Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/mGZgYc2-vp5wdbzBDtdmzMZrxL0.roa
File: mGZgYc2-vp5wdbzBDtdmzMZrxL0.roa (raw, json)
Hash identifier: blYjLGgeMaOPkrzQZw2rlxE1nCTXBD1xvkQJMr+2Jo4=
Subject key identifier: 98:66:60:61:CD:BE:BE:9E:70:75:BC:C1:0E:D7:66:CC:C6:6B:C4:BD
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 018571BA07008494648E6C170B97A468142B
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/mGZgYc2-vp5wdbzBDtdmzMZrxL0.roa
Signing time: Mon 02 Jan 2023 09:04:54 +0000
ROA not before: Mon 02 Jan 2023 09:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397881
IP address blocks: 2a0f:300::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:07:00:84:94:64:8e:6c:17:0b:97:a4:68:14:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Jan 2 09:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98666061cdbebe9e7075bcc10ed766ccc66bc4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:66:1b:c3:07:72:29:f8:c3:b9:05:23:0c:69:
4b:22:60:90:a0:a7:67:f5:ba:f7:de:21:df:64:58:
14:93:eb:d9:eb:ca:cf:2e:c0:4b:8a:22:1d:2f:3f:
ff:1e:13:d1:65:6a:ba:6c:b1:86:71:90:ed:d1:07:
f9:84:61:af:cc:18:59:8c:a1:60:0c:bb:b2:9c:4d:
ee:47:ce:1c:37:c1:8e:25:d0:ad:4a:c5:fc:1f:6e:
93:ad:53:1a:21:14:98:e7:8b:85:02:d0:44:cb:28:
26:4b:f8:23:81:16:c5:a5:d3:dc:d1:96:47:87:df:
f8:ec:87:1c:66:ec:48:64:5c:d1:a5:46:b4:03:4f:
84:55:e2:2a:e5:d3:f7:2d:63:9e:aa:44:0e:06:23:
90:b8:99:de:08:8b:d7:7b:c3:40:62:e9:b8:90:b7:
f0:ec:5d:a3:39:23:cd:28:ca:b6:99:ff:c0:58:3c:
c6:d9:33:f8:4a:b9:d9:97:9d:bf:8e:fb:fc:4e:81:
98:89:b1:a7:ba:38:99:bc:88:44:ba:3f:93:61:f6:
61:19:22:08:73:c6:c8:69:2c:44:87:15:53:5d:b3:
d6:c1:1a:31:cd:82:64:de:0a:85:b2:9c:ed:8a:0d:
0c:db:cd:6d:37:f4:b0:92:79:4f:ac:ac:e6:98:7c:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:66:60:61:CD:BE:BE:9E:70:75:BC:C1:0E:D7:66:CC:C6:6B:C4:BD
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/mGZgYc2-vp5wdbzBDtdmzMZrxL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:300::/32
Signature Algorithm: sha256WithRSAEncryption
7d:34:d3:b3:a2:f9:fc:8b:48:6b:5d:c4:6f:cd:aa:d7:2e:20:
f0:8c:02:19:50:f4:b4:cf:05:68:d2:a9:1e:9e:4e:eb:ac:54:
9c:3d:b3:3f:23:e1:77:a2:08:ea:8d:0b:b0:d7:32:cf:20:ff:
6e:a0:8f:92:f0:ef:89:2d:78:89:af:8f:aa:b8:98:31:43:34:
2b:7d:3b:bc:d0:06:f9:9b:30:b7:8d:ca:e9:8c:57:ad:52:94:
66:26:04:31:06:14:62:81:e0:6a:f6:ef:c4:01:e4:67:96:c7:
d7:5f:ab:30:e7:0d:b7:82:3e:62:28:ba:78:0f:63:32:f4:d1:
00:d1:07:da:5d:70:7b:3f:54:f8:db:5f:ee:a5:37:54:e1:a1:
8a:b5:1c:d3:ba:ac:4b:bf:29:28:04:1d:66:c4:ae:b9:3f:b4:
6e:17:ec:b3:40:d0:2f:0a:dd:1d:8e:bd:d5:e6:23:ca:dd:f8:
cd:06:7b:e5:44:5d:b1:05:42:36:e2:51:95:45:26:14:4b:ea:
59:13:de:2d:23:61:02:ec:98:db:8b:bc:a4:34:33:d1:ff:66:
17:89:35:5c:a4:53:05:6c:ed:54:65:de:92:b9:80:02:06:c6:
6e:82:a1:9a:66:48:cc:60:8e:81:22:82:9b:e8:6d:f1:09:e6:
0f:ef:79:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:40 2024 by rpki-client on console-ams.rpki-client.org