Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/OODUrI75HACYyDv05vnn7mmAZtM.roa
File: OODUrI75HACYyDv05vnn7mmAZtM.roa (raw, json)
Hash identifier: B9qOfNJy3qEzqyzsUkWCp+rHCa2NKf5JCvjBGhIEPNM=
Subject key identifier: 38:E0:D4:AC:8E:F9:1C:00:98:C8:3B:F4:E6:F9:E7:EE:69:80:66:D3
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 01856FD4FB78D856927B5565CCBD9D3CA77B
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/OODUrI75HACYyDv05vnn7mmAZtM.roa
Signing time: Mon 02 Jan 2023 00:15:07 +0000
ROA not before: Mon 02 Jan 2023 00:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8605
IP address blocks: 2001:67c:2198::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:fb:78:d8:56:92:7b:55:65:cc:bd:9d:3c:a7:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Jan 2 00:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38e0d4ac8ef91c0098c83bf4e6f9e7ee698066d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d9:99:1f:27:61:d0:f0:8b:36:ed:e7:e9:4d:
5b:6e:b5:d3:7b:a1:2b:cb:45:d2:e7:b9:e3:1b:58:
1d:d6:00:86:b4:af:55:a8:32:61:0b:bf:f4:3e:ff:
76:44:f6:26:a2:b4:d6:0b:f6:25:84:57:76:12:ae:
69:09:d3:c0:04:72:06:63:03:b8:bf:d0:33:6c:6a:
35:a3:96:7c:0f:f9:47:6b:5d:25:b7:20:76:dc:d3:
86:2f:bc:a3:dc:e9:22:c0:e4:4f:d2:a2:08:ec:4c:
4c:cb:b8:5d:da:86:37:89:25:ac:0f:89:ae:1b:fe:
53:e9:37:09:2f:e8:47:48:aa:3b:6e:84:e1:75:c1:
87:27:05:ee:bf:6a:03:6a:56:d5:5b:5f:e4:9f:e5:
27:a2:a5:12:4d:3c:6c:f1:87:7f:43:4c:ac:b6:cd:
98:da:60:d4:ed:b9:16:cb:da:26:b4:37:da:ff:9b:
79:e8:5a:cb:ed:55:b5:4f:1d:8a:cb:8d:51:dd:59:
37:ec:d7:33:4f:29:a9:b3:cb:8c:d1:b5:ef:bf:97:
c7:b0:3e:3d:10:69:e5:a6:98:84:31:4a:a6:d4:2b:
f9:ce:f5:b2:11:2b:a9:35:3f:00:18:97:79:1f:d5:
fc:fd:36:0d:3b:6a:f2:0e:5b:8c:e4:87:4a:b4:32:
63:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E0:D4:AC:8E:F9:1C:00:98:C8:3B:F4:E6:F9:E7:EE:69:80:66:D3
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/OODUrI75HACYyDv05vnn7mmAZtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2198::/48
Signature Algorithm: sha256WithRSAEncryption
88:ae:30:5d:1c:d1:0d:cd:88:f9:97:99:c0:24:35:65:a6:71:
7d:8e:6f:15:ba:37:39:eb:b3:91:0d:37:10:6f:7b:3e:a9:4c:
be:fe:c6:65:5e:38:a8:51:20:31:21:b0:e7:ff:3a:28:b7:5a:
09:a0:59:95:c9:dd:9d:4e:1c:77:9a:5e:bc:e5:94:c9:ac:87:
0f:52:7e:9f:c1:5d:13:47:91:8d:a3:18:6d:02:20:6b:d6:bd:
ef:e2:0a:ca:3c:34:20:48:90:e2:63:44:8b:2d:92:1f:2b:c2:
64:46:26:80:e4:3b:80:4f:9c:c9:1c:20:1a:50:0c:19:4d:7b:
ff:77:06:af:11:0d:8e:6d:93:6a:73:2c:df:54:37:5e:6e:c8:
b1:7c:4c:92:00:5b:ed:bc:da:df:da:90:44:a7:1c:40:12:ac:
4a:93:83:01:87:5f:44:71:f3:38:f5:32:6a:ec:18:59:fe:8c:
33:69:5c:9e:b3:f1:20:4a:1b:3a:c9:ac:a8:97:f6:e9:29:e2:
fe:59:69:e7:99:d7:6d:64:2a:c0:e4:6b:33:67:7a:1f:6c:8d:
cc:c6:e6:c5:f8:64:fc:25:89:1a:8b:24:7c:2e:18:b6:14:d2:
46:cc:59:ac:4d:fd:7d:9a:c6:f4:78:3c:a7:00:36:a9:2e:90:
43:03:0a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:31 2024 by rpki-client on console-ams.rpki-client.org