Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/AGc68KAO-rny8m8dsKcQV787XWg.roa
File: AGc68KAO-rny8m8dsKcQV787XWg.roa (raw, json)
Hash identifier: fPaaI02tcq782p08fnxHjAX9ZOT9q0QKx0ZasaKupXs=
Subject key identifier: 00:67:3A:F0:A0:0E:FA:B9:F2:F2:6F:1D:B0:A7:10:57:BF:3B:5D:68
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C323C553EB4D747DF7DC6AD71996E7
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/AGc68KAO-rny8m8dsKcQV787XWg.roa
Signing time: Mon 02 Jan 2023 09:14:52 +0000
ROA not before: Mon 02 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208340
IP address blocks: 2a06:e881:5608::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:23:c5:53:eb:4d:74:7d:f7:dc:6a:d7:19:96:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00673af0a00efab9f2f26f1db0a71057bf3b5d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e4:aa:ca:88:b6:56:3a:ac:ce:42:39:e7:79:
b2:ca:61:d0:94:ef:5f:6b:33:da:49:f9:f5:fc:5f:
23:cb:18:42:33:94:6e:5b:42:44:02:a9:c0:a8:24:
1b:4d:56:32:2b:9a:8b:73:08:d6:50:5a:6d:de:9d:
88:70:5f:69:8f:52:71:9c:06:84:56:c9:2e:fe:ed:
fd:82:ae:29:c3:83:42:aa:1a:f8:b1:38:54:26:96:
4f:a9:72:95:1f:9e:aa:0e:92:6e:53:ed:bf:64:3e:
1c:08:cb:e4:c9:00:b8:03:60:35:69:0d:39:5f:7f:
70:34:cd:fb:3a:79:10:09:b8:17:f9:74:82:92:30:
59:17:38:eb:f4:9f:8f:79:94:fe:26:9d:9e:d9:ef:
93:e1:a4:44:c8:08:d5:fe:86:6b:e1:46:90:d5:60:
f6:d1:13:0d:1c:08:7b:4b:cf:e8:9e:32:d1:f8:d5:
fb:9d:63:4a:18:a0:e3:91:d5:71:32:da:9b:54:c0:
d5:a9:08:4f:b2:0c:b8:7f:40:e0:4a:c4:38:6b:f0:
fd:21:bd:52:26:fc:55:4a:86:0c:eb:ad:03:08:82:
91:b6:19:fd:ec:8c:17:8f:53:e9:6d:d2:70:3b:a3:
3c:a1:26:59:28:c3:ad:8e:bf:c2:2a:1e:30:27:88:
ab:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:67:3A:F0:A0:0E:FA:B9:F2:F2:6F:1D:B0:A7:10:57:BF:3B:5D:68
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/AGc68KAO-rny8m8dsKcQV787XWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:5608::/48
Signature Algorithm: sha256WithRSAEncryption
62:f0:5f:f3:f2:91:5b:4c:88:c5:0e:ce:75:db:80:73:0c:b8:
24:c8:e9:b4:3e:7c:da:65:c2:33:fb:a3:b9:b1:82:1d:28:0e:
7a:6c:c5:43:01:ae:b2:c7:3b:6e:bb:61:29:ee:53:9e:93:c5:
9f:68:f7:f6:b1:7b:1c:5f:a8:3c:a7:b5:e3:1e:f1:a0:fc:a6:
11:8a:f9:f4:88:15:9e:9a:1b:6c:0e:19:7f:37:9d:7f:c3:f8:
f3:3d:15:85:12:b4:5b:5c:ef:01:7b:7f:92:ef:05:1b:23:9c:
91:1f:7a:37:3d:07:26:a7:13:b1:1f:09:d7:20:f3:22:ec:fd:
41:43:ff:cd:5b:ce:ad:0f:29:1f:bc:61:57:36:74:7c:4b:8a:
63:26:7f:62:fa:d6:09:6c:f2:66:54:f3:d3:8e:6e:18:a2:4b:
08:c3:8c:be:0a:a9:6f:b1:61:2b:ee:18:f5:e4:85:9e:f2:31:
dd:5d:36:75:c4:db:c6:dc:b1:84:b7:5b:c5:75:d3:4d:6e:c4:
ce:41:30:d2:52:fa:9b:20:d0:43:36:09:94:60:12:5e:25:5d:
53:6a:e8:e7:47:85:dd:a6:6b:9e:b8:a3:87:79:a9:5c:f1:9d:
e9:51:f1:9b:12:db:a7:72:f4:f4:8a:51:47:41:b5:71:a0:d6:
ad:2f:a7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:16 2024 by rpki-client on console-fra.rpki-client.org