Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/66368uUEWUVeU7ik5DBUOzlnJ1k.roa
File: 66368uUEWUVeU7ik5DBUOzlnJ1k.roa (raw, json)
Hash identifier: rcvTbqN2DPlBopEQ0qtRhkTU6qK5YBEZK/0Vk8Yallw=
Subject key identifier: EB:AD:FA:F2:E5:04:59:45:5E:53:B8:A4:E4:30:54:3B:39:67:27:59
Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Certificate serial: 018B2D7B480535BFEE24EA715C6DBF844F54
Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/66368uUEWUVeU7ik5DBUOzlnJ1k.roa
Signing time: Sat 14 Oct 2023 09:18:55 +0000
ROA not before: Sat 14 Oct 2023 09:18:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216176
IP address blocks: 2a14::/32 maxlen: 32
2a14:0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 14 Oct 2023 09:36:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2d:7b:48:05:35:bf:ee:24:ea:71:5c:6d:bf:84:4f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Validity
Not Before: Oct 14 09:18:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebadfaf2e50459455e53b8a4e430543b39672759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:db:39:be:f9:cf:cf:8c:4d:41:1d:8d:07:90:
e0:60:7e:20:9d:2e:56:6e:ea:51:1f:af:51:df:1b:
14:19:e5:1b:cb:12:7a:83:9e:15:c3:8c:cd:2a:01:
c8:92:42:d3:ba:fc:7e:25:09:e4:8b:3c:65:4c:c3:
e5:b1:06:58:80:02:52:07:0a:f3:74:50:a8:ec:10:
1c:1a:ff:40:d5:45:b7:ba:a4:50:f9:2f:27:0a:7f:
5c:59:5b:7c:a7:b6:be:8d:ea:98:9b:9b:03:16:61:
69:32:e9:c9:25:79:61:63:09:f2:31:c8:d8:43:cb:
d8:5c:1e:7b:6e:4c:be:3f:72:30:ea:4a:c5:20:e8:
38:fe:0c:35:13:c5:16:8b:2e:75:80:9f:92:65:26:
71:bb:82:8d:48:14:ff:e1:b7:a4:b0:d6:c1:32:5a:
aa:8f:84:8b:33:8a:5d:5c:f8:16:8a:63:43:7f:c5:
27:c0:21:70:6f:9c:98:43:56:04:ec:c6:79:4d:f7:
09:4e:c1:28:32:a8:4d:21:64:bf:68:09:94:75:4b:
e6:b0:4e:21:c5:42:42:a6:00:0a:4f:81:fa:1d:f7:
c2:79:aa:3e:03:1d:27:b1:4c:41:7e:18:a5:c3:d7:
8d:b1:36:ff:9b:a8:25:ff:6b:aa:02:76:54:66:bd:
34:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AD:FA:F2:E5:04:59:45:5E:53:B8:A4:E4:30:54:3B:39:67:27:59
X509v3 Authority Key Identifier:
keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/66368uUEWUVeU7ik5DBUOzlnJ1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14::/32
Signature Algorithm: sha256WithRSAEncryption
3e:0a:be:f6:cb:fd:e9:71:91:c1:16:ff:26:01:77:ab:92:53:
8f:64:6a:74:13:d6:b1:da:37:0d:1d:fa:49:57:77:2f:d2:c8:
6f:be:5f:68:3e:29:05:22:27:f7:8e:47:82:a0:59:a6:e3:64:
47:38:c1:00:58:51:4c:6c:60:2a:b8:fa:99:66:95:2f:fc:5a:
0a:da:b6:ad:b8:de:f2:a7:89:c3:46:88:56:10:90:ee:ca:2e:
88:df:16:02:2e:ad:29:63:4d:e3:ca:66:05:fe:6c:1a:94:bc:
51:5d:d2:a3:92:1c:ab:bc:32:62:71:a7:50:55:9d:1f:0e:18:
56:85:25:8e:5a:36:82:d5:0d:58:ec:f9:c3:7e:5a:74:81:64:
08:e3:f1:c2:57:ef:c0:59:9e:a6:d9:9c:a2:8e:b7:cb:0e:e7:
b1:1d:5c:dc:98:4e:96:ec:c6:f5:d1:8e:5b:b3:2c:1d:ee:dc:
28:9b:08:36:b3:bc:0d:09:7d:6a:48:9f:6f:79:74:b3:05:f7:
4d:73:54:b4:9f:50:6f:a3:2d:36:b0:af:05:55:74:ff:55:f5:
b0:70:a5:46:91:56:7a:9c:63:d8:b6:02:af:13:47:74:20:e1:
ff:85:d2:f4:15:0f:68:2a:b3:7d:63:42:e2:19:51:8e:4a:70:
fe:8c:a7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org