Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/H_fJ3GydcZl9SmuJIMNjH4dtZeM.roa
File: H_fJ3GydcZl9SmuJIMNjH4dtZeM.roa (raw, json)
Hash identifier: lmhf17USQqeQLaPWg1gLgnaOPkiBWe6ushWVPr/pZKU=
Subject key identifier: 1F:F7:C9:DC:6C:9D:71:99:7D:4A:6B:89:20:C3:63:1F:87:6D:65:E3
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 018978D586441EBA2CA96EAC4EC6C150008E
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/H_fJ3GydcZl9SmuJIMNjH4dtZeM.roa
Signing time: Fri 21 Jul 2023 14:23:26 +0000
ROA not before: Fri 21 Jul 2023 14:23:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57330
IP address blocks: 2a12:3fc6::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:d5:86:44:1e:ba:2c:a9:6e:ac:4e:c6:c1:50:00:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jul 21 14:23:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ff7c9dc6c9d71997d4a6b8920c3631f876d65e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a9:c5:05:ae:d5:cb:39:81:03:c6:89:8d:e6:
fb:a0:1e:3e:23:4e:f2:45:ea:1d:d3:6d:36:c7:d6:
cb:51:1d:f9:72:2d:fc:13:71:e3:ab:8a:a3:e8:5e:
51:f6:a9:62:5c:22:55:35:dc:b9:c5:9f:79:61:bd:
4f:cf:68:29:8f:96:12:b8:65:8c:2d:a7:13:d5:de:
1e:b5:e4:ae:bc:30:82:1c:3b:67:af:29:0b:49:d0:
ce:dc:b9:74:66:55:e3:7c:e9:93:39:aa:f8:d2:d2:
22:a0:8d:84:e4:33:83:2c:53:96:a4:5c:4f:b1:60:
fd:76:b8:6c:b0:8b:a9:36:68:f2:10:b4:22:f1:bf:
f9:6d:23:df:a0:92:04:76:10:13:39:32:a0:05:b8:
c3:e2:87:e1:54:1c:4e:56:c9:08:bf:e0:0a:e9:bd:
61:3d:5e:bd:e6:fa:82:02:2e:e3:3e:82:88:77:0a:
77:45:30:50:42:f1:ad:3e:9b:aa:fc:10:3b:d2:f0:
c9:be:04:7e:8d:d7:f9:f3:80:54:18:57:8c:52:1f:
01:33:2f:3d:7e:03:b9:53:fd:5c:a7:b2:a4:5f:c7:
6a:f1:a0:84:56:9b:ad:ca:75:58:4e:4d:a3:cf:55:
ca:f2:2b:8a:af:98:3f:4d:f7:04:01:b7:ad:60:eb:
02:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:F7:C9:DC:6C:9D:71:99:7D:4A:6B:89:20:C3:63:1F:87:6D:65:E3
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/H_fJ3GydcZl9SmuJIMNjH4dtZeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc6::/48
Signature Algorithm: sha256WithRSAEncryption
9b:58:7c:37:98:74:1d:00:3b:00:2b:0e:16:a7:e9:a4:0c:d1:
0b:1d:2d:88:ea:09:f8:54:7f:e7:fd:97:53:6d:78:0d:4e:dd:
fa:72:33:ee:48:c4:52:2d:e5:76:97:45:df:8b:87:84:79:8a:
14:f4:3c:55:db:67:cc:cf:e2:44:be:62:a6:d5:2b:3e:1a:db:
12:fc:a9:2d:71:20:62:9f:a0:83:a3:8d:7e:04:4b:30:c1:d1:
9b:ad:33:30:c8:01:46:fc:15:4a:87:4c:2e:fd:1e:67:05:9c:
ef:eb:ac:47:3a:87:99:22:d9:d0:b3:96:ea:61:c9:05:c6:73:
79:ef:72:8e:3b:51:c3:a3:7c:a3:49:0e:27:f8:e0:95:a4:88:
94:50:8b:a0:7e:79:b9:f7:62:8f:6a:6e:1e:94:78:1b:e1:94:
39:69:09:9a:31:c1:e4:2a:e9:6d:70:7a:69:c3:04:73:bb:10:
92:db:40:c9:6b:e2:f5:c6:07:5c:a0:4f:63:3b:4e:a2:df:52:
5c:0a:fc:75:2e:87:38:60:86:98:bc:a4:0a:75:dd:03:47:10:
b7:b2:15:bb:23:36:db:d8:92:09:6c:c2:fc:a4:ec:67:d5:ef:
74:fd:2a:c7:6c:e6:4d:d9:e4:96:a8:c8:45:b9:65:fa:d5:fc:
6b:7b:e6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 22 08:43:38 2023 by rpki-client on console-ams.rpki-client.org