Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/tG6vdUjhj2_WopSyDO1StKDSTNg.roa
File: tG6vdUjhj2_WopSyDO1StKDSTNg.roa (raw, json)
Hash identifier: +h/be0zRimGnsux4/0SLO1dnYcihDdGWIP4If3S4+0k=
Subject key identifier: B4:6E:AF:75:48:E1:8F:6F:D6:A2:94:B2:0C:ED:52:B4:A0:D2:4C:D8
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018A1A48129BCA5AFDFFED342FB9BA49A6E3
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/tG6vdUjhj2_WopSyDO1StKDSTNg.roa
Signing time: Mon 21 Aug 2023 22:47:25 +0000
ROA not before: Mon 21 Aug 2023 22:47:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216431
IP address blocks: 2a03:5840:fe::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1a:48:12:9b:ca:5a:fd:ff:ed:34:2f:b9:ba:49:a6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Aug 21 22:47:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b46eaf7548e18f6fd6a294b20ced52b4a0d24cd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2c:3b:21:4f:56:77:39:22:be:d2:51:5b:4e:
44:77:24:43:d9:c5:6a:22:9f:05:eb:b9:08:59:e4:
b4:e1:e3:8f:e0:08:b0:9e:4d:60:06:7a:f8:f2:8f:
ec:05:9e:ce:36:a1:3f:ce:c9:8f:62:a0:d5:bd:bc:
49:c8:a5:58:6c:05:7b:89:4f:6f:dd:a6:80:b4:0d:
97:9f:6d:b0:a5:c6:c0:e7:ba:69:3c:3e:ac:ce:5c:
e0:c5:cf:ac:e6:66:ee:0a:59:8a:2b:9a:b6:a8:90:
e4:b1:c4:e8:fb:ac:6a:a6:63:c9:72:12:d5:5e:e5:
19:67:62:90:e6:1e:e3:13:51:3d:e2:60:dc:1a:a7:
76:30:31:8c:de:64:62:c3:a7:9e:c2:37:4d:b1:ce:
3c:bb:7d:81:bd:53:e8:36:bc:c4:9a:12:63:3d:73:
ae:83:20:3a:d7:f5:93:e6:80:dc:45:f8:b7:8f:d7:
fb:09:4f:ca:8b:0b:8f:fe:13:81:c5:b3:1c:80:61:
03:34:db:5e:0c:8e:91:0c:0a:21:a4:fe:f5:63:76:
5c:b3:1d:11:90:48:d2:39:12:a5:f9:e9:2a:9b:ec:
08:c7:0d:21:63:6a:77:9f:44:10:1e:94:a9:cb:f0:
24:09:17:9c:15:a5:7e:35:4d:5b:50:63:08:31:d1:
89:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6E:AF:75:48:E1:8F:6F:D6:A2:94:B2:0C:ED:52:B4:A0:D2:4C:D8
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/tG6vdUjhj2_WopSyDO1StKDSTNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:fe::/48
Signature Algorithm: sha256WithRSAEncryption
7f:a2:40:d8:dc:ec:7b:31:3f:cd:b5:f9:ce:af:aa:70:c4:fc:
0d:4c:66:ea:14:37:22:85:3f:ac:61:90:fa:27:e0:29:39:95:
79:13:97:69:08:61:e6:22:1e:e7:ea:44:f3:83:0e:ef:86:2e:
d1:71:60:47:fb:a2:3e:07:2d:48:e2:09:65:87:ea:08:02:37:
ec:dc:60:28:9a:c4:6d:95:d9:40:12:ee:fd:d6:8a:80:83:b6:
78:71:c7:b8:a4:42:27:3f:aa:50:ac:da:45:b1:0d:2c:a0:dd:
d1:0c:d5:70:fb:f2:2f:0f:aa:4a:c6:3d:3c:ae:fa:41:f1:36:
b6:a7:7f:b9:f3:66:03:a3:e7:75:b0:f9:6b:37:66:0b:26:60:
7d:03:f8:05:e8:a0:f9:7f:75:75:21:90:90:e4:26:34:f6:3f:
6f:9b:5a:62:23:48:a8:25:4b:9f:32:af:3c:91:a8:5e:43:ad:
5a:cd:08:90:22:87:40:0a:d2:1a:60:a9:7d:e2:d3:ac:38:bd:
ea:48:de:c2:1f:f3:fc:6d:9e:65:a5:be:79:4c:16:5f:b9:ba:
eb:17:76:97:f1:aa:c3:4a:b5:92:15:b4:8c:ec:10:f9:90:b6:
8a:a8:19:08:25:90:b7:83:15:21:3e:4c:71:b8:c3:bd:f5:1e:
fa:0d:32:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:22 2024 by rpki-client on console-fra.rpki-client.org