Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/_OVwoT-LniFGwOGAJHRn4dBsCfo.roa
File: _OVwoT-LniFGwOGAJHRn4dBsCfo.roa (raw, json)
Hash identifier: T45TH0CxqAE8kQ6KW/aA7sDDvJnyWxfoxSTInMutg9I=
Subject key identifier: FC:E5:70:A1:3F:8B:9E:21:46:C0:E1:80:24:74:67:E1:D0:6C:09:FA
Certificate issuer: /CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Certificate serial: 01857303791ACF0A03519994ADB66FD88428
Authority key identifier: 82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/_OVwoT-LniFGwOGAJHRn4dBsCfo.roa
Signing time: Mon 02 Jan 2023 15:04:45 +0000
ROA not before: Mon 02 Jan 2023 15:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 2a12:8440::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:79:1a:cf:0a:03:51:99:94:ad:b6:6f:d8:84:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Validity
Not Before: Jan 2 15:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fce570a13f8b9e2146c0e180247467e1d06c09fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3b:77:c1:6a:e6:3d:77:f9:a7:c4:15:70:11:
ae:aa:d5:8f:31:66:52:46:f5:39:f6:c0:3f:b1:40:
98:39:ec:f0:74:ea:ee:67:7a:26:c2:6f:37:89:a7:
f1:27:37:e1:24:a1:86:91:06:f4:b2:67:05:8f:44:
28:cf:b1:63:6b:c1:f9:52:e3:25:d1:b8:cd:fa:0f:
a7:c8:86:dc:88:35:44:ef:c3:de:f7:6b:9c:0e:7d:
f0:2c:cf:e1:af:26:e7:07:b4:9e:75:11:27:8e:b9:
e7:05:1b:84:c7:0a:d2:d1:aa:5f:45:0b:1e:43:43:
cc:39:e4:f7:09:77:43:0a:04:fa:5e:e7:53:fe:e2:
7e:75:53:b4:e6:58:90:fd:5a:6e:54:77:67:a3:42:
61:f2:86:c9:2a:9f:2e:a5:34:0b:6c:b9:4e:54:65:
6e:3a:8c:ec:63:dd:b5:2e:13:5c:fa:a8:dc:cb:29:
09:a8:ba:c9:2e:d9:58:30:ff:c5:b3:12:21:d6:0a:
59:f4:58:a0:88:62:ea:53:d5:1d:6e:9c:25:ba:0c:
ef:bd:3d:8c:e9:a3:4b:ea:bb:2b:3e:df:73:28:56:
45:19:3e:9f:a9:02:0e:16:3d:1f:1c:31:28:d0:41:
4d:c4:9a:e3:52:8f:cc:13:7f:3f:85:fd:f5:7c:93:
44:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E5:70:A1:3F:8B:9E:21:46:C0:E1:80:24:74:67:E1:D0:6C:09:FA
X509v3 Authority Key Identifier:
keyid:82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/_OVwoT-LniFGwOGAJHRn4dBsCfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/gjtvO3r4e7jvbdhDvr1tgbBVkhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8440::/29
Signature Algorithm: sha256WithRSAEncryption
75:b1:2c:73:08:95:2f:91:bf:5e:ce:b9:d3:69:5d:89:ae:54:
73:3e:de:09:d8:f3:62:de:15:0d:b9:a6:08:88:8f:57:3a:f7:
dc:9e:fb:9b:fa:f3:69:71:6d:bc:34:97:f0:d1:3c:c5:28:b1:
f1:eb:29:9f:55:79:7b:6f:01:91:16:e7:11:3e:f5:30:48:5b:
83:32:7b:a8:7a:d4:37:de:b1:48:b9:56:ff:07:41:82:a7:50:
89:ae:76:10:53:0c:86:b1:10:ce:f1:c4:7a:15:d7:d3:88:4f:
9a:9d:38:86:ac:b6:3e:e4:6a:06:92:5c:83:3e:a1:1d:a4:4d:
56:6d:5b:7a:2c:6e:6c:14:de:0e:d6:38:e6:4c:cf:f2:bc:19:
ad:b3:fc:49:c0:40:5b:67:fa:36:3f:4e:2b:df:b3:50:5c:8c:
53:ab:21:b4:2b:ea:2e:be:3c:17:1a:b7:d2:1a:db:74:f0:d1:
c1:05:d3:ca:36:73:b0:5d:2a:97:eb:9c:ac:98:23:5d:6f:b1:
4c:86:cb:f5:e5:fc:12:eb:df:0d:c2:91:46:c7:73:86:62:13:
53:cc:e4:7b:cd:10:a1:e6:85:3e:6f:93:c8:2b:fc:50:3f:15:
4d:ec:8c:0c:8d:56:f5:d7:2e:91:1b:6c:02:d3:f2:7e:cf:1a:
28:85:87:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:09 2024 by rpki-client on console-ams.rpki-client.org