Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/MHPNCcxPEALMdZc__6p0e-99SLE.roa
File: MHPNCcxPEALMdZc__6p0e-99SLE.roa (raw, json)
Hash identifier: zM6LhzmGkR/+JAKDp1LYDNJtMW8hsiyy0RoR1oGP8nk=
Subject key identifier: 30:73:CD:09:CC:4F:10:02:CC:75:97:3F:FF:AA:74:7B:EF:7D:48:B1
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C3250D29FFCFE9FA8317BB2C24D40D
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/MHPNCcxPEALMdZc__6p0e-99SLE.roa
Signing time: Mon 02 Jan 2023 09:14:52 +0000
ROA not before: Mon 02 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208958
IP address blocks: 2a06:e881:6500::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:25:0d:29:ff:cf:e9:fa:83:17:bb:2c:24:d4:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3073cd09cc4f1002cc75973fffaa747bef7d48b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:02:f8:1b:e2:b4:cb:7d:2e:0e:a4:ba:41:92:
65:a1:4a:68:58:16:e2:31:1d:3f:13:dd:a7:93:69:
6b:b3:10:bb:9d:2e:30:a4:8c:55:18:38:cc:58:ff:
17:be:c2:df:96:57:4b:82:10:29:8d:d3:72:e9:5a:
b5:ab:d9:f9:15:e2:68:67:d2:81:a2:19:7e:94:0f:
1e:0a:2b:26:e2:be:c7:24:3d:9e:2c:48:5b:92:ca:
a9:bb:61:84:63:83:08:c0:7f:8f:78:91:6d:a3:55:
7d:61:69:09:ff:80:d8:7a:d2:22:12:e1:49:1f:28:
99:80:c1:2c:1e:f0:04:e9:d4:29:6b:ae:4c:ce:fa:
f1:50:65:3d:fe:f9:0e:53:b4:d5:99:f8:d8:01:94:
ef:88:10:81:7d:16:be:ea:eb:b4:dd:4e:d9:5f:62:
ca:c9:57:12:10:f6:d1:ef:f4:c1:6a:38:a3:8f:6a:
13:84:c0:7e:52:17:c7:e2:b3:0b:ff:b3:9a:e9:59:
35:29:48:b4:dd:2e:51:32:c0:71:95:17:00:e7:c7:
de:32:80:08:9d:48:25:e7:ff:92:98:b0:bc:b0:02:
ec:7e:c8:2e:95:82:6a:c9:1c:b6:02:14:81:87:ad:
c5:a9:eb:7a:6f:e7:7a:8f:17:63:4c:61:2c:8c:30:
27:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:73:CD:09:CC:4F:10:02:CC:75:97:3F:FF:AA:74:7B:EF:7D:48:B1
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/MHPNCcxPEALMdZc__6p0e-99SLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:6500::/44
Signature Algorithm: sha256WithRSAEncryption
bf:a6:71:75:44:73:bd:ee:dd:dc:f8:83:20:79:1c:ad:50:b4:
ee:66:66:4c:dd:d0:9a:1c:95:74:63:79:98:e3:83:1c:82:8c:
e2:30:48:2e:2a:53:8d:bf:ac:22:01:d6:fd:a8:f5:b1:01:5e:
31:0d:47:bf:85:ed:41:14:22:2d:84:95:48:ea:bc:d2:a5:f0:
26:a7:63:bd:68:87:03:48:71:47:3b:43:23:dc:37:d2:8b:86:
13:b7:dc:ff:96:38:57:22:e6:59:c4:e2:16:75:43:64:46:bf:
1c:45:e3:1a:d5:11:fb:ba:58:28:3c:61:24:2a:6b:35:cf:b9:
e0:67:01:9e:ec:0b:d1:68:ff:96:0e:fd:3e:c8:07:1c:74:f6:
4c:68:3e:9c:e9:fc:5b:55:9f:df:f8:20:d9:82:ba:58:a0:ac:
5e:db:7a:66:17:49:f4:f4:a2:b7:0d:0c:bf:3b:0e:35:2a:b6:
92:22:e8:4d:23:65:2a:b6:96:c4:db:64:2d:b7:28:3a:cd:84:
c7:26:10:78:d5:70:38:4a:2d:25:e4:e9:ce:ff:17:3f:de:7d:
ab:40:21:ad:9b:01:b0:05:97:13:e6:f5:a6:bc:02:c3:60:ef:
31:6f:af:1b:86:ad:ab:c4:60:17:7c:08:f6:23:dd:b1:27:b9:
3a:71:bf:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 19 05:14:54 2023 by rpki-client on console-ams.rpki-client.org