Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/H85bw2P99bpHa5bcuHeGeAKz8BE.roa
File: H85bw2P99bpHa5bcuHeGeAKz8BE.roa (raw, json)
Hash identifier: OJsimpAVMdU8EyUPO9QQth/sOf7QG8sD8c3oxPre26k=
Subject key identifier: 1F:CE:5B:C3:63:FD:F5:BA:47:6B:96:DC:B8:77:86:78:02:B3:F0:11
Certificate issuer: /CN=dbc144ce154eee9dbb3562ce4cd3228338641333
Certificate serial: 01857095092465D2C2EF482A39B694227D9C
Authority key identifier: DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/H85bw2P99bpHa5bcuHeGeAKz8BE.roa
Signing time: Mon 02 Jan 2023 03:44:53 +0000
ROA not before: Mon 02 Jan 2023 03:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133160
IP address blocks: 2a00:8422:ae5::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:09:24:65:d2:c2:ef:48:2a:39:b6:94:22:7d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc144ce154eee9dbb3562ce4cd3228338641333
Validity
Not Before: Jan 2 03:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fce5bc363fdf5ba476b96dcb877867802b3f011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2e:a6:0e:2d:27:e7:5e:88:e3:2f:c8:7f:cb:
7e:e5:c7:5b:a6:09:1d:29:46:4e:7a:eb:c1:af:86:
65:34:38:97:ee:19:f0:ef:36:da:07:6d:b6:0b:76:
65:5d:0e:45:7b:04:cc:ab:66:4a:74:c2:6c:cc:33:
db:61:0a:71:a1:14:fb:9b:d7:dc:e0:c8:f8:9a:ff:
0d:a9:96:00:80:8e:84:09:95:37:c6:05:a2:90:26:
ef:60:21:eb:1f:48:ea:d7:7b:bf:34:5c:1c:ac:fb:
2c:95:05:58:07:db:4c:32:91:9c:c8:85:07:3b:9e:
ef:c6:d9:21:27:bc:f1:70:65:b8:d8:88:75:59:21:
c9:0a:4f:a2:e1:31:e0:ee:30:ba:d1:1f:3d:1c:0a:
64:e9:a7:bb:b0:44:ba:bf:82:87:b7:e4:4f:b3:f6:
0c:a9:9c:d3:9f:63:31:af:a3:c2:38:97:1c:48:8b:
ab:3d:92:ed:12:39:91:fc:14:ff:81:ca:57:64:f1:
fd:93:64:c0:73:0c:1c:b6:39:41:6f:38:ef:c1:bd:
42:3c:89:93:29:e5:d0:1f:94:2f:1c:c2:68:88:07:
50:dd:53:7a:0a:3c:56:7a:c3:51:7f:d0:81:f7:20:
5a:68:8f:31:ce:d7:66:c1:b6:89:8e:80:c0:fa:ea:
b1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CE:5B:C3:63:FD:F5:BA:47:6B:96:DC:B8:77:86:78:02:B3:F0:11
X509v3 Authority Key Identifier:
keyid:DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/H85bw2P99bpHa5bcuHeGeAKz8BE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8422:ae5::/64
Signature Algorithm: sha256WithRSAEncryption
4e:fc:d2:db:48:3d:7c:bc:92:b4:aa:13:c3:26:03:5b:78:e8:
74:81:79:2e:1d:0a:78:c0:ac:06:79:bd:3b:52:1f:35:25:c4:
08:dd:aa:a2:c0:4e:e9:dc:ce:d8:84:70:ef:58:f3:f7:29:f8:
37:ea:10:67:6d:d0:fe:7f:2d:c6:fe:22:ff:48:79:81:88:72:
2a:99:5e:ec:50:36:88:94:fe:64:12:92:26:9b:5e:69:84:17:
d4:4f:d6:ad:3e:45:6f:23:c5:47:4a:6f:d7:a8:5b:c2:18:5a:
90:82:d8:cf:f6:cf:af:ca:30:ee:46:25:03:07:0f:2e:e4:fc:
bc:af:c8:fa:cf:3b:c9:75:c4:d0:e0:2b:d4:8a:65:47:3d:d4:
63:73:f1:4a:c1:e7:be:df:0c:cf:d8:04:44:65:05:5a:ab:c3:
d6:d9:13:24:76:c8:38:00:4a:32:e2:bd:8c:50:19:02:8a:0d:
27:98:f2:79:c7:75:65:db:b4:30:d7:35:0a:2a:03:89:3b:89:
02:03:14:ac:d9:e7:d8:54:d1:70:d6:e9:c7:68:07:17:34:62:
90:09:fe:fc:06:89:40:2f:a4:84:6e:35:81:70:84:8f:f2:cd:
bd:6d:c7:6e:64:a7:21:dc:a1:f4:43:1e:09:d2:3c:7f:35:cc:
ac:76:1c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:07 2024 by rpki-client on console-ams.rpki-client.org