Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/955959-d52b-4034-b0b9-639e52d11187/1/agVms75-Ca2CqvMyez_717GcQw0.roa
File: agVms75-Ca2CqvMyez_717GcQw0.roa (raw, json)
Hash identifier: cXYj9iPDAyo116uPzscp8FOIN5KGGaJUJLA6OVsW1aE=
Subject key identifier: 6A:05:66:B3:BE:7E:09:AD:82:AA:F3:32:7B:3F:FB:D7:B1:9C:43:0D
Certificate issuer: /CN=b865135b2fed910659fe775a4b11a59eefea5e2e
Certificate serial: 0187DBE8DA801DA7AD0416E275E245EA61BA
Authority key identifier: B8:65:13:5B:2F:ED:91:06:59:FE:77:5A:4B:11:A5:9E:EF:EA:5E:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uGUTWy_tkQZZ_ndaSxGlnu_qXi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/955959-d52b-4034-b0b9-639e52d11187/1/agVms75-Ca2CqvMyez_717GcQw0.roa
Signing time: Tue 02 May 2023 10:01:22 +0000
ROA not before: Tue 02 May 2023 10:01:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29491
IP address blocks: 2a11:8e40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:e8:da:80:1d:a7:ad:04:16:e2:75:e2:45:ea:61:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b865135b2fed910659fe775a4b11a59eefea5e2e
Validity
Not Before: May 2 10:01:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a0566b3be7e09ad82aaf3327b3ffbd7b19c430d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d4:b1:8f:cc:37:b0:ac:84:32:ff:68:7c:8d:
e3:cd:6f:8f:f2:d8:11:21:29:f0:83:43:a2:32:ce:
4f:cc:b3:0f:0d:e2:f6:8a:2a:19:56:02:4b:e2:6a:
48:90:f3:99:38:95:f8:a1:ea:5b:33:cf:23:7e:67:
c6:58:96:0f:d0:8b:de:04:ab:7e:45:db:4c:9a:1e:
7a:36:40:c3:96:a3:86:ee:a5:75:c5:d7:17:db:7a:
b5:d6:d1:1b:8c:f4:1e:f3:7a:3d:b9:ca:ce:15:af:
40:dd:e4:73:e3:1c:25:1b:3b:0f:c1:76:06:8a:17:
81:a8:2a:14:c1:d6:39:5e:02:ef:02:7f:c4:83:c6:
78:7e:84:95:4a:43:2d:e0:e6:4b:f5:13:49:dc:b3:
f6:77:a3:9d:95:15:73:4b:90:f1:fa:4d:bd:4f:78:
95:cf:99:f5:91:99:1d:2a:97:3d:da:4b:87:9e:56:
fc:da:c1:a3:d2:28:73:0c:b1:8f:5b:6d:1c:0c:16:
48:c7:2d:bc:79:21:fb:37:0f:4c:ec:47:12:c1:75:
85:39:7e:bc:68:db:60:86:ef:e3:6f:2b:e0:3f:4c:
4d:55:0a:b3:8f:2e:ee:2c:f5:4d:67:5a:0f:31:d6:
ab:ee:50:b8:a1:4e:8c:69:06:8a:e0:25:1b:df:f4:
b4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:05:66:B3:BE:7E:09:AD:82:AA:F3:32:7B:3F:FB:D7:B1:9C:43:0D
X509v3 Authority Key Identifier:
keyid:B8:65:13:5B:2F:ED:91:06:59:FE:77:5A:4B:11:A5:9E:EF:EA:5E:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uGUTWy_tkQZZ_ndaSxGlnu_qXi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/955959-d52b-4034-b0b9-639e52d11187/1/agVms75-Ca2CqvMyez_717GcQw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/955959-d52b-4034-b0b9-639e52d11187/1/uGUTWy_tkQZZ_ndaSxGlnu_qXi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8e40::/29
Signature Algorithm: sha256WithRSAEncryption
59:c3:61:ab:f8:2c:a7:f6:74:68:8b:af:bc:ee:75:c0:a1:59:
8d:4b:a5:34:8c:89:de:17:27:33:ee:2c:c7:65:74:c6:99:2b:
20:45:75:ac:46:f0:69:b0:d7:0b:c0:e6:da:44:90:0d:4c:09:
b8:ae:6f:28:44:42:28:1f:d3:06:1a:b7:9b:6f:19:46:0f:f5:
c0:f2:96:35:17:a7:8e:ec:98:5a:fe:28:70:c3:78:79:bd:58:
74:43:63:b7:84:05:db:9b:d3:d2:18:60:e8:b3:7b:3b:cc:dd:
ae:a9:a1:2a:4c:f3:cd:71:af:ff:8e:2d:01:41:f6:56:f1:5a:
66:7c:f4:07:34:5a:da:67:94:03:16:d5:a9:53:57:b0:48:48:
4b:7b:31:1c:9f:cd:86:a0:b2:28:ae:eb:09:02:28:fa:06:16:
6e:19:f3:5e:39:68:2b:0b:e6:95:3b:00:fe:91:a3:6b:99:4f:
54:6a:36:90:1d:97:23:6c:61:da:70:6c:cd:e1:bc:15:6f:12:
56:ad:48:46:bb:59:3b:e7:ad:c0:0c:a4:8e:c5:57:7a:e2:1f:
80:4b:48:f3:e3:1a:d3:a4:6c:0f:d0:f7:64:17:11:a2:65:26:
1b:62:e3:b1:f7:31:10:9b:fd:a8:aa:c3:85:e4:d3:b9:39:85:
59:e9:00:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:00 2023 by rpki-client on console-fra.rpki-client.org