Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/nfeWdPN79tebgBlW9o7dH-b_yIU.roa
File: nfeWdPN79tebgBlW9o7dH-b_yIU.roa (raw, json)
Hash identifier: RodSNyh7sXMofKP3zBsEsVO9dPAlRPtRHKT9kRv3f8I=
Subject key identifier: 9D:F7:96:74:F3:7B:F6:D7:9B:80:19:56:F6:8E:DD:1F:E6:FF:C8:85
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB8EADE66D8F31729B0E309F1A491D
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/nfeWdPN79tebgBlW9o7dH-b_yIU.roa
Signing time: Mon 02 Jan 2023 00:04:49 +0000
ROA not before: Mon 02 Jan 2023 00:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198127
IP address blocks: 2a00:e200:104::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8e:ad:e6:6d:8f:31:72:9b:0e:30:9f:1a:49:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9df79674f37bf6d79b801956f68edd1fe6ffc885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:70:b2:65:87:28:e9:fa:30:d1:d5:a2:ae:ef:
37:1e:f3:b5:b2:78:f4:48:9e:34:1f:5d:92:f1:16:
cc:34:ea:7e:0d:32:db:8b:a5:3e:88:7c:ea:04:32:
4a:6d:a6:8d:45:69:f8:46:98:73:c1:26:fb:78:ae:
83:b0:1f:98:bb:65:f0:cb:62:86:b9:aa:40:6c:cd:
93:2e:20:57:30:9c:3a:d9:e6:9c:2d:26:15:47:41:
f3:a3:6c:95:b6:fa:74:4b:26:39:67:e2:1c:a3:82:
a8:8d:f4:c1:16:78:19:b1:c2:61:6b:38:42:aa:bd:
ad:8e:46:b2:c4:87:76:ae:9b:c6:8c:8c:03:7b:1e:
48:bc:b2:21:c2:c6:2c:20:8d:e0:81:f9:c4:ed:56:
27:aa:09:e7:47:fc:27:23:54:f1:2b:20:31:a2:11:
08:14:67:7a:9e:75:68:d5:8b:be:d7:57:7b:ec:77:
5a:59:04:8c:4b:b9:28:4f:42:da:9f:ab:1c:c2:34:
d6:29:00:83:3d:62:aa:36:ec:20:05:7c:95:09:f7:
2d:c1:0a:15:a4:d6:d2:aa:c7:5f:ec:2e:a8:1e:2c:
c9:5b:c6:11:15:20:a7:c5:19:cc:08:9e:87:b3:fc:
66:66:7d:89:47:1f:ed:54:37:d0:f3:b5:60:93:60:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F7:96:74:F3:7B:F6:D7:9B:80:19:56:F6:8E:DD:1F:E6:FF:C8:85
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/nfeWdPN79tebgBlW9o7dH-b_yIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:e200:104::/48
Signature Algorithm: sha256WithRSAEncryption
7f:7f:d3:06:94:9a:bb:c7:46:65:c2:d4:ce:5f:cd:5d:d8:11:
c6:4b:10:b7:44:84:18:22:de:cb:34:a8:57:38:9d:8e:72:49:
c1:7e:5f:8f:2d:b2:70:46:8b:4a:2d:4c:0e:18:6e:da:7b:af:
dc:17:11:76:11:c0:1d:6d:62:36:73:16:c6:ef:76:d9:c8:0a:
e9:e4:bc:54:75:04:6c:e2:83:dd:2e:71:e8:70:47:e6:07:fa:
ae:2b:8e:a7:39:66:5b:69:28:01:f7:e4:2d:37:a6:14:7d:fb:
be:a2:f5:20:79:64:83:99:b9:b9:0e:ad:00:81:da:31:99:ba:
f1:87:8e:c5:4c:f3:ab:ca:3c:1f:f7:1d:c6:0c:f8:1d:a6:2b:
b9:bc:81:16:77:99:e7:91:d2:6e:8f:91:d8:43:2b:da:02:95:
13:40:bb:d8:36:34:3b:8f:97:c3:c6:19:aa:94:d8:f7:e3:23:
3d:ff:87:7f:04:0c:4e:ab:67:0c:2f:c9:7c:8c:5d:a1:7f:d6:
4b:f1:af:ee:a9:15:68:86:5d:cc:eb:67:99:c0:3e:5d:f5:61:
43:8f:28:08:7a:82:c7:1d:70:61:b1:1f:35:1c:95:a0:9f:7e:
95:93:28:4a:39:c9:ba:83:08:6c:d9:92:e0:cb:fb:ae:ac:06:
1e:cd:0f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:30 2024 by rpki-client on console-fra.rpki-client.org