Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8yAjXmiVH3LF4t0hBwzBmDDoj3I.roa
File: 8yAjXmiVH3LF4t0hBwzBmDDoj3I.roa (raw, json)
Hash identifier: PT6rAcWIFf9p20aVuXPmxq0PkBuYXLNnqU5LBZXf2bs=
Subject key identifier: F3:20:23:5E:68:95:1F:72:C5:E2:DD:21:07:0C:C1:98:30:E8:8F:72
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FFF04BE459299FDE41F39F6FFBC2B
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8yAjXmiVH3LF4t0hBwzBmDDoj3I.roa
Signing time: Sun 01 Jan 2023 21:14:54 +0000
ROA not before: Sun 01 Jan 2023 21:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210320
IP address blocks: 2a0e:aa07:e02e::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:ff:04:be:45:92:99:fd:e4:1f:39:f6:ff:bc:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f320235e68951f72c5e2dd21070cc19830e88f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8e:c0:cf:0b:1b:23:87:8c:2a:15:e0:1e:ab:
28:56:7c:db:28:e0:ec:a5:20:fa:1f:e5:9a:06:34:
1b:18:a1:d9:5c:0f:f3:94:24:65:eb:02:f9:90:4a:
4a:d3:af:10:f1:8c:ce:55:65:03:0e:7a:68:e9:9a:
80:e5:e9:40:52:08:03:69:f9:89:23:7a:ea:2a:17:
8a:b6:40:19:d8:f8:13:a7:60:b5:11:ed:ba:e1:59:
a1:81:07:20:53:cf:d1:6f:99:57:ba:05:fd:31:4d:
c4:42:1f:b3:84:ca:7f:fb:c4:83:c7:69:e4:27:f5:
09:f0:a9:80:9c:76:a1:33:d3:1b:74:4c:ca:00:dc:
f2:d5:70:78:9e:61:e3:06:1b:0d:5c:3d:2e:d3:0c:
d0:a2:9f:e2:43:33:b8:29:68:b1:a4:cd:64:5d:bc:
f7:fb:63:29:b6:ec:3b:43:46:e2:a9:d7:39:17:61:
dc:eb:ae:a2:34:88:bd:ca:61:4e:0c:d6:1e:24:4d:
03:cd:72:b7:1d:8c:9b:97:5e:63:82:9a:69:36:10:
71:5b:f7:71:6e:c0:77:08:60:88:8b:78:ce:68:8d:
73:37:38:93:1a:db:55:e7:41:8d:88:31:c1:ae:71:
42:4e:52:a0:06:fc:1c:24:dc:8c:fb:4a:50:62:fd:
98:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:20:23:5E:68:95:1F:72:C5:E2:DD:21:07:0C:C1:98:30:E8:8F:72
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8yAjXmiVH3LF4t0hBwzBmDDoj3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e02e::/48
Signature Algorithm: sha256WithRSAEncryption
74:c5:7c:c6:a0:e2:b5:df:d3:ec:4a:e5:98:66:85:4c:55:b9:
b8:0a:62:39:07:2b:7d:0e:8e:47:a5:22:71:e2:fc:5f:b8:bf:
13:fa:86:33:8b:ee:a9:53:12:5b:50:32:10:a1:43:ff:2b:db:
3b:1c:33:6e:c9:fc:bd:4f:93:a2:42:88:d2:27:7d:9e:ea:59:
c3:27:d1:f2:23:2a:45:4c:05:6d:57:f6:af:1b:be:8d:40:c7:
2b:6b:ce:fd:4a:e0:dd:fa:59:b7:6e:f8:f7:7d:97:eb:82:d8:
b5:95:c4:06:04:b8:7b:cd:16:94:cd:46:16:44:5c:57:a5:67:
43:1d:7b:b1:3c:21:3e:47:3a:8b:3d:d6:c3:b6:0a:52:5a:4d:
d7:4c:ec:d7:e4:6c:71:bb:e4:41:b0:20:6a:8a:eb:a8:58:f2:
4f:46:ff:36:51:ef:ac:79:f0:08:bd:34:c6:04:d5:b0:07:af:
1a:a6:8e:ff:64:b3:3f:5e:2c:dd:7e:3c:9b:46:ef:7a:bf:89:
18:48:7f:18:94:5f:bc:a5:c4:5f:4e:7e:08:bd:bf:db:d0:0e:
08:ba:25:0e:25:51:98:31:ff:c5:18:a2:c7:85:f7:cd:5a:03:
66:5e:5b:0b:a2:45:09:6d:f2:a8:3e:5f:eb:f9:f4:fa:9e:e4:
94:3c:e9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:27 2024 by rpki-client on console-fra.rpki-client.org