Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/1mfpGhWjJmy_7SWrdmTno-nZb-Q.roa
File: 1mfpGhWjJmy_7SWrdmTno-nZb-Q.roa (raw, json)
Hash identifier: +66aLzoyzRWnqKJOAK/3YGHZ+ZlvXcajSZTsq5gecJI=
Subject key identifier: D6:67:E9:1A:15:A3:26:6C:BF:ED:25:AB:76:64:E7:A3:E9:D9:6F:E4
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018596467985C366784FB088D5E5CAF1B6BE
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/1mfpGhWjJmy_7SWrdmTno-nZb-Q.roa
Signing time: Mon 09 Jan 2023 11:24:39 +0000
ROA not before: Mon 09 Jan 2023 11:24:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209652
IP address blocks: 2a03:5840:f1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:46:79:85:c3:66:78:4f:b0:88:d5:e5:ca:f1:b6:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 9 11:24:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d667e91a15a3266cbfed25ab7664e7a3e9d96fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4b:b1:c8:0a:93:75:ec:ca:b7:93:9b:66:fd:
b4:af:72:08:48:b1:47:09:11:d6:0c:86:87:e6:6a:
a1:22:51:9b:40:8c:92:de:38:e8:7a:16:23:b6:3f:
e6:c2:65:38:f9:ee:0e:9f:48:08:1a:7f:8e:5c:72:
82:73:24:f8:ba:36:c0:c8:e6:85:b2:47:ed:8d:27:
2c:ae:59:a5:2a:d6:7d:23:37:f0:7c:dc:4d:5f:db:
0f:ea:a2:a5:26:4a:6d:a1:70:18:50:a8:c8:c5:9e:
ea:ef:c8:71:af:68:8b:6e:b0:4a:5b:97:ae:bf:31:
7d:4b:95:ff:a4:25:81:3b:6b:aa:99:ef:97:1e:c8:
19:5c:40:97:95:0f:1b:2f:f2:b0:04:46:69:c2:fa:
ee:4a:57:50:b3:d3:4e:ea:d3:05:99:c1:a6:ce:98:
d9:4b:da:7b:36:2b:e8:73:c4:c2:58:77:6e:b1:61:
89:6e:9a:fb:17:55:ba:3f:52:e7:6b:84:70:f6:85:
d9:81:a1:3d:f7:c3:06:17:6b:81:1b:fc:7a:e7:f3:
11:f8:52:d8:00:b4:25:db:02:5b:70:e5:75:43:df:
bf:06:77:5a:14:c1:fd:80:b3:0b:a1:83:d5:c7:8d:
a4:e8:37:01:cf:9a:10:63:69:3b:24:cd:42:4c:8b:
d7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:67:E9:1A:15:A3:26:6C:BF:ED:25:AB:76:64:E7:A3:E9:D9:6F:E4
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/1mfpGhWjJmy_7SWrdmTno-nZb-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:f1::/48
Signature Algorithm: sha256WithRSAEncryption
68:78:c8:6e:95:6a:a0:c0:ab:ee:86:83:f9:cf:e0:29:66:9c:
72:ba:7c:5c:af:60:e8:8e:65:81:1e:3b:84:66:66:3c:d3:b0:
d3:c8:bd:f7:29:45:59:74:e2:6d:52:50:c1:a9:6d:ee:70:47:
9f:bd:07:03:9d:1c:c9:2c:01:98:02:1c:01:b1:ab:e4:00:ea:
ff:89:e5:30:2b:b3:e3:a1:17:d3:d1:0f:d2:44:0d:0a:fb:8a:
63:19:42:7f:92:ac:03:5b:f2:ba:60:ff:4f:82:7f:fa:c4:75:
42:44:e5:75:bf:6a:17:9d:e1:4f:79:51:e6:36:e4:30:7d:41:
69:6d:73:2f:2d:fa:1b:ea:fa:2b:92:62:a5:e9:cf:82:44:97:
3d:6e:bf:c0:1e:4a:54:10:a9:03:b5:78:57:82:8f:29:b9:68:
91:f9:3f:fc:c2:bf:35:26:05:ff:45:7a:69:cd:0f:98:cb:23:
79:aa:a2:0a:1a:00:0b:55:67:d2:bf:14:01:c6:9a:09:3a:52:
fb:eb:61:44:06:ac:d4:43:8a:0c:c5:69:66:c9:16:76:e7:b7:
b4:ca:42:47:a4:f8:66:80:3b:2a:45:18:88:43:ae:cc:ee:fb:
4c:ba:ef:19:db:45:c3:69:8e:40:cb:14:da:89:df:03:bc:8c:
df:c9:10:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:22 2024 by rpki-client on console-fra.rpki-client.org