Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/DLWX9dkc_diicXfjODcsWvFhXXI.roa
File: DLWX9dkc_diicXfjODcsWvFhXXI.roa (raw, json)
Hash identifier: dTbAkWYb5se4DCD88XmsBLIZaGLfK/kmJwSLDsSSLWQ=
Subject key identifier: 0C:B5:97:F5:D9:1C:FD:D8:A2:71:77:E3:38:37:2C:5A:F1:61:5D:72
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 01856B77B98D056A88889B1478C45514C3EF
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/DLWX9dkc_diicXfjODcsWvFhXXI.roa
Signing time: Sun 01 Jan 2023 03:54:46 +0000
ROA not before: Sun 01 Jan 2023 03:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62167
IP address blocks: 2a0f:ecc0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:b9:8d:05:6a:88:88:9b:14:78:c4:55:14:c3:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Jan 1 03:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cb597f5d91cfdd8a27177e338372c5af1615d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3d:3b:1d:5a:35:2d:f8:9b:ea:64:3c:f4:d2:
8b:d6:f9:ca:09:c8:9f:02:37:4e:a8:b3:d1:b7:00:
c1:ab:c9:9f:21:f9:76:b5:27:3e:af:ac:92:40:25:
17:ee:63:90:2a:3e:d4:7d:2e:82:35:1c:f5:84:81:
b7:3d:40:2a:49:85:80:02:80:a5:f8:a6:ca:85:b4:
4c:c6:d0:f8:cb:77:76:a2:a7:e0:32:08:48:ba:28:
66:34:6f:cd:53:61:df:aa:0f:44:24:d9:ad:76:4d:
b9:f6:01:04:f4:ee:d3:23:c5:fd:80:f8:c9:13:96:
9c:04:6b:32:55:74:b4:93:de:50:3c:bf:fb:88:66:
7b:74:3b:1c:10:f7:01:a0:32:69:f9:dd:ee:c9:ad:
69:12:94:20:bb:30:12:3b:7d:93:cc:93:1e:ee:01:
18:85:d3:38:e0:30:fc:e8:91:4d:68:6a:42:1a:cc:
99:83:62:91:3e:67:da:bf:e7:b8:dc:28:c4:56:f1:
a3:b4:4a:cd:a2:43:a8:43:5e:fa:09:f2:00:45:17:
66:ab:ac:ed:98:c6:62:22:3f:f2:53:c5:89:a1:f4:
ba:dc:9b:51:c7:3c:c1:46:33:ad:c7:94:b8:db:85:
15:a0:7a:43:1d:b9:f8:1c:38:d4:d6:5e:a7:ef:e5:
19:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B5:97:F5:D9:1C:FD:D8:A2:71:77:E3:38:37:2C:5A:F1:61:5D:72
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/DLWX9dkc_diicXfjODcsWvFhXXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ecc0::/29
Signature Algorithm: sha256WithRSAEncryption
56:37:87:b8:c4:a7:df:e5:ae:c0:ec:62:ae:1d:e9:85:98:c8:
40:b7:64:41:7c:f9:b7:3f:a8:f1:15:08:7e:8a:e0:3e:64:9c:
4e:8e:81:01:fb:85:a2:28:4d:04:d5:91:17:d4:f0:b1:46:4d:
38:7d:db:75:ad:5b:b3:17:9f:58:e9:93:56:eb:49:33:8d:a2:
20:60:10:a6:51:d3:1f:37:c6:4d:45:b1:d8:e4:e0:64:b9:c9:
cb:60:06:ac:05:59:90:e1:41:8b:d2:25:3d:b1:20:dd:c7:e1:
44:83:6e:26:6a:04:00:9f:75:c3:af:a7:bb:c4:e0:de:d1:aa:
5b:47:be:aa:57:b0:ec:9b:96:80:58:b6:05:a9:d1:42:5b:9e:
0a:47:03:e0:89:03:7e:06:05:96:08:85:21:31:75:21:e9:a7:
78:d1:04:35:08:f5:e7:05:53:69:c1:dc:cf:d6:4b:69:fc:df:
30:19:db:03:c8:88:cb:9f:41:5d:07:bd:54:f5:f4:a2:84:6b:
d5:8a:18:27:ce:77:01:6d:be:bb:42:f1:1f:56:f5:16:24:57:
74:9f:ed:ce:7b:02:76:d9:a7:57:b2:70:52:a2:3c:5d:3c:e6:
49:80:11:7e:23:d2:f7:0e:30:84:e6:57:6e:e7:65:89:be:7f:
11:31:11:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-ams.rpki-client.org