Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/379529-f469-4363-8b87-421a99bdd78f/1/EjW-hVcxK9c2g9KqsKtBIayFOW8.roa
File: EjW-hVcxK9c2g9KqsKtBIayFOW8.roa (raw, json)
Hash identifier: fjY8HQmgTY4FsRX/n41z96z4UEt8AsQEXFZVg0iY0GQ=
Subject key identifier: 12:35:BE:85:57:31:2B:D7:36:83:D2:AA:B0:AB:41:21:AC:85:39:6F
Certificate issuer: /CN=6af9c540b146bb44c8219d01375c10124920ae9f
Certificate serial: 01856BB7CF6BEF8E891D7AB5E3684A4C529F
Authority key identifier: 6A:F9:C5:40:B1:46:BB:44:C8:21:9D:01:37:5C:10:12:49:20:AE:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avnFQLFGu0TIIZ0BN1wQEkkgrp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/379529-f469-4363-8b87-421a99bdd78f/1/EjW-hVcxK9c2g9KqsKtBIayFOW8.roa
Signing time: Sun 01 Jan 2023 05:04:46 +0000
ROA not before: Sun 01 Jan 2023 05:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211442
IP address blocks: 2a10:e1c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:cf:6b:ef:8e:89:1d:7a:b5:e3:68:4a:4c:52:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af9c540b146bb44c8219d01375c10124920ae9f
Validity
Not Before: Jan 1 05:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1235be8557312bd73683d2aab0ab4121ac85396f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:92:5a:10:48:3e:26:6a:4a:73:1e:a1:42:41:
0b:5d:d4:45:43:b1:44:fa:58:d6:e7:7e:ac:fd:31:
49:3a:22:54:ca:83:55:1f:d5:b9:8a:cb:4a:2c:c1:
61:52:17:51:b8:00:75:47:64:ea:bf:5a:b1:aa:5c:
9e:d9:0f:6c:64:7b:98:fa:12:da:50:32:66:0a:bf:
cb:3b:b0:45:ea:57:99:49:ec:b3:69:30:55:a0:ab:
c9:8c:b5:3c:d4:84:ff:12:ca:7e:65:57:d6:7c:2e:
21:42:2a:b4:de:58:c7:7a:48:45:5f:86:27:85:ba:
92:e0:21:f4:7c:81:29:9e:4f:c6:2b:ac:9f:e9:b2:
09:85:ef:5e:2c:bc:92:c6:28:59:76:bc:2f:77:fc:
12:d0:d5:9c:69:a0:a0:6c:d6:9d:7d:70:79:0c:cc:
a2:13:fa:b6:4d:7c:c9:ce:62:ef:1c:c0:99:4d:6b:
35:a9:84:6d:12:be:fe:ab:68:4d:82:cb:7a:cc:c2:
6e:7c:06:61:de:7c:6f:9c:3a:f2:f0:54:f4:56:f6:
6c:62:79:21:42:d7:93:03:c9:a7:2b:e7:e0:0b:3b:
eb:a3:7e:36:c1:c2:b4:3d:4b:3e:fa:31:36:09:f1:
8a:ff:4d:d4:78:45:3b:d1:91:dc:1a:9a:67:c7:a9:
f2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:35:BE:85:57:31:2B:D7:36:83:D2:AA:B0:AB:41:21:AC:85:39:6F
X509v3 Authority Key Identifier:
keyid:6A:F9:C5:40:B1:46:BB:44:C8:21:9D:01:37:5C:10:12:49:20:AE:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avnFQLFGu0TIIZ0BN1wQEkkgrp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/379529-f469-4363-8b87-421a99bdd78f/1/EjW-hVcxK9c2g9KqsKtBIayFOW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/379529-f469-4363-8b87-421a99bdd78f/1/avnFQLFGu0TIIZ0BN1wQEkkgrp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:e1c0::/29
Signature Algorithm: sha256WithRSAEncryption
75:c8:19:27:f9:8c:2f:44:8f:39:a0:85:8c:f6:04:e5:f4:f0:
5f:c4:9c:fb:10:21:89:c2:72:b5:70:e3:a5:dd:c7:31:71:11:
81:53:1f:17:45:60:97:17:f9:01:22:02:10:24:fb:09:10:b6:
55:74:86:0a:8a:0d:c2:53:74:37:19:28:e8:40:43:6c:94:4b:
2b:5f:00:a5:45:b5:c2:d2:ce:d6:2a:08:22:97:21:bd:62:4d:
84:70:67:39:a8:c6:3d:20:a9:f3:6c:df:77:90:e9:d6:04:63:
3f:1a:db:be:ae:cb:46:d1:3d:58:fb:82:ee:d8:a2:01:93:f0:
6d:61:6c:cb:91:87:f0:0d:f8:ea:f8:56:3a:0e:b7:dd:61:41:
69:a1:27:1d:9f:38:db:dd:3d:ed:f2:6c:a1:bd:e8:b3:49:5b:
e7:f8:ea:1c:c0:89:50:a6:dd:f9:21:4d:5b:98:7c:51:80:d6:
df:6e:06:cb:fc:3a:55:6b:61:58:67:61:c3:b3:98:22:ea:ae:
46:cd:7b:72:4b:61:37:77:79:17:72:f5:c5:ba:28:45:ff:ab:
02:1d:e6:61:c7:a9:e1:90:e0:5f:f9:13:ca:9d:9f:9d:af:87:
f9:11:58:e1:0d:37:54:d5:45:c0:fb:ca:ed:73:a6:23:49:c5:
00:15:35:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:04 2024 by rpki-client on console-fra.rpki-client.org