Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/bGVPBY7nbvlXfZExG--fSc8mrhc.roa
File: bGVPBY7nbvlXfZExG--fSc8mrhc.roa (raw, json)
Hash identifier: yME5HA3ehqibpiQFxzOlUbg+IJgANWyjg2sEl2w7n8Y=
Subject key identifier: 6C:65:4F:05:8E:E7:6E:F9:57:7D:91:31:1B:EF:9F:49:CF:26:AE:17
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C323665E94931C311DD42B8655D0A8
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/bGVPBY7nbvlXfZExG--fSc8mrhc.roa
Signing time: Mon 02 Jan 2023 09:14:52 +0000
ROA not before: Mon 02 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207755
IP address blocks: 2a06:e881:7108::/46 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:23:66:5e:94:93:1c:31:1d:d4:2b:86:55:d0:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c654f058ee76ef9577d91311bef9f49cf26ae17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:19:6a:ed:57:03:56:f9:2c:ef:03:d1:fe:1e:
e8:14:b8:c4:06:a4:66:dd:d9:39:2a:0e:be:d9:63:
91:be:63:a6:d5:59:87:d0:4b:c1:da:d0:8e:28:7c:
a6:90:35:78:e6:a4:d9:3a:b7:f2:5e:34:90:52:2e:
25:71:cf:7b:09:95:1c:3a:34:e7:d4:29:f6:52:d1:
67:53:8c:b0:44:a8:fb:0b:aa:b1:17:f6:dd:0f:10:
7f:f9:4e:9b:7b:05:e0:73:10:1c:dc:9e:70:f7:b8:
3e:3a:9f:47:dc:a7:c8:19:af:05:5f:dd:c6:0b:53:
f1:50:d1:be:6e:0e:10:bc:09:d5:05:9f:81:cf:7b:
0c:63:37:6d:4b:d8:b0:bd:f2:5d:b5:d6:92:93:f6:
62:38:75:eb:12:6a:bd:21:e0:13:ea:f9:f2:4c:d6:
b1:6f:78:fd:5d:83:0e:70:93:ab:6f:d0:ea:f9:7c:
04:08:56:13:c6:20:ff:9c:87:65:a2:33:eb:cd:cb:
41:d0:9f:62:d5:e1:d9:d6:bc:9c:5a:5e:ef:f7:5d:
1f:3a:e2:88:e1:6f:d7:75:e5:bf:bc:52:88:57:c7:
87:dc:11:c9:f3:9a:23:d3:5d:9b:1a:b3:06:d5:37:
44:78:92:b0:ab:e9:1e:61:46:0b:cd:5b:42:35:46:
a6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:65:4F:05:8E:E7:6E:F9:57:7D:91:31:1B:EF:9F:49:CF:26:AE:17
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/bGVPBY7nbvlXfZExG--fSc8mrhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7108::/46
Signature Algorithm: sha256WithRSAEncryption
9a:e6:cd:4a:85:16:51:9b:4f:59:01:52:fd:31:32:e0:86:1a:
84:a8:3e:87:49:2a:13:9a:89:20:f2:a0:20:4b:11:0b:14:d9:
d0:f0:09:f9:3d:6c:6f:30:81:b1:4e:8e:25:40:45:74:78:cc:
f3:8f:af:c2:7f:61:75:58:78:02:01:67:d8:7f:d9:dd:31:80:
3c:97:5d:2b:b5:57:16:a1:3a:7f:b3:03:8a:d0:85:f6:21:fd:
b5:24:26:4e:6c:c0:16:18:62:a8:bb:5a:17:e9:2e:85:6b:96:
78:07:fa:32:42:11:c9:d1:52:c1:cd:b1:97:e5:7d:50:be:ee:
2b:f0:1c:f6:07:ef:10:7b:ee:ab:23:88:7e:aa:4c:dc:89:c3:
52:f6:e8:d2:b3:24:3e:aa:02:57:05:38:f1:0b:af:45:53:7f:
28:30:d9:8b:04:5d:01:b9:a3:2b:0f:0d:19:ea:47:a5:b1:ac:
6a:a0:51:44:70:fc:3b:4c:1b:e1:1e:de:cc:ac:79:52:ee:a0:
06:55:b4:b2:18:fb:0e:f2:00:99:24:a8:62:00:c9:24:e1:05:
49:67:06:bb:80:26:d5:67:48:75:41:91:69:c7:b8:68:f8:b8:
ed:c6:76:74:29:43:6f:83:60:7d:a3:3a:41:72:79:ad:14:06:
84:85:17:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:16 2024 by rpki-client on console-fra.rpki-client.org