Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/6zKbsL5mA5OWwMcDf6fzcREULSk.roa
File: 6zKbsL5mA5OWwMcDf6fzcREULSk.roa (raw, json)
Hash identifier: KUHUMxy2PYEGmncVaChLhPzQPfk/c6HrIRsea0CLlWg=
Subject key identifier: EB:32:9B:B0:BE:66:03:93:96:C0:C7:03:7F:A7:F3:71:11:14:2D:29
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018571D7BCCD4002E7DDA5128390E8FE0C3C
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/6zKbsL5mA5OWwMcDf6fzcREULSk.roa
Signing time: Mon 02 Jan 2023 09:37:22 +0000
ROA not before: Mon 02 Jan 2023 09:37:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 2a04:9a04::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:bc:cd:40:02:e7:dd:a5:12:83:90:e8:fe:0c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 2 09:37:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb329bb0be66039396c0c7037fa7f37111142d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:44:23:1c:c0:ac:98:50:b9:68:09:91:4e:ff:
db:c9:5f:35:ae:a1:99:46:f7:60:07:4e:f6:30:2e:
37:ac:f7:d8:ad:8c:e7:c0:ed:86:6f:31:00:a4:f9:
8e:fb:f4:7b:bc:00:6e:a2:e4:0d:e2:75:55:15:99:
a5:cb:a8:8a:8e:02:d9:6f:e9:33:dd:a3:98:9f:f2:
40:c8:ea:37:a3:4f:17:0b:82:4b:80:17:11:20:81:
ab:ba:5c:78:52:8d:85:b7:20:18:88:68:bb:cc:e4:
2a:f3:df:05:5e:a6:57:2c:54:45:b7:18:d2:fa:3a:
50:e4:0c:ae:14:85:07:ae:5a:4d:fd:73:3f:d6:76:
df:03:ce:3d:0a:b0:38:d6:38:f9:3f:3d:03:be:e4:
18:df:51:75:98:0e:88:d1:70:c3:d8:02:6f:63:49:
cb:1c:a8:99:34:81:34:41:00:72:a3:10:0e:6b:55:
50:a5:7b:75:57:b4:0b:3a:74:0e:74:48:25:66:df:
aa:36:3a:c9:c3:c2:15:03:db:74:df:57:bb:21:ee:
65:c4:03:2c:9d:76:4f:40:6d:7f:97:5d:ee:e2:ee:
2f:f3:c2:1f:bb:a0:b1:c9:d0:17:c1:5b:dc:da:a1:
c3:6f:b2:38:2e:c1:0b:bf:f0:6c:2f:f2:d7:f8:bb:
66:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:32:9B:B0:BE:66:03:93:96:C0:C7:03:7F:A7:F3:71:11:14:2D:29
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/6zKbsL5mA5OWwMcDf6fzcREULSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9a04::/32
Signature Algorithm: sha256WithRSAEncryption
51:a3:9a:e9:c8:d2:f7:48:9f:34:df:1e:00:08:61:bb:27:b4:
ec:d1:fb:9d:ef:42:75:af:6f:3a:f4:b3:30:cd:50:53:66:fa:
87:fa:55:81:70:7f:40:11:5f:17:0e:76:3f:5a:c8:5f:c6:48:
90:b6:0a:f5:c7:d9:72:07:2a:46:4f:c9:4e:a0:8d:a0:7b:90:
d3:95:cc:55:8b:7d:2b:fc:e1:45:42:56:2d:05:ee:e3:40:68:
23:ea:7f:b5:58:72:c8:5d:0e:19:98:06:81:0a:ec:c6:a0:27:
b6:5d:21:53:cf:6e:b1:10:87:d9:03:30:93:7c:e2:1b:45:92:
14:2b:31:9c:93:3d:2a:d8:4a:53:9d:89:c7:ef:48:62:6e:38:
3c:66:9c:26:2c:75:6c:76:0e:67:8c:b3:1d:02:cf:13:bf:0a:
02:fc:d4:a1:2f:5e:19:87:5c:7f:cb:1a:82:1e:a0:72:d8:18:
4f:e4:9c:62:1d:b8:70:1a:a3:48:db:17:29:b6:c9:79:17:ee:
04:d5:fb:8b:9c:61:a5:a5:d5:de:8a:9b:71:95:99:fb:4f:b4:
c0:a5:06:ee:b1:1c:b5:5f:8a:96:d8:aa:1b:28:79:79:b5:e8:
99:2d:49:48:f0:29:05:b1:59:00:af:4c:73:0b:72:ee:f6:ff:
8a:1b:96:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:31 2023 by rpki-client on console-fra.rpki-client.org