Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/2mAmQVyeOCGOiz2miHEBl-bdiDQ.roa
File: 2mAmQVyeOCGOiz2miHEBl-bdiDQ.roa (raw, json)
Hash identifier: uUyLmvRN/6LN5TCQva1XuPUjyl8N/0JDf470tt2WqA4=
Subject key identifier: DA:60:26:41:5C:9E:38:21:8E:8B:3D:A6:88:71:01:97:E6:DD:88:34
Certificate issuer: /CN=02da4cd044c6e9873ac8fd9cfd30f1ecb3d80bca
Certificate serial: 0185729F068AC544EE01EEB11404759FB2D9
Authority key identifier: 02:DA:4C:D0:44:C6:E9:87:3A:C8:FD:9C:FD:30:F1:EC:B3:D8:0B:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtpM0ETG6Yc6yP2c_TDx7LPYC8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/2mAmQVyeOCGOiz2miHEBl-bdiDQ.roa
Signing time: Mon 02 Jan 2023 13:15:02 +0000
ROA not before: Mon 02 Jan 2023 13:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59891
IP address blocks: 2001:67c:17a4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9f:06:8a:c5:44:ee:01:ee:b1:14:04:75:9f:b2:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02da4cd044c6e9873ac8fd9cfd30f1ecb3d80bca
Validity
Not Before: Jan 2 13:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da6026415c9e38218e8b3da688710197e6dd8834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f0:bd:1b:9b:88:82:98:f0:81:74:0a:a0:4a:
09:4b:93:e6:2c:ac:df:8f:b7:73:54:41:f1:39:e5:
28:22:af:e9:dd:72:b2:52:c4:36:9b:34:37:3b:19:
e5:ec:a0:13:2e:e4:b6:49:aa:ff:47:e2:a9:1d:88:
81:88:2c:0b:6d:eb:9e:21:ac:2f:6f:7a:b6:09:5b:
a1:09:fb:d3:d8:c9:5e:64:2d:b4:b8:f2:b0:90:1d:
9b:36:e6:a6:18:7e:33:50:3a:e8:fe:60:e2:cd:24:
b5:03:a6:db:9f:29:0d:0f:89:79:13:58:5c:73:f9:
4c:b1:df:b9:51:1d:c6:07:19:46:d1:a6:41:dd:2e:
58:42:4b:90:8c:f6:40:a0:3a:f7:18:e0:d9:f6:e9:
8c:55:4b:36:3b:37:c5:cf:21:8a:db:85:75:e6:01:
97:a0:38:d0:5d:e0:c1:a0:c8:67:c9:b9:6c:b9:47:
5e:22:8b:e2:54:fd:30:c8:74:42:00:63:4a:30:e7:
30:c7:65:30:0c:31:8c:c2:01:14:47:23:a6:98:30:
f0:fa:96:c2:42:1b:bb:5c:88:b2:0b:3e:6c:d3:03:
72:a9:66:a6:4c:b3:58:25:37:ba:08:25:01:0a:44:
b2:d4:3d:38:1a:f0:ac:eb:4c:a9:f7:63:c3:2f:9f:
65:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:60:26:41:5C:9E:38:21:8E:8B:3D:A6:88:71:01:97:E6:DD:88:34
X509v3 Authority Key Identifier:
keyid:02:DA:4C:D0:44:C6:E9:87:3A:C8:FD:9C:FD:30:F1:EC:B3:D8:0B:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtpM0ETG6Yc6yP2c_TDx7LPYC8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/2mAmQVyeOCGOiz2miHEBl-bdiDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/29373e-c309-4c32-a606-d692c3729c48/1/AtpM0ETG6Yc6yP2c_TDx7LPYC8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17a4::/48
Signature Algorithm: sha256WithRSAEncryption
1d:f0:96:a4:54:37:40:3c:e8:5f:1a:26:14:79:e7:b3:d6:e5:
1e:e8:2e:37:10:3b:44:e8:da:66:2b:1b:76:57:99:0a:5b:7c:
ca:81:04:b8:6f:30:79:aa:4a:54:0f:b2:b6:9d:0d:6c:90:ac:
24:37:0f:b7:3d:86:00:53:c1:97:79:7a:6a:26:20:b4:0c:24:
a4:e3:9b:9d:12:f2:cd:53:12:68:35:13:fd:b2:f6:7f:2f:a0:
55:e7:c5:07:14:18:ca:2b:e5:f2:58:bc:28:51:48:11:4e:01:
26:e5:37:42:81:65:bd:55:d9:ad:25:a0:ab:d9:bc:bd:94:2e:
e4:94:d3:50:e1:69:75:8b:4d:d8:fc:fa:cf:01:d9:a3:b1:c5:
4b:e1:55:75:ee:fb:90:36:47:60:8b:be:33:5f:8a:5f:b0:0a:
26:aa:e6:6b:13:46:30:66:e3:9b:87:1c:4a:5c:db:7c:2c:52:
7e:6e:f8:9b:81:d7:5e:7f:11:0a:19:ab:2d:87:b0:5e:ce:c7:
ea:0c:ca:9b:9d:57:f1:73:64:c0:52:de:d9:28:6b:40:04:0e:
7c:2c:39:12:2c:a7:b4:e7:10:9b:0b:10:a2:95:af:70:4c:90:
54:c6:2c:4f:1e:1a:c8:4a:70:a8:2a:71:0b:e3:0f:3a:16:8b:
12:50:50:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:27 2024 by rpki-client on console-fra.rpki-client.org