Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/fz9ns2xJHG-_0smOcHB8r-NcVDo.roa
File: fz9ns2xJHG-_0smOcHB8r-NcVDo.roa (raw, json)
Hash identifier: nAojDQ7aLqRgIZjzc0vZA5hNjyvak2mapGBZ9bj4dyI=
Subject key identifier: 7F:3F:67:B3:6C:49:1C:6F:BF:D2:C9:8E:70:70:7C:AF:E3:5C:54:3A
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C540FDA80BB0ABF5036AE5253478444
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/fz9ns2xJHG-_0smOcHB8r-NcVDo.roa
Signing time: Sun 01 Jan 2023 07:55:26 +0000
ROA not before: Sun 01 Jan 2023 07:55:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206499
IP address blocks: 2a0c:da04:c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:0f:da:80:bb:0a:bf:50:36:ae:52:53:47:84:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f3f67b36c491c6fbfd2c98e70707cafe35c543a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:95:06:5f:96:b4:9b:9c:84:4d:52:5f:63:7a:
2e:16:9c:fe:09:77:4f:25:c0:25:bc:1b:2a:6a:65:
e7:44:67:73:65:db:33:6b:46:9f:58:f1:58:25:dc:
3c:f2:cc:b5:e3:12:35:7c:8a:9a:d9:4f:d6:7e:03:
4d:12:05:a7:ed:d6:63:f7:3b:2e:6f:48:a8:ff:22:
c2:28:96:1e:27:1b:b9:ec:d5:ad:1b:46:56:0a:ac:
dd:4e:51:69:b3:0b:90:c3:42:5c:16:28:e3:24:db:
12:e9:36:8c:97:15:b3:59:6c:b9:b9:c6:21:07:31:
4d:dd:fb:0e:16:22:7a:d3:c7:30:4b:f4:2b:8c:0d:
a9:5c:c0:b0:c5:12:4b:3a:fb:a5:bf:00:66:4a:5a:
9b:b1:ce:24:3a:3e:d0:67:b4:62:f4:d4:ef:c5:fd:
8d:38:8f:d9:3b:c1:25:cc:15:4c:21:20:79:6f:59:
b3:8c:be:11:f8:c9:d4:84:8f:1a:cd:7a:99:30:ae:
35:6b:4a:4b:3a:18:47:cc:bd:ac:81:38:27:e2:da:
6d:fd:5b:bd:6e:87:03:f7:19:18:ae:95:a7:72:61:
e1:38:fe:51:03:0b:57:b0:57:eb:31:1d:9c:0d:d8:
80:37:00:2a:47:c7:47:ed:5e:db:03:f5:15:a4:1f:
87:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3F:67:B3:6C:49:1C:6F:BF:D2:C9:8E:70:70:7C:AF:E3:5C:54:3A
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/fz9ns2xJHG-_0smOcHB8r-NcVDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:da04:c::/48
Signature Algorithm: sha256WithRSAEncryption
d0:3f:95:74:14:bd:1d:6d:c6:0b:7e:1a:e6:e8:e7:60:c0:c7:
36:b9:db:63:89:40:17:62:d3:83:bb:74:14:8b:4b:d1:2f:37:
31:ac:cb:66:86:2b:eb:19:13:5d:50:30:22:ca:1a:24:6a:71:
ae:e4:41:0f:18:1e:1f:66:13:c4:29:84:8b:39:26:63:1d:9c:
ce:99:f5:20:60:a2:8a:aa:58:3f:46:79:6d:7c:c1:40:b6:4e:
1e:43:6a:32:ed:84:86:67:77:4b:74:02:02:e1:00:68:80:49:
46:85:92:ba:b3:79:7b:a2:95:f1:dc:56:df:0a:f6:52:bb:f4:
d5:9f:dc:b5:6a:fe:10:6c:5d:bc:21:bb:d3:b8:f6:34:69:54:
c2:ff:33:f7:08:f9:46:1e:38:6e:1d:8f:3b:24:ae:8a:c5:9e:
88:4d:c4:59:63:6c:22:b1:23:0f:dc:b9:4d:54:58:b5:ca:78:
85:2d:15:35:86:2d:c6:79:e1:2e:6b:2c:66:f3:e1:5f:09:5a:
2b:ab:b3:b5:b1:a9:83:30:40:80:6e:5e:97:d9:40:e3:c3:71:
d4:17:7b:27:6f:78:9e:44:b5:d8:db:17:67:72:de:6c:40:e2:
88:5b:71:87:da:71:94:44:72:e1:85:60:31:45:64:7f:8b:27:
ff:2f:40:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:00 2024 by rpki-client on console-ams.rpki-client.org