Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/nQsf3_f79csmXF_Tn2hsi1pciqc.roa
File: nQsf3_f79csmXF_Tn2hsi1pciqc.roa (raw, json)
Hash identifier: mVM21nX6zcq/OKneK/m/owkmPxdMtwOVGBS9/tKyj8g=
Subject key identifier: 9D:0B:1F:DF:F7:FB:F5:CB:26:5C:5F:D3:9F:68:6C:8B:5A:5C:8A:A7
Certificate issuer: /CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Certificate serial: 0188593AC9896B7E597E75545D4F2B165053
Authority key identifier: 1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/nQsf3_f79csmXF_Tn2hsi1pciqc.roa
Signing time: Fri 26 May 2023 18:03:24 +0000
ROA not before: Fri 26 May 2023 18:03:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13347
IP address blocks: 2a12:f3c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:59:3a:c9:89:6b:7e:59:7e:75:54:5d:4f:2b:16:50:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Validity
Not Before: May 26 18:03:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d0b1fdff7fbf5cb265c5fd39f686c8b5a5c8aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ce:27:a2:c1:1e:60:85:8d:e6:ab:55:ea:46:
04:4f:14:07:c4:7a:38:9d:a7:f8:32:fd:ea:c5:7d:
e3:9e:39:cc:80:88:35:57:75:22:a3:01:ae:dc:42:
f2:fc:fd:4a:d1:d3:9d:c9:72:bd:56:15:6a:4f:5f:
00:96:0f:2c:52:cf:13:74:35:b7:07:0a:84:a4:48:
9a:4c:34:e7:e2:6f:09:cb:23:c5:79:76:44:80:8f:
f9:1d:c8:9a:36:d2:63:28:04:05:92:b2:b4:3a:94:
b5:13:a7:20:c5:a6:5b:84:e6:ba:86:06:ed:91:ac:
f7:77:48:df:51:0b:1d:ad:f5:5e:00:f8:86:2a:f3:
b5:a8:e1:30:13:3e:68:ba:4c:96:1f:2a:e6:c9:55:
ef:71:99:63:00:fd:ff:2c:cc:de:74:cb:d4:74:7f:
0c:88:c9:eb:c7:af:59:00:ba:80:ee:47:89:56:b6:
f0:90:91:fb:fb:42:43:c4:43:a5:29:cc:39:ae:43:
ff:23:38:84:8a:60:76:e0:1d:aa:27:25:c1:9b:d2:
1c:24:92:3c:16:bb:9c:82:5e:4e:ae:1b:4c:89:ab:
ca:35:ed:8c:22:3a:02:a5:07:6e:71:ab:04:1b:6b:
12:1c:a7:99:4e:63:fe:b3:11:f8:1a:4a:b4:d1:38:
cd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0B:1F:DF:F7:FB:F5:CB:26:5C:5F:D3:9F:68:6C:8B:5A:5C:8A:A7
X509v3 Authority Key Identifier:
keyid:1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/nQsf3_f79csmXF_Tn2hsi1pciqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/GpFU4cVXiw_virt3n4EX5k6ITRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f3c0::/29
Signature Algorithm: sha256WithRSAEncryption
10:75:6f:80:bb:fd:d1:34:41:ee:42:89:7e:5b:6c:97:73:ba:
08:07:4c:2b:8b:89:5a:cf:2e:a7:8c:0a:99:09:46:78:82:ff:
06:36:58:55:31:81:2a:aa:8b:bc:1f:bd:f9:76:01:99:73:2b:
6d:e6:3e:c9:e6:59:97:bb:63:aa:64:83:93:3b:95:d5:a4:e3:
dd:65:a4:0f:76:83:83:5a:c7:8a:de:6e:f3:ea:c0:3e:ae:85:
b1:26:cd:88:3e:99:6c:05:a2:7d:75:39:dd:eb:2a:01:a8:51:
3f:09:ba:22:48:1d:cd:e4:6a:ec:8b:af:65:6d:2d:9e:c1:ee:
c0:9a:c6:8f:d7:9e:9c:d2:b7:bf:c4:c3:f6:5b:5e:92:01:2f:
f8:d0:7c:23:7a:27:76:f2:b3:f5:f7:80:6b:8f:57:a2:11:71:
77:bc:51:7a:6c:3a:f2:e8:fd:71:77:38:74:2b:be:b5:35:24:
8e:19:6d:b3:1a:07:48:ff:a8:d0:b5:87:c6:c2:ab:9c:82:00:
86:95:4a:9e:71:a9:99:e5:27:06:8d:e8:a0:a9:a3:94:45:77:
76:f6:64:83:82:b4:9a:33:63:0a:94:d3:0e:33:d0:fe:e3:5c:
7f:33:0c:9c:ae:e5:4a:dd:53:71:04:e2:3b:ee:44:33:2b:05:
dd:92:65:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:55 2024 by rpki-client on console-fra.rpki-client.org