Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/trD5wEM4YEGxztQ5Nt4OmA0bMh4.roa
File: trD5wEM4YEGxztQ5Nt4OmA0bMh4.roa (raw, json)
Hash identifier: 9E0KV1v+7/7gSE/X0gZPiqlvpgxeexOhNA7UgfCrG6Q=
Subject key identifier: B6:B0:F9:C0:43:38:60:41:B1:CE:D4:39:36:DE:0E:98:0D:1B:32:1E
Certificate issuer: /CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Certificate serial: 01857321EE4351B14B852DC8472CFC3FF2F2
Authority key identifier: D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/trD5wEM4YEGxztQ5Nt4OmA0bMh4.roa
Signing time: Mon 02 Jan 2023 15:38:01 +0000
ROA not before: Mon 02 Jan 2023 15:38:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51559
IP address blocks: 2a06:41c0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:ee:43:51:b1:4b:85:2d:c8:47:2c:fc:3f:f2:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Validity
Not Before: Jan 2 15:38:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6b0f9c043386041b1ced43936de0e980d1b321e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:d7:0b:b9:d3:73:71:b6:3f:09:a7:9d:43:
8d:69:ec:90:67:78:07:fa:b4:49:9d:0a:bd:0e:83:
a5:94:82:83:51:4a:4e:2b:4d:ec:e1:8f:b8:f8:94:
08:f1:2c:b6:ff:67:73:2f:ca:79:f8:7e:0e:8a:cf:
95:57:44:b4:8d:02:1c:7f:61:71:06:5e:47:68:48:
c3:35:f3:ae:f7:3a:a5:1b:2a:5b:c5:03:c0:ca:35:
f5:cf:63:f9:88:ca:d6:63:aa:ee:c2:e2:cb:a8:7e:
aa:f1:6c:90:66:51:05:d9:dd:1f:0a:5c:48:70:68:
cd:d0:03:f7:3c:0e:b2:99:a5:ef:a2:e0:5d:36:67:
ff:28:9a:2b:a2:b3:0d:92:44:83:69:e6:50:e8:61:
f4:6e:74:63:20:61:8c:b1:a7:25:ce:52:57:af:8f:
5d:c8:ca:f5:8d:76:f8:24:f2:9c:e6:02:46:68:77:
9f:8b:00:a5:2b:66:6b:ff:81:af:c0:ac:b4:1e:10:
e5:b8:6e:60:95:6c:89:f6:22:c7:c4:35:a0:a7:7f:
a6:fe:d5:cb:1b:de:75:66:9b:27:f1:c1:67:59:95:
2e:d1:08:12:fd:ba:03:82:6f:92:ff:55:bf:7c:15:
78:29:d7:44:3e:99:53:2b:08:50:bd:e2:d7:51:09:
88:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B0:F9:C0:43:38:60:41:B1:CE:D4:39:36:DE:0E:98:0D:1B:32:1E
X509v3 Authority Key Identifier:
keyid:D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/trD5wEM4YEGxztQ5Nt4OmA0bMh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:41c0::/48
Signature Algorithm: sha256WithRSAEncryption
8e:1d:a5:85:79:05:c4:56:9f:fc:e0:11:80:53:be:72:41:52:
b3:9a:9e:b5:d6:f4:d1:c7:91:e1:0f:d1:a3:f5:2e:95:17:79:
2e:ca:e3:bb:89:84:f6:71:62:9a:6d:75:c6:93:36:26:f4:40:
a2:58:14:5b:fc:b6:00:21:69:87:97:02:91:4a:64:f5:ff:78:
5c:5e:5e:e9:0a:57:e8:c7:10:49:2f:3a:11:d6:a8:44:35:90:
4e:47:1b:e6:7f:30:80:19:4d:58:50:7b:b7:1b:4a:ea:6c:f7:
b4:55:e6:14:9f:cb:aa:31:4a:8c:a0:08:52:3b:f6:b9:6e:36:
86:b5:13:2e:ef:0c:cb:b5:63:1e:fb:29:9b:df:da:fb:5e:43:
a4:74:45:3a:43:d1:1d:90:f7:a8:4a:3a:73:23:2a:a4:5e:8e:
82:60:a7:08:ba:f9:ce:01:10:18:5a:82:ea:05:9f:a3:a9:48:
b2:4e:f6:af:79:cc:dd:75:d4:07:51:f1:77:30:f2:33:86:d3:
6e:65:5b:9a:67:18:19:a3:ca:87:af:fd:f0:78:53:2a:17:84:
46:a1:84:70:75:15:7c:cc:88:a6:96:8e:81:17:ee:73:36:5a:
9e:b4:fe:9e:b2:d6:0b:66:1e:df:76:a2:17:aa:84:a6:cd:f1:
84:d1:a9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 5 12:34:05 2023 by rpki-client on console-fra.rpki-client.org