Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/EMXSezJgWaP-vRVVloEdfo3R11c.roa
File: EMXSezJgWaP-vRVVloEdfo3R11c.roa (raw, json)
Hash identifier: tho6HFKER/qYjgRxOfnZGS0b3E/3OFLWTwbjXRlk19M=
Subject key identifier: 10:C5:D2:7B:32:60:59:A3:FE:BD:15:55:96:81:1D:7E:8D:D1:D7:57
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 01856F5DF3FB0E9C5639E4BA150A11BC2563
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/EMXSezJgWaP-vRVVloEdfo3R11c.roa
Signing time: Sun 01 Jan 2023 22:05:06 +0000
ROA not before: Sun 01 Jan 2023 22:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56867
IP address blocks: 2a02:20c8:1421::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:f3:fb:0e:9c:56:39:e4:ba:15:0a:11:bc:25:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Jan 1 22:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10c5d27b326059a3febd155596811d7e8dd1d757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:65:19:70:9a:c8:f3:2b:6e:76:03:2a:90:f2:
7d:52:44:33:f5:39:8c:65:15:b8:cb:10:52:c2:8d:
b1:8e:21:9f:84:8b:ca:5c:a4:02:53:5e:79:2d:62:
66:04:1b:8b:42:0e:46:dc:af:87:d2:d3:19:eb:5a:
49:26:55:9c:5a:0b:2d:9d:6d:b3:53:ca:b4:b6:c2:
55:e8:f0:be:9d:9e:c9:ee:1a:b2:13:ef:92:8c:f6:
ab:e4:13:b6:f9:b9:1d:6a:9e:c3:b7:e0:bc:94:6b:
bf:8f:f2:fc:80:fd:2c:a8:47:40:22:40:24:d4:9f:
5e:36:e8:eb:f5:cf:10:7c:a2:d3:3c:57:ae:26:98:
d5:e4:37:92:61:ab:e1:bc:d7:97:59:3b:a7:1f:9d:
10:41:83:5c:66:37:ef:62:2d:df:85:28:33:d9:26:
bc:15:82:3d:0d:80:a6:18:6e:17:16:76:21:85:d7:
3d:1d:8f:39:97:b6:34:e4:ae:bd:40:12:1d:12:e2:
36:96:9a:55:92:10:7a:f3:dd:86:f0:d9:06:ee:d8:
40:23:86:b4:e1:c3:b2:fc:56:50:67:41:2c:64:05:
6e:01:0f:78:af:d3:20:ae:b7:3d:d2:99:f9:63:ea:
52:3f:9e:03:82:52:e2:06:57:3e:90:61:bc:f1:43:
b2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C5:D2:7B:32:60:59:A3:FE:BD:15:55:96:81:1D:7E:8D:D1:D7:57
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/EMXSezJgWaP-vRVVloEdfo3R11c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:20c8:1421::/48
Signature Algorithm: sha256WithRSAEncryption
3f:e5:c9:8b:c9:11:79:34:2c:67:65:14:28:dd:23:07:7c:af:
bd:34:86:e8:ee:e4:6c:33:44:29:b4:e2:25:b8:9b:ca:a6:46:
a3:f0:50:0e:76:b8:c5:30:94:52:6a:b9:e9:2f:13:be:d3:3e:
e4:a8:bc:bd:d1:3d:01:f7:bd:2e:48:40:4e:fa:1f:0e:04:10:
3f:ec:70:79:d9:03:a2:29:fc:d9:5a:da:11:d9:d2:94:f6:48:
ce:63:58:86:6f:19:5c:46:dd:36:e0:2c:67:f8:e9:15:82:1d:
e7:5d:e9:fe:84:a4:1f:79:f6:27:b3:ba:55:79:cb:02:1f:39:
d2:76:fa:fa:65:32:34:30:09:91:f8:df:0e:89:94:18:5e:79:
be:c1:07:33:1e:f4:4d:7e:19:86:ad:94:fd:27:01:37:23:93:
2b:1e:66:15:6e:cb:84:d5:cb:84:be:8c:40:10:8d:30:5d:b4:
61:5f:6c:70:e5:8c:e5:e5:7b:d1:b3:02:b8:2c:11:9c:bc:16:
9b:7f:85:fb:0c:a2:69:28:d1:fd:2a:6f:1c:6a:4e:2a:75:a0:
e8:ce:65:95:d0:26:2a:29:ca:c9:5a:58:61:99:c7:f7:4d:6c:
cc:b6:e2:40:cb:62:d1:2b:fa:fe:b7:6c:44:d5:77:65:d6:85:
1c:f6:86:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:32 2024 by rpki-client on console-fra.rpki-client.org