Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/fbf39d-9247-4e07-9e15-39f4ab6ec7e6/1/iflvh3icla38dzbOiffJOoXHF28.roa
File: iflvh3icla38dzbOiffJOoXHF28.roa (raw, json)
Hash identifier: BQL8rBnd7E2FlQfIK/JLImjt9jcmh0FpTzLy7+1tjy8=
Subject key identifier: 89:F9:6F:87:78:9C:95:AD:FC:77:36:CE:89:F7:C9:3A:85:C7:17:6F
Certificate issuer: /CN=a5d954d6db2a1178efbec0d5d959076407cf96ca
Certificate serial: 0188040F44FC51952B181BC572BD5FADA87A
Authority key identifier: A5:D9:54:D6:DB:2A:11:78:EF:BE:C0:D5:D9:59:07:64:07:CF:96:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdlU1tsqEXjvvsDV2VkHZAfPlso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/fbf39d-9247-4e07-9e15-39f4ab6ec7e6/1/iflvh3icla38dzbOiffJOoXHF28.roa
Signing time: Wed 10 May 2023 05:08:09 +0000
ROA not before: Wed 10 May 2023 05:08:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212630
IP address blocks: 2a0b:53c0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:0f:44:fc:51:95:2b:18:1b:c5:72:bd:5f:ad:a8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5d954d6db2a1178efbec0d5d959076407cf96ca
Validity
Not Before: May 10 05:08:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89f96f87789c95adfc7736ce89f7c93a85c7176f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:00:1f:4d:37:a4:78:6a:3e:e2:18:cc:a5:8b:
2f:85:d6:40:81:5f:4c:5f:c1:0e:f0:be:64:59:06:
c7:1f:d4:d1:d1:85:59:46:e3:6f:b0:4f:75:7d:27:
28:cb:4d:c5:90:0b:eb:89:2d:c5:51:b5:bc:58:ba:
3d:e0:b6:5c:5f:99:2b:c9:4d:0e:37:dd:eb:bc:1d:
e6:d8:8c:ef:cd:ae:ad:fd:32:23:b0:67:19:0b:56:
4c:fa:41:13:75:f9:19:f8:73:0a:b1:2d:9e:39:e5:
31:8d:97:8d:07:6f:32:e8:13:47:22:cf:ac:82:19:
05:26:93:e2:5d:7b:18:03:c9:d4:cc:48:f3:52:d2:
55:6d:16:68:4c:6f:76:e3:52:00:a6:dc:ca:15:c7:
19:6f:d1:81:35:9c:d7:7f:71:1f:03:ee:e0:c2:3d:
49:49:66:43:08:e1:9f:99:ff:44:15:3b:eb:bb:ab:
fd:df:d3:f8:ea:45:01:91:ae:c2:13:4d:f2:a2:cb:
a3:4c:f8:0d:18:db:ba:33:24:51:c1:52:7a:55:40:
02:3b:46:e4:37:a9:c6:71:51:ce:a0:41:7b:ca:6a:
e8:8c:ab:ab:1b:21:ce:7e:c1:c2:06:20:19:44:ff:
3b:02:3d:dc:9a:f9:e7:6f:cc:78:ea:87:36:cc:1f:
1c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F9:6F:87:78:9C:95:AD:FC:77:36:CE:89:F7:C9:3A:85:C7:17:6F
X509v3 Authority Key Identifier:
keyid:A5:D9:54:D6:DB:2A:11:78:EF:BE:C0:D5:D9:59:07:64:07:CF:96:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdlU1tsqEXjvvsDV2VkHZAfPlso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/fbf39d-9247-4e07-9e15-39f4ab6ec7e6/1/iflvh3icla38dzbOiffJOoXHF28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/fbf39d-9247-4e07-9e15-39f4ab6ec7e6/1/pdlU1tsqEXjvvsDV2VkHZAfPlso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:53c0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:eb:fc:53:bc:35:22:5f:7a:3c:44:15:51:a3:3b:5d:45:52:
d7:4f:c8:a5:1f:18:97:d7:17:69:96:83:8b:f0:e2:bd:9b:11:
5b:85:25:a7:b4:69:d7:67:ef:cd:46:14:1b:61:a3:56:db:cc:
48:27:3c:3b:4f:51:e0:4e:6c:c6:4b:ed:fa:1a:d5:90:49:ae:
9e:db:c7:60:1a:ae:e9:3f:12:3f:8a:a3:34:89:b0:51:29:c5:
30:16:81:81:fd:4d:8b:b3:73:82:91:45:5f:43:73:f6:77:00:
88:6f:11:48:0f:f3:f7:52:fd:e8:ac:de:37:5d:17:19:f2:ee:
32:16:d1:02:f9:ff:26:58:1a:14:cf:be:21:c3:1b:5b:92:92:
d7:d6:ef:0b:e7:32:74:bb:b7:54:70:b2:78:01:12:28:ef:46:
59:30:ce:81:33:30:e7:10:a6:f6:32:65:14:c8:7e:fd:69:b4:
83:76:85:4c:e9:50:e7:6e:97:36:ce:b8:d4:27:35:a3:3a:cb:
fe:3d:d1:79:ad:6e:a9:3a:3a:24:fc:4f:f6:4a:d4:0f:e7:27:
2c:96:11:f6:a2:46:92:a5:78:6c:f7:29:fc:15:7a:6a:90:40:
3d:bd:af:0f:6b:83:59:5e:3a:85:35:ac:2a:a9:28:ec:f4:85:
f5:fe:73:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:38 2023 by rpki-client on console-fra.rpki-client.org