Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d1bcda-9270-43a3-baae-2cc8dc4f0220/1/5sCZlNYDTXltx-f705oOB2aod4I.roa
File: 5sCZlNYDTXltx-f705oOB2aod4I.roa (raw, json)
Hash identifier: IAMKBkrWVmVSmPanG3ME5+PQfbF5qOKbc1e8HUPvOz4=
Subject key identifier: E6:C0:99:94:D6:03:4D:79:6D:C7:E7:FB:D3:9A:0E:07:66:A8:77:82
Certificate issuer: /CN=e769bad3061832de9b7d7c373737f4346c6c06e6
Certificate serial: 018572713EA6C5121409C6A854822D2D1C4D
Authority key identifier: E7:69:BA:D3:06:18:32:DE:9B:7D:7C:37:37:37:F4:34:6C:6C:06:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52m60wYYMt6bfXw3Nzf0NGxsBuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d1bcda-9270-43a3-baae-2cc8dc4f0220/1/5sCZlNYDTXltx-f705oOB2aod4I.roa
Signing time: Mon 02 Jan 2023 12:25:02 +0000
ROA not before: Mon 02 Jan 2023 12:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201567
IP address blocks: 2001:678:13c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:3e:a6:c5:12:14:09:c6:a8:54:82:2d:2d:1c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e769bad3061832de9b7d7c373737f4346c6c06e6
Validity
Not Before: Jan 2 12:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6c09994d6034d796dc7e7fbd39a0e0766a87782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:78:16:6f:bb:dd:03:3e:de:92:37:fa:e1:35:
d7:a6:6b:d7:a0:e9:ad:5a:0f:87:23:69:16:42:06:
90:ed:38:6d:a2:ad:bb:6a:be:51:24:fd:79:81:97:
2e:b3:90:7a:18:24:69:5c:7d:42:df:83:c2:d2:00:
40:5f:74:4b:6e:31:0f:36:06:82:cb:ac:13:86:c9:
70:4b:fb:7b:56:01:db:58:11:c9:62:df:f6:9b:4c:
db:c8:e8:84:be:d1:69:f6:b2:47:19:8f:4e:c0:7d:
33:d0:7e:83:56:97:74:ef:fb:58:4f:dd:c6:79:80:
19:85:7e:3f:b4:6d:62:91:b7:a4:b9:4b:15:04:39:
06:22:19:95:9f:92:50:6e:6c:27:d6:57:df:67:ef:
6f:9b:56:b3:2d:f5:91:64:6e:57:ed:9a:d7:e1:d7:
87:e6:61:fa:01:39:47:01:20:ed:8d:32:79:05:82:
8b:a0:cc:44:30:ff:40:a5:1f:8e:eb:df:f3:ec:fa:
2f:54:85:42:50:df:1d:a6:da:ee:ee:25:2f:5c:d2:
5a:28:d6:a5:0d:eb:fc:48:47:ad:91:65:ab:f5:90:
6b:8a:eb:0a:f3:e1:3f:06:21:79:78:a7:e4:56:c9:
e3:f9:06:d5:18:16:d5:ba:85:7e:41:55:03:1b:9b:
cc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C0:99:94:D6:03:4D:79:6D:C7:E7:FB:D3:9A:0E:07:66:A8:77:82
X509v3 Authority Key Identifier:
keyid:E7:69:BA:D3:06:18:32:DE:9B:7D:7C:37:37:37:F4:34:6C:6C:06:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52m60wYYMt6bfXw3Nzf0NGxsBuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d1bcda-9270-43a3-baae-2cc8dc4f0220/1/5sCZlNYDTXltx-f705oOB2aod4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d1bcda-9270-43a3-baae-2cc8dc4f0220/1/52m60wYYMt6bfXw3Nzf0NGxsBuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:13c::/48
Signature Algorithm: sha256WithRSAEncryption
8c:f1:73:1b:7e:8d:50:4f:b3:8b:39:6a:a1:84:bf:27:99:91:
a7:0a:a2:3e:16:a4:c0:b9:82:9d:fd:96:80:e2:6f:ce:01:70:
5d:cb:73:b2:98:26:da:19:43:59:cf:23:f8:fe:ad:96:7d:c2:
9a:e8:dc:2d:cd:c1:0d:6a:43:65:60:b9:b5:54:bb:c3:c3:70:
f0:f0:9f:ff:74:38:c2:05:f2:a0:74:78:72:ca:7d:33:89:a5:
63:72:02:2c:e6:b4:63:dd:cd:a9:48:8c:3a:ef:2f:d9:df:a5:
f0:eb:8d:bc:12:7f:2e:d1:82:11:95:2d:e6:3f:fd:25:0c:47:
62:b0:b4:9e:7b:7c:f5:20:a6:38:db:4d:c8:b8:02:d8:55:35:
e7:90:5a:07:12:ea:28:23:48:9c:aa:bc:e5:c7:96:de:85:c3:
5c:ac:b3:62:df:be:9e:28:14:98:42:7a:fe:74:85:9f:c4:ce:
40:ec:88:e1:de:05:ea:b1:1d:8b:8d:f2:0c:43:19:97:53:8a:
94:bc:f3:fd:c1:82:8d:ea:ce:cb:db:2b:8a:b7:90:24:b7:8a:
b9:c4:0e:a2:37:58:c1:2c:b0:c4:b7:3a:e9:df:97:cd:d4:e2:
be:1a:58:3f:3f:6d:e6:0e:ac:12:f3:df:5f:04:d3:9a:e2:14:
9d:b5:15:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:06 2024 by rpki-client on console-fra.rpki-client.org