Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/crpJuOgoKRQXDr9RXeUNauW4m0U.roa
File: crpJuOgoKRQXDr9RXeUNauW4m0U.roa (raw, json)
Hash identifier: eQu1RYgNSYsJWA9Q1mIN0DlYdd8BQXJfuUM8LjxHvu4=
Subject key identifier: 72:BA:49:B8:E8:28:29:14:17:0E:BF:51:5D:E5:0D:6A:E5:B8:9B:45
Certificate issuer: /CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Certificate serial: 01856FA70E943435DB88A3EFDC85DD599F78
Authority key identifier: 10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/crpJuOgoKRQXDr9RXeUNauW4m0U.roa
Signing time: Sun 01 Jan 2023 23:24:57 +0000
ROA not before: Sun 01 Jan 2023 23:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a0a:4a40:10::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:0e:94:34:35:db:88:a3:ef:dc:85:dd:59:9f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Validity
Not Before: Jan 1 23:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72ba49b8e8282914170ebf515de50d6ae5b89b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d4:f6:d9:bb:ba:6d:00:93:d4:80:2f:97:dc:
07:b9:41:0a:cf:61:f2:81:87:59:01:50:e4:6f:8a:
78:8d:92:a5:3f:cb:fe:8c:98:cc:a5:99:fa:11:01:
c0:e4:25:4a:69:ef:48:e2:8b:87:e4:3e:dc:97:41:
34:f0:a5:ac:9d:22:a4:ce:b9:24:69:83:e9:9d:1f:
ec:c8:78:bd:9d:97:5d:ec:26:f3:6a:35:ce:ed:94:
e7:73:0d:b5:71:27:90:2a:34:5d:a3:60:75:87:fa:
be:bc:79:82:03:2c:31:95:fe:07:f0:31:5e:bd:3a:
d0:db:5a:29:e4:14:b5:1d:39:f7:81:53:8e:7b:45:
4a:92:d4:65:c6:b2:13:22:9b:a0:80:dc:0a:09:11:
57:a9:a4:bf:f0:08:4f:8e:bb:bd:57:c3:58:1d:53:
af:7b:61:77:4f:24:41:25:f6:47:d8:13:25:a9:9c:
a8:c4:5b:b2:33:3f:6d:1d:34:e0:b1:54:68:60:5b:
74:42:9a:f2:63:db:35:25:bd:74:67:7f:da:96:1c:
a7:af:80:27:b6:26:a8:2e:59:f9:ed:4d:03:04:b7:
b5:7a:d2:34:10:b1:74:f5:fa:87:8e:47:05:03:87:
6e:32:19:ad:60:27:26:17:30:17:a3:35:df:f8:0e:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BA:49:B8:E8:28:29:14:17:0E:BF:51:5D:E5:0D:6A:E5:B8:9B:45
X509v3 Authority Key Identifier:
keyid:10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/crpJuOgoKRQXDr9RXeUNauW4m0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/EHc_MtPLThPkPxCj3EIvHzJxv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4a40:10::/48
Signature Algorithm: sha256WithRSAEncryption
55:c3:f6:c0:5d:56:d8:be:e2:8a:e2:b7:9e:26:47:74:1d:09:
c3:c1:ce:ec:ad:2a:c8:2c:39:41:3e:b5:df:5c:69:c2:f3:4e:
60:62:6d:5d:ea:21:85:49:7d:40:31:10:5b:fa:36:d7:ee:04:
9c:d2:b1:03:0a:18:ad:57:5d:0c:ee:63:ab:a3:2a:36:6c:8f:
ab:ae:d1:1d:59:6b:1d:b7:31:c0:c5:93:74:54:b0:37:43:0b:
79:e6:61:55:cb:4a:ee:e9:e1:d4:97:21:e4:8a:c0:e4:49:de:
61:59:3b:ac:a2:bf:79:b1:f6:df:74:b8:e6:2a:ce:b4:d7:0a:
d7:08:e3:14:5b:a9:59:5e:63:9f:1d:18:ab:03:57:fc:55:c6:
09:32:ec:60:00:6d:f2:c0:ba:3c:70:67:c0:4d:57:6b:85:45:
f1:33:73:52:0b:ef:2f:02:3a:dd:0b:37:4c:18:44:74:a2:f0:
fd:6c:28:67:47:f9:6b:1a:3d:d0:90:34:23:68:78:24:8e:1c:
7e:dd:9b:66:4b:e3:1c:b8:5d:9c:db:be:43:b5:bc:a1:20:4e:
b7:11:b1:b7:2c:e7:ef:c5:dc:7d:6c:51:6a:65:db:f7:60:35:
f3:26:af:ab:cc:17:9e:48:7a:ec:eb:e8:3f:9a:7f:85:45:65:
b0:d9:07:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:25 2024 by rpki-client on console-ams.rpki-client.org