Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/uvUYkyXp1DlZU4pjOr5L8C447Yc.roa
File: uvUYkyXp1DlZU4pjOr5L8C447Yc.roa (raw, json)
Hash identifier: XwKqb3DaQkx/4DvlbXxXWooW3FDQ9BrBNamupqmr51o=
Subject key identifier: BA:F5:18:93:25:E9:D4:39:59:53:8A:63:3A:BE:4B:F0:2E:38:ED:87
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DD97FBA21037BFB2547EC4E7EA390
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/uvUYkyXp1DlZU4pjOr5L8C447Yc.roa
Signing time: Sun 01 Jan 2023 20:55:05 +0000
ROA not before: Sun 01 Jan 2023 20:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205610
IP address blocks: 2a0d:c7c7::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:d9:7f:ba:21:03:7b:fb:25:47:ec:4e:7e:a3:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baf5189325e9d43959538a633abe4bf02e38ed87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d6:c8:59:e5:66:33:b7:b2:8b:6e:00:65:e9:
9a:5e:89:5e:67:4f:0b:4c:fd:c8:2e:66:66:c8:8e:
5d:54:c9:85:24:d5:5b:18:c5:0d:ab:a5:4f:96:92:
ff:05:23:a2:c7:c0:11:4a:65:ab:27:94:96:bc:01:
69:da:11:e3:6f:30:9a:66:7f:b9:34:1a:15:3d:36:
24:38:92:ed:92:86:83:fe:14:b6:d8:ae:49:e2:cb:
82:61:a2:be:23:02:b9:7a:25:54:95:f0:f0:94:70:
66:84:c0:9b:14:f1:98:09:9a:d8:09:d0:d1:bd:38:
b9:bf:36:56:fa:ee:5a:f0:7b:e7:85:cb:c1:be:bc:
41:ab:75:dc:b1:85:f7:31:30:95:be:71:d2:35:46:
a3:d6:f0:4e:97:91:ff:05:c7:24:f0:c2:b1:c6:68:
e2:da:72:59:d9:db:05:cb:d0:a9:24:db:50:3f:a6:
62:bb:a8:f8:e2:89:42:65:6d:9d:25:ec:ab:c4:98:
a9:0d:bd:2f:5b:b4:d7:53:aa:45:d1:fd:1f:ef:84:
39:65:39:ae:e6:eb:52:e0:62:d5:09:06:73:2c:c3:
7a:8d:83:a8:c8:cf:60:6e:10:e5:f1:be:fd:eb:da:
8e:c8:74:0f:eb:5d:ef:db:07:90:b0:92:30:31:03:
b0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F5:18:93:25:E9:D4:39:59:53:8A:63:3A:BE:4B:F0:2E:38:ED:87
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/uvUYkyXp1DlZU4pjOr5L8C447Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:c7c7::/32
Signature Algorithm: sha256WithRSAEncryption
19:af:0a:cc:af:77:41:62:db:ed:f3:a4:48:5e:7f:2c:2c:06:
9e:fe:7c:8f:1e:b6:00:ae:6f:9f:12:ba:79:43:2e:8c:50:01:
e8:a6:17:50:d3:36:4e:b9:cd:ef:e3:9a:c1:a6:4d:9e:f1:38:
d4:23:4d:4a:68:51:54:d0:72:7d:f7:c3:9a:71:c5:a8:e3:56:
01:f2:75:54:ba:e3:1e:ad:6b:da:97:87:de:a7:c2:91:8a:a2:
d8:8a:4c:25:ca:9c:af:d1:43:86:23:bd:e6:46:41:6f:54:3e:
bb:f7:5d:41:11:20:3c:54:17:c2:2c:c4:b5:f5:f8:76:b8:27:
37:0b:87:32:14:7f:bd:7f:ca:ed:ad:0a:34:93:59:6e:e6:3b:
1a:32:b5:5f:6d:a7:5a:04:ea:eb:ba:e2:77:8d:12:64:5a:6d:
4c:8e:eb:5f:3e:24:26:d5:e0:a9:e0:7a:85:a3:58:78:8e:ad:
43:0b:b7:89:ff:f6:8e:64:59:b7:a8:b2:dd:aa:56:71:f9:61:
7e:5d:29:15:93:ad:3e:4e:cd:4c:ab:e9:72:59:d5:11:8c:b6:
ea:2e:16:85:bc:55:5d:d4:4b:a6:3a:e3:69:5b:b1:e7:78:f8:
31:d0:1a:62:d4:d2:ae:ea:1d:bb:cb:ac:7f:0c:26:ea:8c:41:
c5:39:de:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:34 2024 by rpki-client on console-fra.rpki-client.org