Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/9xMS2qBTFOh16jsPyEV2uzsqvEQ.roa
File: 9xMS2qBTFOh16jsPyEV2uzsqvEQ.roa (raw, json)
Hash identifier: kddmjLGzLZJktXtiNMddiNFSg63rZiwJrnGLj1CEhE4=
Subject key identifier: F7:13:12:DA:A0:53:14:E8:75:EA:3B:0F:C8:45:76:BB:3B:2A:BC:44
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 01857371843BA8656E3BE25DEB9551CC3902
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/9xMS2qBTFOh16jsPyEV2uzsqvEQ.roa
Signing time: Mon 02 Jan 2023 17:04:57 +0000
ROA not before: Mon 02 Jan 2023 17:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39840
IP address blocks: 2001:67c:2554::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:84:3b:a8:65:6e:3b:e2:5d:eb:95:51:cc:39:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 2 17:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f71312daa05314e875ea3b0fc84576bb3b2abc44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e6:4e:2a:ab:bd:80:48:54:20:9a:45:11:e0:
a5:ec:f1:1a:65:c4:e3:73:69:df:80:f0:a1:3d:c6:
16:dd:d7:49:30:2d:a0:5c:51:ad:9d:cf:5f:0e:30:
2d:4a:f8:99:80:ed:fe:a6:5b:6c:55:09:8e:5c:8a:
80:fb:e9:a4:a6:90:7d:b7:d6:00:61:2e:7c:0a:88:
9a:64:4c:e1:8d:2c:2d:15:60:7e:69:c2:69:2d:c6:
0f:a3:1b:85:ba:0f:57:f8:f6:8f:33:93:a1:63:af:
a9:79:e6:62:5d:65:30:1b:f3:cc:99:2a:ee:d5:ec:
ab:1f:c0:3c:50:76:39:10:82:41:a3:cd:e5:aa:d5:
78:2c:40:4a:04:19:b7:f3:6e:38:36:9d:d7:35:6e:
e1:91:5b:e9:81:24:b0:e0:6b:0a:a2:9f:42:42:23:
77:ce:8c:57:11:a0:34:89:f9:38:ad:11:7f:c9:12:
a8:c3:4c:9d:f7:f5:96:fb:cf:a3:ad:20:02:95:4f:
34:ed:8c:de:1a:b7:5c:3f:36:dd:8d:7b:ed:1f:89:
15:45:fc:30:a9:19:df:6f:81:19:75:79:7f:78:ea:
fd:41:94:fc:d5:87:f8:0e:56:5d:c7:5b:d1:ac:2f:
2c:07:94:6d:05:08:6f:2d:18:bc:0e:fc:a5:eb:5d:
66:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:13:12:DA:A0:53:14:E8:75:EA:3B:0F:C8:45:76:BB:3B:2A:BC:44
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/9xMS2qBTFOh16jsPyEV2uzsqvEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2554::/48
Signature Algorithm: sha256WithRSAEncryption
2c:50:78:d8:b5:9f:ac:42:4e:c3:5f:c0:18:b4:b5:b5:45:37:
b8:1d:d2:5c:03:f5:80:0c:d4:2e:ea:19:4e:85:e7:28:de:3a:
45:c3:db:0b:13:4f:b5:4a:75:75:91:ad:76:07:85:42:ef:76:
60:28:a4:d2:af:9a:90:47:a9:ff:52:f9:dc:1b:54:18:c8:74:
48:b4:4d:a5:69:ab:ef:f5:3a:79:0f:37:21:a8:98:58:22:4f:
a7:84:db:b2:88:00:6b:c9:2e:dd:c5:4f:8c:d9:27:58:03:19:
82:ea:7f:b9:76:1f:5d:35:cb:7e:fd:96:a3:b8:5f:51:4c:8d:
f6:cf:dc:50:00:ca:f0:8b:4c:04:5b:11:a3:ff:4f:e3:21:ec:
49:b7:f1:f2:c2:b4:35:5c:e1:8d:92:e9:bd:b3:9a:42:6a:ab:
8c:ac:01:18:e0:01:e9:7a:ba:aa:2d:e8:a3:dc:a2:bb:35:1d:
fb:05:e6:e0:68:e2:f6:1c:8e:b5:de:52:83:55:95:35:dc:80:
fc:22:70:42:fc:c7:01:3d:05:13:e3:cf:1c:14:c9:84:71:6c:
f8:ea:e7:52:5c:96:f7:34:70:df:0d:ac:5b:67:45:9a:8e:8c:
a4:03:1b:a4:b5:25:0d:72:51:93:71:7f:7b:fb:e1:d0:f2:31:
aa:8d:87:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:10 2024 by rpki-client on console-fra.rpki-client.org