Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/0jk6Yrz10Ql_TvWadZk8wJcHs1A.roa
File: 0jk6Yrz10Ql_TvWadZk8wJcHs1A.roa (raw, json)
Hash identifier: jPuDNFaLQMod5+PnaTEMt95MugEupy1jLQaEAiBx/+0=
Subject key identifier: D2:39:3A:62:BC:F5:D1:09:7F:4E:F5:9A:75:99:3C:C0:97:07:B3:50
Certificate issuer: /CN=75905949e963d3577be076326ca0b91ff32f9684
Certificate serial: 018A9333589350C7D6DC62DAF6D665A14CDF
Authority key identifier: 75:90:59:49:E9:63:D3:57:7B:E0:76:32:6C:A0:B9:1F:F3:2F:96:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/0jk6Yrz10Ql_TvWadZk8wJcHs1A.roa
Signing time: Thu 14 Sep 2023 10:18:50 +0000
ROA not before: Thu 14 Sep 2023 10:18:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a0d:d600::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:33:58:93:50:c7:d6:dc:62:da:f6:d6:65:a1:4c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75905949e963d3577be076326ca0b91ff32f9684
Validity
Not Before: Sep 14 10:18:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2393a62bcf5d1097f4ef59a75993cc09707b350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:35:5f:53:00:c2:ed:e5:fa:12:b4:cd:b8:31:
3c:21:cd:6a:dd:5b:a8:4f:33:b7:1c:4b:ea:8b:bd:
ea:83:6c:dc:bb:4b:2a:d7:ac:06:43:8b:5f:bc:44:
61:2a:dd:3d:4e:31:a6:3b:f8:b9:f0:8e:94:22:8b:
30:96:e9:75:1b:70:3d:5d:dc:ea:ec:0e:70:9a:18:
67:61:a8:a1:47:b9:7c:6b:aa:cd:dc:8d:26:43:3e:
ef:5c:8a:a8:55:2d:c9:50:13:0e:6b:21:b9:1b:52:
c8:e7:8b:d8:5f:da:86:9a:d4:b8:25:be:e0:2a:7d:
3f:a9:1a:d3:60:8c:ea:f5:69:e5:12:09:93:7c:06:
c7:44:2b:70:ae:39:97:f3:57:67:93:01:8c:59:d2:
33:e1:30:ce:34:91:10:db:9e:1b:b3:56:e7:6a:1a:
b6:78:e4:1e:10:c7:9b:4c:0e:d4:18:88:7c:b6:89:
40:fa:3e:1d:9d:7b:37:3c:43:b9:2e:00:26:50:a8:
ac:8b:f3:4b:a1:12:cb:2f:81:91:cb:51:c3:8d:98:
7f:41:0a:f6:b9:91:47:66:07:4e:ff:21:72:b2:e8:
57:ad:1c:c8:2e:ac:1f:38:c1:b4:f4:27:81:95:2b:
a0:28:66:08:e8:25:ce:42:64:a7:4d:7e:96:87:97:
b7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:39:3A:62:BC:F5:D1:09:7F:4E:F5:9A:75:99:3C:C0:97:07:B3:50
X509v3 Authority Key Identifier:
keyid:75:90:59:49:E9:63:D3:57:7B:E0:76:32:6C:A0:B9:1F:F3:2F:96:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZBZSelj01d74HYybKC5H_MvloQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/0jk6Yrz10Ql_TvWadZk8wJcHs1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d61f73-ac0b-45bc-a5a4-1a8301b7e6de/1/dZBZSelj01d74HYybKC5H_MvloQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d600::/32
Signature Algorithm: sha256WithRSAEncryption
80:c1:76:a7:1f:22:60:ce:ff:e4:7f:f6:0b:27:12:9f:ca:83:
35:3d:ed:9b:a0:d1:b9:14:46:1e:7f:55:ef:e7:a3:e2:08:66:
fb:93:02:9a:42:6e:df:d4:b1:cf:ce:f7:c9:20:7e:ee:3c:d3:
f1:a5:b4:c9:1d:05:ac:27:0a:0b:27:76:9e:8d:86:6d:0d:41:
08:0b:96:fb:ca:d4:30:e8:82:2c:8c:10:fb:df:ae:78:fa:f1:
31:c2:01:04:ec:0d:9c:d0:d2:51:93:ec:49:5a:f9:bf:80:73:
9a:cb:46:0a:ab:41:e1:37:c4:20:53:53:bb:8b:17:6c:b4:a3:
10:78:92:e9:aa:69:4d:14:8f:65:d8:d1:d4:3e:06:57:4d:b4:
a9:8a:c7:3b:b2:a9:a5:c5:31:15:b9:8e:e3:d7:20:e0:9f:0e:
eb:6f:d0:cc:73:24:c1:12:e1:5a:ce:ab:0e:86:7b:c5:64:4d:
4b:a5:cd:b9:0a:84:ea:72:61:ff:50:4a:83:61:b4:6e:f0:2c:
8b:46:91:44:b0:dd:fd:cb:33:cd:9e:97:a7:29:e9:09:0b:b3:
00:7a:72:cd:d8:3f:a7:83:cf:2d:32:0e:50:66:cc:2d:dc:8a:
0d:56:d2:3f:db:6c:78:78:68:c0:be:aa:16:d8:cf:dc:8b:fc:
4c:93:17:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 21 07:08:49 2023 by rpki-client on console-ams.rpki-client.org