Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/323a92-7d38-49ec-ba99-be434cb9f8f8/1/H7PaRMIRnM9v_IbpIzWdudW3Ycg.roa
File: H7PaRMIRnM9v_IbpIzWdudW3Ycg.roa (raw, json)
Hash identifier: X7rcxjQAsXQ3JzI+DTT61K1uMap64PfPj1veB/ezR/4=
Subject key identifier: 1F:B3:DA:44:C2:11:9C:CF:6F:FC:86:E9:23:35:9D:B9:D5:B7:61:C8
Certificate issuer: /CN=d5620cec70974d037d7769758c74668305b32cf2
Certificate serial: 0189695EC82FB57B4AE7050BED1FCCA7D691
Authority key identifier: D5:62:0C:EC:70:97:4D:03:7D:77:69:75:8C:74:66:83:05:B3:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WIM7HCXTQN9d2l1jHRmgwWzLPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/323a92-7d38-49ec-ba99-be434cb9f8f8/1/H7PaRMIRnM9v_IbpIzWdudW3Ycg.roa
Signing time: Tue 18 Jul 2023 14:19:26 +0000
ROA not before: Tue 18 Jul 2023 14:19:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42474
IP address blocks: 2a06:dd01::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:5e:c8:2f:b5:7b:4a:e7:05:0b:ed:1f:cc:a7:d6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5620cec70974d037d7769758c74668305b32cf2
Validity
Not Before: Jul 18 14:19:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fb3da44c2119ccf6ffc86e923359db9d5b761c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bb:44:cc:fb:0a:d6:80:d3:65:97:f7:5d:86:
7f:0b:27:8b:8e:8f:ce:d3:a0:1a:52:df:15:d1:6f:
68:c2:95:34:31:48:64:e7:99:9e:92:5b:18:c2:0c:
b9:a0:da:06:bd:c8:3c:d8:82:33:bf:d0:c4:05:31:
8e:e8:99:83:d7:2f:ee:08:15:fd:81:e7:4a:75:bc:
32:53:14:c5:1c:11:bb:85:98:5e:1f:74:90:48:54:
91:61:17:a7:b5:19:58:1b:39:6b:75:5d:1f:9c:81:
9d:e6:82:38:d4:57:c3:0f:bb:fb:34:64:af:21:9e:
2d:ff:5c:9b:77:5a:92:69:8e:21:19:b4:7a:f5:4a:
17:7b:82:22:dc:d3:f1:84:27:f8:71:f2:db:b2:fc:
55:4c:bc:09:b5:33:be:a9:1d:94:cd:ba:f3:2b:23:
73:ef:c6:be:85:56:f5:0e:52:a9:63:7c:e9:3a:4a:
6e:45:0b:1f:3e:80:3c:89:16:76:cb:69:fc:69:b0:
bf:8a:f6:97:ab:5b:52:2f:2e:53:cd:eb:d7:11:40:
8c:76:36:fe:c2:43:7d:d1:9e:8f:ef:d5:c6:db:2a:
7e:44:76:fe:df:4d:68:37:7a:75:bc:3d:79:ed:ec:
d2:32:6d:2a:cb:be:03:05:32:c3:5a:48:20:0f:95:
bf:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B3:DA:44:C2:11:9C:CF:6F:FC:86:E9:23:35:9D:B9:D5:B7:61:C8
X509v3 Authority Key Identifier:
keyid:D5:62:0C:EC:70:97:4D:03:7D:77:69:75:8C:74:66:83:05:B3:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WIM7HCXTQN9d2l1jHRmgwWzLPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/323a92-7d38-49ec-ba99-be434cb9f8f8/1/H7PaRMIRnM9v_IbpIzWdudW3Ycg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/323a92-7d38-49ec-ba99-be434cb9f8f8/1/1WIM7HCXTQN9d2l1jHRmgwWzLPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:dd01::/32
Signature Algorithm: sha256WithRSAEncryption
80:bc:df:cf:cf:12:fb:dd:4e:ca:83:2c:61:48:70:bd:c3:04:
8c:4c:cd:83:33:31:6d:16:c3:75:bd:64:97:82:0c:95:2b:b4:
45:b5:34:51:3d:38:e5:fb:02:11:e7:d1:60:eb:bc:1a:68:f4:
58:98:54:5b:88:32:d9:30:d4:c6:cd:ea:87:ca:cc:ae:71:8b:
f3:69:d7:a5:0d:72:72:f7:92:d8:80:29:c0:6c:ef:9a:7b:ad:
98:02:c2:ae:c4:e5:55:95:11:e3:42:75:94:25:d0:49:26:40:
50:cd:a2:8d:0c:f3:4c:fe:72:08:b5:4a:d4:57:db:75:65:e0:
10:5c:17:28:ed:40:d1:de:ad:7a:82:05:fd:4b:2c:9c:79:65:
90:34:a6:ff:91:0a:4b:a2:68:13:07:f7:40:7e:00:f1:69:c7:
ff:40:cd:b4:46:e3:97:ba:d4:28:43:73:7e:48:2c:af:26:68:
b1:62:3a:bc:2f:6f:ba:46:77:a8:24:41:bf:0b:9f:83:bf:a4:
68:f7:0d:6d:d0:7c:ee:91:5b:0f:7d:a1:f6:d4:b9:26:8d:b3:
10:8d:cf:ca:fe:8e:32:71:ee:c3:ec:b1:86:42:f3:98:90:34:
42:a0:dc:91:65:5b:de:52:6d:80:eb:38:63:c8:bc:e6:ff:fc:
38:3d:9b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:18 2024 by rpki-client on console-fra.rpki-client.org