Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/sEvlTq0aIna-QuFpc9Z_qWv1SZA.roa
File: sEvlTq0aIna-QuFpc9Z_qWv1SZA.roa (raw, json)
Hash identifier: DxtL7oBn4lpwMzgTwZ1dCFLMcBZw+74lgHjIs78wRfM=
Subject key identifier: B0:4B:E5:4E:AD:1A:22:76:BE:42:E1:69:73:D6:7F:A9:6B:F5:49:90
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 01856FF0396FEE89D086063E118B4BCEF91B
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/sEvlTq0aIna-QuFpc9Z_qWv1SZA.roa
Signing time: Mon 02 Jan 2023 00:44:52 +0000
ROA not before: Mon 02 Jan 2023 00:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204896
IP address blocks: 2001:67c:4bc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:39:6f:ee:89:d0:86:06:3e:11:8b:4b:ce:f9:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Jan 2 00:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b04be54ead1a2276be42e16973d67fa96bf54990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:8e:00:94:b2:c0:7d:b2:bb:b3:9a:45:dc:
9a:ce:f6:79:d8:56:34:1e:cd:3d:cd:f5:dd:06:5b:
5d:ae:f7:d8:f9:59:b1:52:e4:2a:ae:fb:55:6a:72:
e7:eb:b5:3a:4e:ea:60:11:17:8c:4e:c6:5a:02:31:
98:a4:a6:89:48:f5:0d:a7:76:2d:cc:7f:ab:6b:39:
e4:f4:1b:dc:11:54:8c:34:ca:c6:5c:d3:a7:7b:78:
04:12:11:5b:33:86:a4:f5:ea:85:9c:d3:1c:13:ee:
90:66:76:9f:c1:a6:2a:ad:6b:f1:1f:58:a2:d6:69:
49:f2:73:28:8d:55:88:fc:78:03:ef:bf:4d:f2:97:
c4:c2:b4:93:40:5f:54:6c:9d:eb:09:bc:da:71:a2:
23:37:f4:4e:cc:de:fd:9b:66:0a:1d:f7:27:ad:aa:
80:bf:d6:b1:24:b8:32:34:8d:ed:63:c6:74:42:2a:
90:88:7a:24:76:b2:dc:1d:61:49:e2:ed:b8:bb:5d:
19:ee:3d:7a:c2:60:e7:5b:29:25:05:2a:12:24:4f:
26:44:df:3c:f5:0b:66:ea:14:da:ca:5a:25:60:76:
b4:ee:84:35:50:2c:ff:bc:12:55:c0:32:dd:2b:e1:
48:72:83:c6:e7:bb:e0:cf:62:eb:cd:85:09:6e:4a:
c5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:4B:E5:4E:AD:1A:22:76:BE:42:E1:69:73:D6:7F:A9:6B:F5:49:90
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/sEvlTq0aIna-QuFpc9Z_qWv1SZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:4bc::/48
Signature Algorithm: sha256WithRSAEncryption
07:dc:a3:83:80:cd:16:ff:7c:f3:08:ac:92:64:93:1e:d7:5f:
c5:db:f8:7e:95:4c:08:ed:6d:af:f0:65:8a:39:10:27:5e:74:
94:f4:80:ad:51:d7:ba:1c:54:59:21:98:74:21:88:99:3f:a2:
eb:87:01:a9:c8:05:43:31:82:39:c7:2c:64:6c:57:62:8a:a1:
fa:14:e5:49:cd:92:04:c6:d0:67:fa:54:13:07:7a:bc:bd:1d:
17:dd:71:79:38:14:ce:43:aa:88:58:15:0e:72:d1:b7:bc:0a:
e6:fe:ad:5e:63:7b:08:c1:53:78:30:5d:14:56:20:b2:08:de:
12:ce:c1:25:ed:67:3b:bd:05:f5:80:26:c6:15:14:81:e9:f5:
7d:55:87:ad:4f:7a:0f:77:0d:16:55:ba:09:53:04:39:fe:19:
09:ad:82:f8:6a:b1:46:b2:e9:2a:fa:ba:25:99:5f:89:f2:67:
a4:b9:f7:18:6d:5c:3f:ec:73:57:71:1e:24:6e:61:4e:a8:45:
e5:3a:68:fe:21:61:27:3b:39:a4:82:51:a6:dc:95:6d:b4:00:
35:73:29:66:21:6d:c8:a8:a6:ff:c3:42:a4:7b:3f:af:bc:ba:
b0:0a:21:e3:5f:a3:5f:92:9b:90:07:db:63:9f:3f:3c:be:43:
dc:87:e2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:20 2024 by rpki-client on console-fra.rpki-client.org