Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/BDtmDEiejo_aNyoy7ZHLF3MiLVw.roa
File: BDtmDEiejo_aNyoy7ZHLF3MiLVw.roa (raw, json)
Hash identifier: wbyKZjnT/eoGYPz9mVxacmXzUWbwOi+spv2xpWOSj7A=
Subject key identifier: 04:3B:66:0C:48:9E:8E:8F:DA:37:2A:32:ED:91:CB:17:73:22:2D:5C
Certificate issuer: /CN=32eb2b51e3748c2527402e68601a88912883a058
Certificate serial: 018573F19FCDC85CE467DDA42E78F7CD75C9
Authority key identifier: 32:EB:2B:51:E3:74:8C:25:27:40:2E:68:60:1A:88:91:28:83:A0:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/BDtmDEiejo_aNyoy7ZHLF3MiLVw.roa
Signing time: Mon 02 Jan 2023 19:24:52 +0000
ROA not before: Mon 02 Jan 2023 19:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202039
IP address blocks: 2001:678:764::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:9f:cd:c8:5c:e4:67:dd:a4:2e:78:f7:cd:75:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32eb2b51e3748c2527402e68601a88912883a058
Validity
Not Before: Jan 2 19:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=043b660c489e8e8fda372a32ed91cb1773222d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:38:27:5f:dd:ff:34:8e:98:64:ff:2c:43:83:
5b:60:cb:47:97:db:bc:ec:e6:1f:05:78:4d:c0:ba:
99:d8:a1:ab:17:9d:47:d1:ea:1b:6f:1d:19:b2:4a:
aa:91:98:9c:f2:5e:19:60:a5:c8:f9:7f:1c:a3:ae:
50:90:bc:f4:7a:23:e4:de:b9:50:c2:85:8b:e4:99:
ab:be:d7:86:fc:c1:26:9d:0b:0f:b5:3b:37:a4:9e:
6b:71:6a:92:75:12:b9:0c:22:00:90:a4:ee:c4:98:
bd:69:2a:2e:a9:b8:fb:12:5a:54:fc:55:aa:21:b6:
a4:74:bd:38:b4:a5:30:f3:d4:c7:99:d2:c1:a3:20:
e5:0a:0b:fa:30:36:52:e0:f0:e2:36:57:79:32:78:
6c:cd:0f:8d:bf:78:3e:31:f9:c8:44:a3:2b:0b:0c:
f9:6c:42:5f:fc:e1:7d:ee:a3:88:de:ef:a4:ba:11:
15:56:e3:7d:1e:e9:47:ea:bb:fc:22:12:de:4d:52:
d2:3c:5f:81:c9:84:73:fe:de:60:15:9a:37:1a:0c:
03:42:ec:08:6a:a2:35:12:c3:3d:95:76:ac:d3:9f:
46:ce:de:6f:ec:d7:14:88:a8:df:7a:e3:ee:b6:8b:
9a:d7:d2:1b:e1:fd:ec:28:3b:df:ec:a7:e9:16:15:
ef:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3B:66:0C:48:9E:8E:8F:DA:37:2A:32:ED:91:CB:17:73:22:2D:5C
X509v3 Authority Key Identifier:
keyid:32:EB:2B:51:E3:74:8C:25:27:40:2E:68:60:1A:88:91:28:83:A0:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/BDtmDEiejo_aNyoy7ZHLF3MiLVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/MusrUeN0jCUnQC5oYBqIkSiDoFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:764::/48
Signature Algorithm: sha256WithRSAEncryption
12:8f:aa:29:0e:31:01:d2:ec:69:0d:74:07:f8:46:3f:92:6f:
48:02:b0:77:db:69:d2:df:0c:0b:c8:52:a1:aa:54:ba:68:49:
41:98:75:ce:f9:5d:82:ef:b0:c6:02:ff:6d:03:57:a0:4b:81:
8d:1f:99:34:35:60:2e:de:2a:27:44:1d:9b:23:20:02:43:90:
f3:ea:80:16:ce:54:ce:37:0a:10:5c:83:d5:e9:70:1f:83:71:
e2:f3:60:c1:de:8b:c5:27:1f:35:c1:68:25:b9:3f:c4:3e:38:
ec:ef:42:8d:66:2c:72:9a:58:74:fc:96:80:6b:63:48:df:7e:
21:13:37:81:b7:f3:62:80:af:3a:df:1f:9d:6e:6b:18:79:d7:
c5:b5:33:c7:04:73:16:da:35:96:4b:37:40:6a:d3:43:b4:ef:
af:58:a3:8b:8d:c5:19:59:04:14:45:1e:42:4f:4f:74:40:0e:
df:fd:6d:2d:a9:79:66:8f:39:f0:45:48:db:3c:52:7d:55:f4:
7d:63:4d:bf:00:00:1a:eb:d3:4a:29:27:a9:8a:74:5b:f5:42:
3f:f0:62:1e:be:b8:8c:ed:64:88:c5:41:f3:6e:d4:cd:21:de:
18:7e:c9:d6:bc:c0:ca:cb:29:80:df:03:73:f0:65:34:66:5b:
a9:82:ec:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:21 2024 by rpki-client on console-fra.rpki-client.org