Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/rPxwom9aPefdvUOshaHtj5GmuOI.roa
File: rPxwom9aPefdvUOshaHtj5GmuOI.roa (raw, json)
Hash identifier: oll0TkcSk5Tc5jp3NB2iG+XLm3+9gGnUKCqVKxV1rvY=
Subject key identifier: AC:FC:70:A2:6F:5A:3D:E7:DD:BD:43:AC:85:A1:ED:8F:91:A6:B8:E2
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0188B906B143BBD161BEFFEDB07347F02980
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/rPxwom9aPefdvUOshaHtj5GmuOI.roa
Signing time: Wed 14 Jun 2023 08:30:03 +0000
ROA not before: Wed 14 Jun 2023 08:30:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198135
IP address blocks: 2a0e:aa07:e0d0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:06:b1:43:bb:d1:61:be:ff:ed:b0:73:47:f0:29:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jun 14 08:30:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acfc70a26f5a3de7ddbd43ac85a1ed8f91a6b8e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:74:d1:19:40:2b:d8:00:27:00:a6:70:5b:fa:
44:2e:e4:85:30:ed:13:3f:ff:04:28:dc:49:5f:59:
36:4b:4f:92:8f:09:fd:3d:0e:b2:13:6d:ed:85:49:
c3:2c:d8:c0:a1:72:8a:d3:80:3c:6d:37:29:ac:37:
3d:19:24:30:68:12:1f:cc:99:00:0c:13:2f:e1:ed:
15:c9:e7:02:87:39:67:b8:3e:87:34:6d:0f:84:00:
37:86:c2:9e:f7:aa:af:1d:11:d2:31:18:91:1f:80:
14:5d:c8:41:8e:db:4f:b3:a6:f7:3a:5a:a8:e9:31:
d4:aa:61:38:f8:bd:0e:d4:47:de:3f:e2:3b:57:45:
55:d8:c0:7d:e2:f2:b9:f3:d0:68:ae:b8:ae:d3:a3:
3b:c8:d7:b3:9a:d5:2f:2a:cd:1e:1b:d8:95:08:b7:
01:2b:0a:1d:53:c8:00:77:ed:cf:3b:53:ae:73:d4:
ea:c0:6b:b3:83:4d:1c:f7:d5:af:10:f6:5f:59:6f:
c2:f7:1a:24:35:4c:89:d2:04:d0:ac:b8:63:34:a1:
36:e6:b9:5a:50:fa:73:6c:17:bf:cb:25:23:cb:cd:
7d:ed:0f:4d:b5:9d:ab:17:ed:63:fe:ee:e3:7e:a3:
33:04:2b:f4:4e:10:ea:fc:da:e4:f0:dd:82:10:8d:
24:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FC:70:A2:6F:5A:3D:E7:DD:BD:43:AC:85:A1:ED:8F:91:A6:B8:E2
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/rPxwom9aPefdvUOshaHtj5GmuOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e0d0::/44
Signature Algorithm: sha256WithRSAEncryption
32:e1:24:d2:0d:6d:66:01:80:c6:ab:a8:8e:67:7b:a3:d2:29:
0a:04:0e:9c:3a:ee:b9:da:a9:b8:79:25:22:68:ac:c2:a0:d3:
4c:e9:79:c2:70:34:11:db:cc:43:9f:bf:88:8f:2c:c7:3a:fe:
a7:94:e3:ec:65:e8:ec:ae:52:47:af:2d:1d:53:ce:ad:be:c9:
2a:7d:6d:f6:6c:85:09:18:8c:1a:b3:db:a1:97:8a:dc:17:88:
69:3d:e8:38:be:41:f5:e3:b1:88:09:d3:5b:e6:31:78:94:c8:
4a:f5:78:53:de:3d:83:00:51:30:da:fc:cc:26:a3:68:35:8d:
f4:8f:a6:f4:e3:8b:f9:f8:e7:e4:7d:b5:42:b8:ff:4a:89:6d:
93:56:8a:13:f5:42:0a:a6:b5:03:d7:d6:0d:a6:12:40:6d:79:
9b:8c:1b:cb:d8:47:11:78:0c:bb:20:d8:64:29:55:b5:b9:6b:
f1:11:dc:e6:aa:9c:3b:c8:0e:ed:b1:10:3c:3b:cd:df:4c:cf:
13:84:d0:19:ae:68:7e:de:87:52:25:42:13:60:01:c1:f9:52:
21:55:5f:37:87:66:01:6f:65:0c:96:7d:50:07:78:aa:44:4a:
8c:a1:7d:60:6c:ed:fa:3f:b7:28:3e:3c:6c:90:0a:e7:20:c0:
5b:8d:20:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:03 2024 by rpki-client on console-ams.rpki-client.org