Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/xP1efnYdG7HWbqBrGZWequLELvU.roa
File: xP1efnYdG7HWbqBrGZWequLELvU.roa (raw, json)
Hash identifier: vfo9UYPyP8bcIeLj81XEzSQwyw3fpS4+vp5BOEJHFI4=
Subject key identifier: C4:FD:5E:7E:76:1D:1B:B1:D6:6E:A0:6B:19:95:9E:AA:E2:C4:2E:F5
Certificate issuer: /CN=a52fc60d36e28bb8df145c84acab19cfa53b025a
Certificate serial: 01865F4846A808ED20CCE5229FAB77D49590
Authority key identifier: A5:2F:C6:0D:36:E2:8B:B8:DF:14:5C:84:AC:AB:19:CF:A5:3B:02:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS_GDTbii7jfFFyErKsZz6U7Alo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/xP1efnYdG7HWbqBrGZWequLELvU.roa
Signing time: Fri 17 Feb 2023 12:10:17 +0000
ROA not before: Fri 17 Feb 2023 12:10:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1921
IP address blocks: 2001:67c:10b8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:48:46:a8:08:ed:20:cc:e5:22:9f:ab:77:d4:95:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a52fc60d36e28bb8df145c84acab19cfa53b025a
Validity
Not Before: Feb 17 12:10:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4fd5e7e761d1bb1d66ea06b19959eaae2c42ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:de:22:23:ea:0a:23:5f:25:29:ed:d4:2c:1c:
ce:b5:e6:35:e7:6c:07:af:e1:db:dd:b5:29:fd:af:
0d:a6:1d:dd:13:2f:a3:73:75:b5:a6:ce:7b:8f:42:
b2:d3:2d:5c:62:fd:c3:46:72:98:44:25:b7:fb:b0:
c3:c6:6b:ea:26:22:2b:6f:1d:c7:a0:3b:05:82:29:
32:04:b6:d0:94:70:c1:ee:4a:3a:b6:94:8e:77:e7:
76:e3:d5:72:17:4f:26:f6:0d:9b:65:02:86:37:62:
02:f6:f1:c7:6d:85:c9:fb:d5:7d:37:85:dd:d6:41:
f9:de:44:a7:07:c6:f1:0c:fd:b1:8e:38:a1:52:1c:
ce:54:96:22:d2:26:68:80:24:70:79:91:86:b0:6a:
fb:28:d5:18:8a:88:ed:c7:2d:99:bb:41:db:8f:16:
17:b6:d8:03:08:0d:18:f0:30:9d:c2:4d:d7:f9:3a:
5a:94:23:81:0b:59:bc:1e:38:c7:a6:c2:a0:d5:37:
c1:dc:1f:4f:a3:f7:58:61:46:9c:79:aa:94:c4:3d:
c7:63:be:63:eb:83:8b:b7:03:08:1a:34:06:04:ff:
cd:c2:c3:fc:97:17:b5:46:45:16:fa:2f:14:d8:79:
d0:06:b0:fe:6d:f2:c7:ac:ff:43:6b:a7:f7:1d:49:
87:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:FD:5E:7E:76:1D:1B:B1:D6:6E:A0:6B:19:95:9E:AA:E2:C4:2E:F5
X509v3 Authority Key Identifier:
keyid:A5:2F:C6:0D:36:E2:8B:B8:DF:14:5C:84:AC:AB:19:CF:A5:3B:02:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS_GDTbii7jfFFyErKsZz6U7Alo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/xP1efnYdG7HWbqBrGZWequLELvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/pS_GDTbii7jfFFyErKsZz6U7Alo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10b8::/48
Signature Algorithm: sha256WithRSAEncryption
2f:e7:93:e3:fe:2b:e8:1f:99:40:50:6b:e0:a6:ca:62:e9:ba:
35:c6:b0:f3:ac:07:98:86:4e:cd:5d:b0:9d:e7:5c:8d:cb:f1:
49:d4:15:c4:ac:fc:84:9e:7f:82:85:38:c5:2b:3f:e9:21:f1:
02:04:de:52:12:ea:81:c9:39:39:4c:1c:df:bb:16:e0:47:15:
df:d2:6b:ff:02:26:a1:ef:ff:7e:38:22:ae:4a:d4:bc:c2:b7:
32:2b:19:8f:5e:e8:54:aa:d4:85:db:84:60:23:8f:c2:fa:fb:
00:88:50:37:ec:8c:2b:31:c2:94:93:14:0f:ab:6a:a8:e3:eb:
b6:7e:85:6f:f2:7b:75:1b:5b:17:24:cb:e4:7f:54:0a:de:15:
4e:ac:09:4f:a3:6b:ff:de:a0:5e:46:e2:f4:f3:9d:5e:5d:02:
da:14:51:4e:04:bd:2f:06:5d:33:09:96:28:89:60:97:84:81:
fa:99:c0:9d:63:42:e4:26:7d:93:63:1e:f8:7b:11:d5:f8:f8:
5b:52:65:24:05:bd:e8:cf:79:0c:ef:c0:a7:81:cc:37:0d:b5:
13:97:d8:aa:b7:c1:3c:33:2a:48:86:aa:91:09:25:49:65:7b:
01:17:c5:91:09:11:30:e6:a9:de:24:bc:48:c8:1f:60:53:ae:
e5:21:40:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org