Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/F9l4lYqsjwKOJMlelh9Kc8nwqGc.roa
File: F9l4lYqsjwKOJMlelh9Kc8nwqGc.roa (raw, json)
Hash identifier: aZuyYBkvmtJBvpdN2cnd8A+yr5RM/WM2UuQfbYOjiNg=
Subject key identifier: 17:D9:78:95:8A:AC:8F:02:8E:24:C9:5E:96:1F:4A:73:C9:F0:A8:67
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DD9D8957A16690A085D3F53A4DF4E
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/F9l4lYqsjwKOJMlelh9Kc8nwqGc.roa
Signing time: Sun 01 Jan 2023 20:55:05 +0000
ROA not before: Sun 01 Jan 2023 20:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205758
IP address blocks: 2a09:7:2006::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:d9:d8:95:7a:16:69:0a:08:5d:3f:53:a4:df:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17d978958aac8f028e24c95e961f4a73c9f0a867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8f:8b:3e:c3:2b:3c:46:2f:aa:be:fb:5f:91:
a3:7c:71:d0:8e:21:eb:34:0a:95:0a:69:a4:59:b8:
6f:05:de:e7:a0:cc:6c:a6:0f:b9:07:ea:33:e2:49:
e5:a3:c6:b3:ff:9b:33:ee:d2:11:d9:3b:46:ec:ac:
52:e4:91:fb:ab:d1:66:2b:e4:f0:3e:90:fd:4f:4c:
8e:91:ec:72:5d:57:92:06:53:79:0f:56:c4:39:0e:
a2:da:fe:30:85:13:d4:62:cf:3c:2a:4a:0f:20:1c:
3e:b5:bd:6c:a3:a6:62:bb:a5:60:bf:a7:c7:84:00:
5e:cf:c9:4b:24:57:17:e1:da:91:02:39:12:3f:0c:
e9:7e:d5:99:ef:7c:bb:4f:07:89:5e:8f:49:18:29:
7e:22:db:93:5b:6e:9d:31:f8:78:4d:c0:bb:b6:b4:
cd:15:7d:6e:04:e3:de:da:2f:c8:82:44:ce:b7:47:
44:02:75:e9:bf:b5:cf:93:4d:ff:8d:0a:b8:a3:52:
25:eb:76:15:21:98:59:85:6d:81:b0:e5:28:78:c0:
9d:01:5b:a9:02:ff:b6:83:d0:30:61:f2:35:71:ce:
c9:ce:0e:8c:e9:8f:7d:30:72:56:13:5c:9e:e4:bf:
a5:84:cd:bb:35:a5:9e:43:a1:26:b2:3f:8e:c2:a1:
65:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D9:78:95:8A:AC:8F:02:8E:24:C9:5E:96:1F:4A:73:C9:F0:A8:67
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/F9l4lYqsjwKOJMlelh9Kc8nwqGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:2006::/48
Signature Algorithm: sha256WithRSAEncryption
2e:90:04:81:95:07:01:84:b3:56:f4:30:1d:d4:b7:49:c6:3b:
f9:97:be:85:62:1f:fb:ea:be:24:ee:82:15:e2:7f:6c:ba:8e:
4b:39:a0:4f:b1:fc:86:0b:4f:25:20:51:46:db:d2:00:aa:50:
25:7a:3e:c1:70:72:0f:54:71:9f:c5:99:83:1e:13:ce:41:9b:
48:4c:d7:40:6d:7f:4b:5f:db:22:28:0b:56:84:e7:ec:05:f2:
07:4c:c4:32:ad:b0:62:ed:13:27:11:31:b4:f6:67:2d:fd:cb:
ed:58:10:6f:53:f3:0f:be:ed:a2:79:07:68:fd:d0:85:3c:98:
55:c5:90:df:d4:ef:cd:1e:99:1e:fa:d3:04:8a:97:cd:66:d3:
fe:47:b8:d4:47:03:cb:68:a4:13:3f:1c:24:77:5b:7f:f9:2b:
77:55:be:c6:0e:17:71:8d:cd:0f:87:ca:ad:14:59:89:f4:fe:
2e:5d:d7:1f:44:8d:ce:cb:c3:c7:15:81:c7:a2:b4:05:60:9c:
22:b9:f7:db:a8:9d:24:be:dc:ca:59:79:10:1e:45:87:af:ef:
54:11:a6:94:3b:75:eb:ee:30:47:b2:d5:1a:d0:0c:77:0a:b8:
91:b2:e4:45:0c:ba:d9:38:91:a5:5e:c8:08:e8:db:39:06:9f:
a4:f7:70:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:34 2024 by rpki-client on console-fra.rpki-client.org