Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/eKaF6sHYBQTh3N8e0PKWD350O_M.roa
File: eKaF6sHYBQTh3N8e0PKWD350O_M.roa (raw, json)
Hash identifier: CEPA4p0YuvY6uPbmoi3jza+lFbrflPEoLR97YzCXzu0=
Subject key identifier: 78:A6:85:EA:C1:D8:05:04:E1:DC:DF:1E:D0:F2:96:0F:7E:74:3B:F3
Certificate issuer: /CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Certificate serial: 01856FA70D7686C0BD787EAF5DF737A91C10
Authority key identifier: 10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/eKaF6sHYBQTh3N8e0PKWD350O_M.roa
Signing time: Sun 01 Jan 2023 23:24:56 +0000
ROA not before: Sun 01 Jan 2023 23:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0a:4a40:10::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:0d:76:86:c0:bd:78:7e:af:5d:f7:37:a9:1c:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Validity
Not Before: Jan 1 23:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78a685eac1d80504e1dcdf1ed0f2960f7e743bf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:d4:5a:7d:d5:90:e2:53:d5:c1:3b:aa:45:
aa:1f:5c:6b:1c:9c:cf:40:fe:36:3d:37:31:8e:e0:
63:a4:1d:cb:37:a9:6f:ac:68:d5:46:39:09:95:3f:
d4:76:44:96:f8:6c:4b:22:d9:29:bd:ff:1f:c4:40:
48:2a:30:ac:5e:31:20:a5:2f:77:69:26:a3:21:ea:
83:13:6f:d5:3e:1d:eb:39:30:a3:8f:5c:0d:bb:d3:
57:e1:ef:ea:d5:b6:7f:73:93:9b:b5:ae:46:7c:22:
db:64:5d:6a:bd:5c:3e:97:42:11:66:f5:99:5e:43:
6d:84:3d:04:0d:5b:4d:4a:a5:e8:f5:23:a1:49:20:
9e:43:92:1a:6c:f2:1b:15:91:de:8e:0e:b7:22:6f:
f8:95:d7:87:0b:78:a0:a4:47:30:3e:f2:15:9e:68:
e7:c0:61:45:80:b5:94:1c:92:e7:50:49:58:fc:e9:
e9:bd:bc:eb:04:11:58:51:83:d5:4f:ef:5e:88:ef:
df:86:1d:40:bf:b6:6f:7f:54:97:c5:93:c1:dd:e5:
df:a8:bc:10:17:54:7c:d9:52:b7:37:94:30:77:a0:
40:e6:55:57:d7:60:32:98:84:14:5d:6d:40:18:71:
89:8d:b3:1d:98:ba:03:a7:b1:6a:a1:a6:6b:c3:3e:
d2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A6:85:EA:C1:D8:05:04:E1:DC:DF:1E:D0:F2:96:0F:7E:74:3B:F3
X509v3 Authority Key Identifier:
keyid:10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/eKaF6sHYBQTh3N8e0PKWD350O_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/EHc_MtPLThPkPxCj3EIvHzJxv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4a40:10::/48
Signature Algorithm: sha256WithRSAEncryption
81:06:8b:c1:32:4c:18:10:e5:b3:fc:b4:bd:59:0c:83:76:f9:
60:13:26:49:e1:20:02:88:06:cf:e5:27:8c:3f:be:5d:25:6c:
3f:7c:f9:1d:c0:a4:a4:42:1a:90:c4:21:4f:27:65:8e:85:e2:
98:5f:2c:0c:66:de:e3:2a:16:a3:9a:dc:1f:29:70:11:84:e6:
7b:f9:b0:13:34:d1:88:84:1b:9f:81:85:b3:08:a5:64:3a:bb:
56:f6:b4:b9:3b:e9:63:a4:df:0c:35:ba:71:f4:1f:79:ff:cf:
75:ee:7e:23:98:7c:e5:14:eb:2c:c2:ce:ad:55:64:f5:af:bf:
14:16:8c:ae:23:b2:c1:22:a4:73:46:ca:ab:81:74:38:bb:dc:
be:be:f1:e5:48:03:19:9e:33:94:f3:37:88:18:f3:87:50:d7:
14:0c:a3:de:c1:7d:10:c2:b1:af:2c:fa:de:a3:7b:f6:e0:0b:
9d:cb:39:e8:4d:29:41:ef:50:c3:2e:81:63:14:d3:5d:16:b8:
a5:30:13:2a:04:ba:59:34:c4:3b:50:5d:c0:db:42:e3:a8:ba:
7c:8f:bb:6b:81:3b:52:65:f3:08:06:df:5a:9a:bb:70:30:4b:
29:fd:93:c1:1f:50:5f:02:8c:8a:f8:5c:3a:bd:00:91:53:d7:
d0:e4:5c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:25 2024 by rpki-client on console-fra.rpki-client.org