Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/sSOeEMXvmSCmCA-_5WdqH1Z8udw.roa
File: sSOeEMXvmSCmCA-_5WdqH1Z8udw.roa (raw, json)
Hash identifier: KrvWS6faYDmX5T9az3q8yHcjkfIa0HSwHvFTCajb3Mg=
Subject key identifier: B1:23:9E:10:C5:EF:99:20:A6:08:0F:BF:E5:67:6A:1F:56:7C:B9:DC
Certificate issuer: /CN=fa630c3d23c6046c2f1a7e0c8fccbd83e20ed4c7
Certificate serial: 01856B6EA9788473E19426C90AD8E6DF841D
Authority key identifier: FA:63:0C:3D:23:C6:04:6C:2F:1A:7E:0C:8F:CC:BD:83:E2:0E:D4:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-mMMPSPGBGwvGn4Mj8y9g-IO1Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/sSOeEMXvmSCmCA-_5WdqH1Z8udw.roa
Signing time: Sun 01 Jan 2023 03:44:52 +0000
ROA not before: Sun 01 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3399
IP address blocks: 2001:678:5d8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:a9:78:84:73:e1:94:26:c9:0a:d8:e6:df:84:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa630c3d23c6046c2f1a7e0c8fccbd83e20ed4c7
Validity
Not Before: Jan 1 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1239e10c5ef9920a6080fbfe5676a1f567cb9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cb:f1:a9:dd:94:07:4e:6c:3e:0a:15:2b:38:
0e:5d:9e:cd:38:59:66:86:fa:10:3f:50:c4:b6:a9:
77:c3:cf:a8:39:75:2a:68:59:c5:73:95:6f:d4:86:
50:94:a2:19:fa:9a:71:c2:c6:25:fc:f9:63:01:c5:
1b:b2:49:28:68:da:5f:d3:5e:76:99:cf:12:84:23:
13:4f:36:c2:f5:2e:87:62:1c:06:2b:63:c0:2a:58:
16:36:d4:d9:c8:6f:51:ec:5a:21:9d:a4:08:e5:2b:
d2:49:09:85:98:66:67:fe:b6:5b:6c:d1:a1:9d:17:
5a:81:c5:2e:8e:05:df:e1:fe:e8:fb:d8:e8:6a:13:
16:2d:6f:fa:cc:10:9f:31:1b:1d:56:9a:0d:15:c0:
8f:40:5f:93:60:46:12:e3:d1:c0:2d:00:4f:1f:10:
07:ee:ff:13:9e:47:9c:57:c1:7b:91:74:70:8a:35:
19:a6:e0:95:2d:56:a8:6a:36:cd:42:f5:ce:23:32:
a6:4a:0b:39:43:f2:04:74:15:33:dd:43:93:60:0e:
38:d3:72:f1:8e:ec:45:01:4e:2a:e9:fb:bf:1a:f1:
70:7f:2d:18:d7:e5:0e:c7:03:48:8a:b6:1b:d6:73:
1e:5f:1c:bf:35:9c:f3:b7:0e:8f:1c:27:b3:d3:fa:
23:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:23:9E:10:C5:EF:99:20:A6:08:0F:BF:E5:67:6A:1F:56:7C:B9:DC
X509v3 Authority Key Identifier:
keyid:FA:63:0C:3D:23:C6:04:6C:2F:1A:7E:0C:8F:CC:BD:83:E2:0E:D4:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-mMMPSPGBGwvGn4Mj8y9g-IO1Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/sSOeEMXvmSCmCA-_5WdqH1Z8udw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/1-mMMPSPGBGwvGn4Mj8y9g-IO1Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:5d8::/48
Signature Algorithm: sha256WithRSAEncryption
58:09:2c:30:79:40:98:1e:56:e8:74:b0:71:c5:fd:2e:d8:05:
c6:88:36:bd:e2:3c:f3:5a:aa:19:88:17:4d:5e:06:4a:f3:12:
84:3c:5b:28:d3:77:f5:45:7c:6b:71:ef:d3:02:fd:7a:a6:41:
63:d1:5f:ca:89:43:76:32:5b:94:01:1d:d5:76:4d:ab:b0:04:
0d:f1:75:3a:cb:25:6e:68:25:72:4f:10:9c:fc:9f:c3:c1:a0:
e8:a1:b5:21:1f:b8:52:aa:a1:a2:fe:51:97:05:81:91:78:9d:
ba:74:fb:c3:30:04:51:a9:f6:8b:a2:13:1d:4a:8b:e6:2c:cb:
cd:23:ba:ac:98:37:7d:9f:41:b2:1f:f8:5e:c7:1b:34:02:64:
08:81:e0:f7:86:04:7d:dd:72:43:62:1b:67:3c:87:03:d2:4c:
a1:83:0f:9b:68:18:da:52:8f:b7:ac:03:0d:f4:0b:91:bf:af:
34:13:4e:e9:6b:29:5a:72:0c:4a:ba:bb:fd:d9:67:38:0d:71:
9a:c3:7e:5d:dc:c5:d1:75:40:2d:b7:a2:0c:8e:22:c0:2e:8b:
cc:95:2c:c0:4c:71:cc:64:b2:a6:4d:86:c2:87:38:ef:e4:cf:
0e:cf:f2:0b:d3:f1:28:3b:5f:5b:46:34:39:5d:5d:f9:59:ef:
3e:29:0b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:50 2024 by rpki-client on console-ams.rpki-client.org