Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/1o9rtQ54OEUFRaKJCffkbQDE4Rc.roa
File: 1o9rtQ54OEUFRaKJCffkbQDE4Rc.roa (raw, json)
Hash identifier: vYBw6MvQ9XJQXrZjE0sxEBKUxT8yNwRBH6HtzDRJBVE=
Subject key identifier: D6:8F:6B:B5:0E:78:38:45:05:45:A2:89:09:F7:E4:6D:00:C4:E1:17
Certificate issuer: /CN=651bad95276947c7be536af4c870a3721f0b7761
Certificate serial: 01856DEF68B8997FFC9F58D7D0A7ECEAB0B8
Authority key identifier: 65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/1o9rtQ54OEUFRaKJCffkbQDE4Rc.roa
Signing time: Sun 01 Jan 2023 15:24:44 +0000
ROA not before: Sun 01 Jan 2023 15:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208394
IP address blocks: 2a09:3a00:6000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:68:b8:99:7f:fc:9f:58:d7:d0:a7:ec:ea:b0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651bad95276947c7be536af4c870a3721f0b7761
Validity
Not Before: Jan 1 15:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d68f6bb50e7838450545a28909f7e46d00c4e117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b9:93:9c:e1:74:5e:46:ea:e3:2c:5c:97:3c:
03:00:c6:01:e5:51:ba:09:83:3e:83:00:01:4f:26:
cb:e2:3a:bd:98:67:56:8a:3a:d2:d5:21:83:3c:c7:
53:cf:2a:39:73:6b:19:4d:a7:94:4f:ca:42:a2:be:
34:2c:26:18:4c:7f:a4:62:88:6a:60:2f:76:16:15:
6e:9c:b7:13:ea:b9:a0:6e:01:18:d4:48:47:47:04:
21:0f:33:64:88:bb:89:b9:fe:42:ff:a8:42:ba:fa:
6a:95:3d:1e:3b:6b:17:16:71:04:3c:8a:7d:23:fc:
66:19:3d:6a:fd:29:86:94:fc:5d:76:1c:b5:4f:21:
a5:9b:95:6b:ce:9c:84:66:4c:3c:30:45:f7:9b:aa:
58:0f:11:21:0d:b7:b6:b4:fe:9a:52:e6:2a:27:07:
f4:f9:48:fd:7c:92:b6:c3:8b:9f:b1:4d:f5:d0:2d:
2a:30:4a:f7:1c:99:38:73:0a:5e:19:8d:09:e3:a3:
f3:42:8f:6a:df:c6:e5:f9:5f:f9:9f:c9:6c:12:82:
be:44:14:dc:b7:fc:eb:a5:87:46:d4:b1:12:79:0d:
f1:09:7f:2e:02:18:98:2c:ec:b1:cc:2e:eb:ba:96:
41:17:5d:b0:a4:67:ba:57:36:06:a2:f3:57:be:b8:
47:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8F:6B:B5:0E:78:38:45:05:45:A2:89:09:F7:E4:6D:00:C4:E1:17
X509v3 Authority Key Identifier:
keyid:65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/1o9rtQ54OEUFRaKJCffkbQDE4Rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3a00:6000::/48
Signature Algorithm: sha256WithRSAEncryption
46:c0:30:d0:d1:4c:dc:91:ac:4e:0e:e4:c9:68:09:68:19:aa:
a5:ff:ac:88:8e:05:13:0d:9e:b6:22:ae:30:87:1f:d6:cd:6d:
e8:e4:39:42:df:a9:49:0c:16:24:d1:63:8f:9e:d1:5c:f6:1a:
d0:81:ea:5e:cb:39:82:61:73:1e:36:83:e3:58:9c:11:e3:f5:
f2:c5:4f:93:9a:23:e7:97:46:c8:a7:1b:b4:ce:a3:52:5a:30:
79:56:43:91:57:45:75:8d:78:65:f3:4f:cd:6c:53:08:dc:4f:
5c:37:ba:02:69:a2:8f:71:d2:53:01:05:68:aa:1a:98:87:f7:
38:01:f6:8c:56:3d:43:8f:ae:48:22:eb:f0:9c:47:d7:77:49:
b0:b5:8c:d4:f5:fb:b9:ee:92:1a:c6:2f:6c:f0:3a:9e:cb:28:
44:1b:63:20:5a:31:e1:73:2d:c0:b8:fc:1d:ca:0c:39:7e:29:
a1:82:30:f9:70:0b:e7:e6:0b:48:d3:c8:33:e5:95:98:60:51:
d1:85:8d:47:f7:b1:66:06:43:50:3a:85:3a:a7:39:53:a8:94:
06:8a:a8:19:10:f3:d3:95:47:65:fe:b9:4c:d4:ae:0f:59:e2:
27:6f:66:61:6c:c7:46:37:fd:c4:11:59:18:9d:9b:c4:a3:cd:
e0:7f:da:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:35 2024 by rpki-client on console-fra.rpki-client.org