Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/sPyogMmEbeaFxNa5wQXG0DuVyVg.roa
File: sPyogMmEbeaFxNa5wQXG0DuVyVg.roa (raw, json)
Hash identifier: ULNhq9CEaFkk4Eo2UXCBgXuTF0QBjmxHMKgmTHitGqM=
Subject key identifier: B0:FC:A8:80:C9:84:6D:E6:85:C4:D6:B9:C1:05:C6:D0:3B:95:C9:58
Certificate issuer: /CN=20f638107abb84ae6fb03cc1db2cfd1bc4487f8d
Certificate serial: 0187859AB67FBDD030FC377E36897E11298F
Authority key identifier: 20:F6:38:10:7A:BB:84:AE:6F:B0:3C:C1:DB:2C:FD:1B:C4:48:7F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPY4EHq7hK5vsDzB2yz9G8RIf40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/sPyogMmEbeaFxNa5wQXG0DuVyVg.roa
Signing time: Sat 15 Apr 2023 15:48:41 +0000
ROA not before: Sat 15 Apr 2023 15:48:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48659
IP address blocks: 2a03:ae40:fb00::/40 maxlen: 40
2a03:ae40:fa00::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:85:9a:b6:7f:bd:d0:30:fc:37:7e:36:89:7e:11:29:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f638107abb84ae6fb03cc1db2cfd1bc4487f8d
Validity
Not Before: Apr 15 15:48:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0fca880c9846de685c4d6b9c105c6d03b95c958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f4:7a:9e:c9:d2:6f:fc:32:a7:e0:24:60:8f:
d6:5f:a5:52:97:73:f7:25:8a:42:7d:fd:78:33:54:
3e:51:69:86:df:0c:e3:fa:89:16:8d:1c:03:5d:d0:
9c:39:35:eb:91:8f:35:76:7f:bf:0c:2a:cf:10:10:
28:74:50:0b:1d:59:fa:be:33:15:f9:2c:6f:64:ef:
f1:1d:27:47:0f:b9:7f:64:85:c3:2e:8f:02:5a:70:
95:e9:c6:4a:66:96:79:b5:c6:c5:b4:72:af:59:cf:
b0:d2:4e:32:44:27:00:cd:98:ef:3b:36:80:06:e0:
f2:4a:35:05:5a:36:b7:1f:8c:90:13:6e:df:41:61:
be:82:e7:f9:c3:25:b0:03:3e:fa:db:d4:5d:ff:7e:
d9:5f:81:72:58:47:89:79:c9:ef:d0:1a:ef:cf:f3:
ee:29:2f:79:97:bd:c0:93:bf:42:9f:57:c8:2c:fe:
7f:75:40:9d:c9:e2:25:c8:23:4a:0d:a5:b9:36:77:
0d:ae:24:c8:21:88:c9:8a:7c:b9:2b:41:4d:6d:0c:
b5:20:35:67:c4:9e:79:5a:65:a4:a4:ce:7e:74:42:
b1:1b:d3:c5:7b:4a:1f:f3:ca:ba:79:74:39:9b:6d:
42:73:02:72:46:ff:fc:f7:94:2a:58:dd:dc:67:0a:
58:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FC:A8:80:C9:84:6D:E6:85:C4:D6:B9:C1:05:C6:D0:3B:95:C9:58
X509v3 Authority Key Identifier:
keyid:20:F6:38:10:7A:BB:84:AE:6F:B0:3C:C1:DB:2C:FD:1B:C4:48:7F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPY4EHq7hK5vsDzB2yz9G8RIf40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/sPyogMmEbeaFxNa5wQXG0DuVyVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/IPY4EHq7hK5vsDzB2yz9G8RIf40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:ae40:fa00::/39
Signature Algorithm: sha256WithRSAEncryption
8c:54:c7:06:22:62:0f:c8:a0:94:55:44:05:75:db:d4:7d:0f:
30:c3:02:1e:79:ed:38:72:2c:4c:17:24:8b:5f:8e:5d:6a:3c:
c3:68:96:0d:05:d1:f9:1a:08:06:4f:7b:21:bd:f7:c4:98:bf:
38:6e:7f:4c:ef:80:76:e7:7e:66:01:08:99:75:d7:ea:33:d7:
5d:c1:88:b3:1b:b7:a4:7c:cc:83:d9:9a:fd:29:14:2f:d6:8d:
c9:38:ee:cb:05:63:55:c6:fa:6a:dc:2e:44:be:e2:34:ec:b6:
29:9e:2b:80:71:39:a5:32:92:75:21:44:5f:79:39:4d:5b:f4:
5e:2c:cc:ea:18:45:5b:58:35:ad:78:6e:b4:e9:f6:a9:25:9d:
a4:87:8e:3c:7c:a9:71:0d:bb:6b:71:97:c3:1e:de:65:cc:94:
ed:2d:9b:1a:2e:31:46:46:1e:ff:7d:13:f2:7b:da:52:22:7f:
d1:a3:be:65:3c:c9:74:5a:dd:a9:9e:40:a5:1c:dd:8a:4c:1f:
ec:99:aa:48:54:99:74:b6:e3:94:9c:97:42:77:03:1d:f2:e6:
0b:cc:33:ca:81:b6:ab:84:95:b2:d0:78:4f:47:66:82:80:f8:
e2:b5:1c:05:12:a5:a2:1a:eb:cf:6e:90:9d:da:b0:97:88:ea:
a0:fa:91:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:25 2024 by rpki-client on console-ams.rpki-client.org