Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/eGUaQW_vmsoRYkX3o72zJGCKRV8.roa
File: eGUaQW_vmsoRYkX3o72zJGCKRV8.roa (raw, json)
Hash identifier: cdvzb+Jmz+URXH9PVJuIaehhub7pIlsOO/vtQuJ9V7E=
Subject key identifier: 78:65:1A:41:6F:EF:9A:CA:11:62:45:F7:A3:BD:B3:24:60:8A:45:5F
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 01857139E6015634B3EECCF22998917EDC2E
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/eGUaQW_vmsoRYkX3o72zJGCKRV8.roa
Signing time: Mon 02 Jan 2023 06:44:57 +0000
ROA not before: Mon 02 Jan 2023 06:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204088
IP address blocks: 2001:67c:2d14::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e6:01:56:34:b3:ee:cc:f2:29:98:91:7e:dc:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Jan 2 06:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78651a416fef9aca116245f7a3bdb324608a455f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c2:39:71:2e:d4:ab:f3:9e:3a:46:87:8d:bf:
e8:4b:1b:34:de:83:00:7a:21:a6:33:4c:e5:f7:0c:
07:b8:0b:43:57:6f:2b:db:a8:e4:d7:3c:1a:3c:02:
51:07:e4:96:33:9f:20:9a:e2:a7:37:7d:5e:3b:b4:
38:97:a2:75:d4:fe:8f:82:15:08:9f:f7:d5:b1:cd:
f0:ec:86:ac:8f:e7:b1:ff:a0:cc:8b:c0:8a:33:fe:
fb:28:b3:30:c8:59:f9:36:74:21:82:f8:10:49:52:
6e:5a:46:a6:97:eb:b9:7c:67:ea:51:98:f9:0f:d5:
7a:3a:e9:67:1a:bd:af:0f:71:b5:2b:79:d4:b3:8e:
f8:c6:c2:b3:da:bf:e9:5e:8f:20:91:a7:e2:40:3f:
e6:2f:48:4a:e7:f1:80:e8:fd:9e:16:96:3d:92:be:
63:37:97:06:91:3d:ce:c3:e0:a1:cf:25:88:51:f6:
b7:1d:c7:74:ed:8c:01:f4:f2:39:aa:d9:70:55:9a:
c4:2b:fd:b3:f3:40:fc:5b:db:ad:c7:a8:8d:7a:13:
ea:64:c8:5d:73:15:ed:70:f9:17:a8:41:6c:41:3e:
fc:a4:f9:7b:84:0f:0e:f2:a2:26:e9:95:94:34:16:
41:27:bf:b9:70:af:57:98:51:5c:74:bd:15:0e:d1:
e5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:65:1A:41:6F:EF:9A:CA:11:62:45:F7:A3:BD:B3:24:60:8A:45:5F
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/eGUaQW_vmsoRYkX3o72zJGCKRV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d14::/48
Signature Algorithm: sha256WithRSAEncryption
8c:08:8f:aa:82:17:a7:b6:83:0d:80:7f:7c:e0:d4:ce:6c:9b:
84:97:77:8d:55:06:b1:9b:bb:fc:42:de:6e:3a:eb:c3:93:f5:
f8:31:ba:cd:4c:5e:b9:42:b7:91:62:ad:af:07:ad:3a:74:2d:
93:9c:9a:91:37:17:ae:87:7c:01:87:44:9d:5f:73:dc:8a:dd:
55:bb:39:19:39:c0:4f:86:6f:b7:5f:6a:38:95:71:33:e1:e4:
ae:92:c6:c5:eb:9f:8a:d8:91:48:e0:ea:8d:fd:2c:a1:47:80:
75:92:94:1e:59:fd:38:c9:c9:68:d5:62:c9:9d:a7:4a:6e:bc:
11:79:5b:14:23:cd:40:28:95:9d:bb:3e:36:a6:f5:52:f3:24:
74:cb:a3:b5:7b:43:13:84:2a:3f:67:f2:3a:ba:fd:0f:6e:99:
98:06:4f:02:90:9d:7c:02:d5:89:e4:e2:86:74:e3:e7:1b:d5:
80:f0:f5:5b:d9:fb:70:64:4d:bf:b7:49:ee:e5:4f:35:d0:10:
2a:80:e1:8e:e0:21:81:21:01:48:3a:25:ef:a1:a5:56:fc:d2:
5b:81:39:79:96:93:81:65:62:90:7d:dc:2a:f2:0e:d2:a7:4c:
98:df:69:ad:5a:24:f8:56:c7:88:8a:2d:80:0a:7c:3f:4e:b2:
7a:62:c0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:41 2024 by rpki-client on console-ams.rpki-client.org