Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/76H9cCskyxJA0Dh8gn-BHBtJ4SM.roa
File: 76H9cCskyxJA0Dh8gn-BHBtJ4SM.roa (raw, json)
Hash identifier: fahSkvkJwjSgb+k91qOh2pSN5e7pn847xTPoeb3Ko1M=
Subject key identifier: EF:A1:FD:70:2B:24:CB:12:40:D0:38:7C:82:7F:81:1C:1B:49:E1:23
Certificate issuer: /CN=03452c9dbfc9e4193c7e55e0d2016568d9465285
Certificate serial: 0185CCEAE1B3D204BF26FC37011C4216F3EC
Authority key identifier: 03:45:2C:9D:BF:C9:E4:19:3C:7E:55:E0:D2:01:65:68:D9:46:52:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0Usnb_J5Bk8flXg0gFlaNlGUoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/76H9cCskyxJA0Dh8gn-BHBtJ4SM.roa
Signing time: Fri 20 Jan 2023 02:03:43 +0000
ROA not before: Fri 20 Jan 2023 02:03:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56884
IP address blocks: 2a11:a100::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cc:ea:e1:b3:d2:04:bf:26:fc:37:01:1c:42:16:f3:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03452c9dbfc9e4193c7e55e0d2016568d9465285
Validity
Not Before: Jan 20 02:03:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efa1fd702b24cb1240d0387c827f811c1b49e123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a8:ab:0c:80:e5:99:ac:08:31:7e:67:a7:a1:
96:dc:d0:78:ff:21:44:e9:b6:82:d7:d9:7b:0d:9a:
60:be:46:5e:f9:16:12:12:3b:6a:6a:85:5b:9a:fb:
6c:5a:59:02:42:0c:d9:e3:97:3a:28:7b:a5:33:fb:
47:6b:26:ef:08:74:00:55:a9:74:74:09:4f:e3:a4:
bf:50:6d:1d:ca:02:01:17:ee:c8:eb:8c:30:bb:0c:
0a:9d:77:c5:2d:67:0b:49:31:e7:70:15:9e:ff:0e:
29:a7:5f:86:8d:54:90:f5:92:67:da:ba:9d:f7:e7:
16:a4:32:04:81:3e:a8:dc:b4:16:e0:45:84:99:8f:
fb:6d:6c:06:5f:73:94:ba:51:60:3d:b9:7a:10:a2:
25:50:4a:aa:ab:7e:84:25:9d:e9:2b:16:ea:4c:d1:
5c:18:64:c9:71:cc:74:4d:c7:00:10:9f:91:b6:2a:
73:e4:0a:cc:ac:d8:f6:d5:1e:0c:79:9b:1c:02:04:
67:d2:ce:f5:8e:3c:67:c3:ba:13:b4:b3:18:8d:12:
34:73:45:78:d5:16:d5:dd:4a:81:92:a4:41:2d:ec:
e1:05:a7:47:3a:d9:c1:45:f2:a4:e1:56:c4:c2:34:
4b:30:14:c0:aa:5b:78:7b:2f:0f:f5:46:8d:e0:62:
46:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A1:FD:70:2B:24:CB:12:40:D0:38:7C:82:7F:81:1C:1B:49:E1:23
X509v3 Authority Key Identifier:
keyid:03:45:2C:9D:BF:C9:E4:19:3C:7E:55:E0:D2:01:65:68:D9:46:52:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0Usnb_J5Bk8flXg0gFlaNlGUoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/76H9cCskyxJA0Dh8gn-BHBtJ4SM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/A0Usnb_J5Bk8flXg0gFlaNlGUoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:a100::/29
Signature Algorithm: sha256WithRSAEncryption
45:f8:1e:a9:a2:8c:33:83:9b:2f:0f:4e:c5:c9:5b:d5:0e:f1:
b1:64:c2:f4:23:28:62:03:55:e5:53:bf:3c:56:85:df:85:ac:
3b:79:8e:37:b1:f9:ce:a2:7b:3e:c6:3f:d9:96:4f:b3:52:e7:
2b:e4:91:df:7f:e6:6e:81:8e:7a:b3:2b:ff:07:f4:d7:20:a8:
78:32:cd:6a:d9:87:bc:28:44:96:3f:0c:02:c0:92:ee:a6:7c:
04:c2:38:ce:fa:fa:dc:99:1f:0b:95:98:57:13:17:85:58:ed:
c6:53:a5:07:1e:56:43:9d:3e:52:df:6b:83:71:aa:ab:08:86:
3e:08:13:f3:27:f6:f7:cd:e3:e3:98:6a:fd:e0:ef:c4:b8:2d:
ab:6d:3c:39:4a:29:be:cc:d5:80:ce:6d:46:ca:2e:f5:25:c6:
f4:4f:8e:3c:3d:07:20:97:4d:58:d1:91:46:1e:98:98:72:56:
8a:1e:6a:7d:18:89:8c:15:c7:ec:14:b7:a1:6a:c1:f4:67:a8:
f1:ae:56:24:f2:2a:2f:a5:73:c0:dc:88:34:f1:70:b2:32:49:
c8:06:3a:2f:64:46:38:d4:46:fe:5d:ee:dd:d9:3f:b4:52:ff:
d9:72:f9:8f:ae:4d:7f:1d:6c:87:25:27:1a:cd:99:23:cb:5d:
54:8c:9b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:10 2023 by rpki-client on console-fra.rpki-client.org