2:f0:35:96:
be:3c:e6:b8:58:00:f2:56:85:24:d5:c9:cb:75:42:
46:a2:82:81:1d:e1:e9:ac:97:9a:5d:a2:20:19:b7:
83:11:b1:d1:e5:d2:65:7a:ff:20:a4:2e:f1:03:51:
0c:81:c4:da:80:f0:01:9a:1a:f4:6d:27:c3:c2:45:
99:10:1e:85:5c:d1:f4:d1:ed:12:52:06:a5:b6:4b:
00:b3:5d:ed:79:3f:60:61:67:eb:28:cc:b4:b4:de:
e1:f7:97:9f:bb:86:cb:da:3a:b0:87:3a:d6:ed:86:
a7:d4:ad:44:c1:2a:bc:80:76:e8:a2:06:b0:71:0d:
2e:c9:b3:12:1f:72:3a:14:6f:61:ab:12:fd:81:a5:
4b:c5:bd:0d:9f:1f:1e:59:be:bc:2a:c2:24:c2:f1:
02:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:19:31:5C:AE:30:96:00:FF:C3:17:FB:E2:89:08:61:7D:EC:76:C5
X509v3 Authority Key Identifier:
keyid:E7:77:BC:8E:3E:C2:50:CE:85:FB:90:91:3C:2C:49:05:10:43:EB:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53e8jj7CUM6F-5CRPCxJBRBD68U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/ShkxXK4wlgD_wxf74okIYX3sdsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/53e8jj7CUM6F-5CRPCxJBRBD68U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6580:2::/48
Signature Algorithm: sha256WithRSAEncryption
6e:6c:fc:8d:d6:83:97:43:15:27:e0:08:08:f3:f3:26:64:48:
fc:69:4d:63:7d:a0:19:5c:d1:f9:51:93:99:63:b5:0f:be:20:
75:e4:f9:e7:71:91:e4:63:fe:ed:03:2d:b8:50:67:d6:2d:89:
bf:46:83:19:09:e9:cd:8a:f4:e3:8d:d2:27:6f:90:23:e3:10:
11:ef:13:4a:02:fe:ac:eb:ba:c8:af:8a:23:0b:92:e8:11:0d:
db:1c:c1:77:99:f2:14:07:da:00:b0:ee:bf:3d:c0:de:6f:0d:
1d:c3:02:9d:5c:c6:3c:43:ef:21:c0:eb:e7:ce:e1:ea:e7:f8:
be:bb:d6:2d:fc:4e:f3:97:2e:1b:9f:10:4e:99:23:d7:0a:cc:
2d:5c:34:f5:59:1e:3d:98:66:12:0b:fd:30:35:5a:07:bf:30:
3a:1f:c1:81:38:91:7a:97:e8:7a:2d:79:dd:80:dc:06:db:aa:
c8:0d:1e:aa:35:51:d7:d9:26:90:98:df:05:f5:98:20:2b:23:
59:bf:06:94:82:dd:3f:6d:02:f5:c8:12:13:b0:75:61:1d:a1:
4b:1e:5c:a7:c8:31:0f:87:9e:5e:4f:ee:e1:75:3d:64:e8:42:
d0:81:54:6c:99:87:6f:43:28:2e:d0:26:66:26:b1:fa:03:f9:
85:be:1c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:15 2024 by rpki-client on console-fra.rpki-client.org