Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/4sgfuJEL0Z8S8cB36RzoeWKO6bA.roa
File: 4sgfuJEL0Z8S8cB36RzoeWKO6bA.roa (raw, json)
Hash identifier: KizLMRnHqJevddW4ipM9TkEEl7fTu3iTBIiyZ6emxOk=
Subject key identifier: E2:C8:1F:B8:91:0B:D1:9F:12:F1:C0:77:E9:1C:E8:79:62:8E:E9:B0
Certificate issuer: /CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Certificate serial: 01866F9888167B41EECC89D22F8388D896EC
Authority key identifier: FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/4sgfuJEL0Z8S8cB36RzoeWKO6bA.roa
Signing time: Mon 20 Feb 2023 16:11:52 +0000
ROA not before: Mon 20 Feb 2023 16:11:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207168
IP address blocks: 2a00:1e68:125::/48 maxlen: 128
2a00:1e68:98::/47 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6f:98:88:16:7b:41:ee:cc:89:d2:2f:83:88:d8:96:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Validity
Not Before: Feb 20 16:11:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2c81fb8910bd19f12f1c077e91ce879628ee9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:61:0b:59:04:ff:e5:d3:b4:be:eb:bc:be:d4:
d9:42:db:70:8c:1c:35:f7:ff:d1:69:81:f2:8c:5b:
c4:6a:97:1d:09:ba:3e:89:95:8a:58:53:57:66:2d:
89:02:9c:40:f7:3e:40:aa:3b:69:0f:3a:f8:03:06:
dc:91:8b:5d:6f:6c:3b:7b:92:89:59:6c:f0:d1:02:
98:b5:57:b8:cf:ef:1e:16:5c:15:11:ee:d1:bd:ba:
8c:6c:aa:18:ea:a9:04:1d:a2:16:22:2f:e0:ce:c9:
e2:92:42:3b:4a:1d:71:b0:6d:54:3a:d1:e1:bb:aa:
13:14:53:c7:21:6c:e7:a3:30:f3:42:f8:0f:c1:f4:
5a:c4:3f:ec:bc:4a:36:e5:d8:15:3a:b3:8f:48:64:
cd:2e:d0:49:39:f6:db:b9:22:33:bb:1b:6a:f0:0f:
9b:a4:56:07:a6:ca:f7:f1:95:ca:37:76:d2:5f:1b:
bc:f7:e3:0c:3c:e4:c1:2c:70:dd:e1:09:70:01:88:
b3:29:69:06:6c:73:c7:1a:07:27:11:33:de:0c:72:
1d:f8:f6:58:94:a2:c7:3b:d8:f9:88:a4:87:96:44:
97:0b:7d:5c:d5:a3:13:0d:e4:56:3b:17:42:16:3d:
3f:e1:b3:87:4e:47:82:85:ac:46:65:d3:c6:8a:0b:
d8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C8:1F:B8:91:0B:D1:9F:12:F1:C0:77:E9:1C:E8:79:62:8E:E9:B0
X509v3 Authority Key Identifier:
keyid:FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/4sgfuJEL0Z8S8cB36RzoeWKO6bA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1e68:98::/47
2a00:1e68:125::/48
Signature Algorithm: sha256WithRSAEncryption
7f:fd:1f:11:d2:12:f0:1b:dc:ba:70:18:e4:f5:a8:45:c7:70:
0c:f2:c4:7b:dc:77:8f:96:15:e8:a3:d6:bd:c8:7f:64:76:55:
ca:29:58:cc:91:b3:ae:70:15:b2:e6:a5:57:e0:bd:93:e5:70:
c2:bc:4a:df:89:93:b5:9a:8f:5e:7f:23:e7:80:fe:81:65:52:
46:4a:04:1e:6b:7c:a8:a3:ed:f4:39:70:00:4a:c5:4b:ab:ba:
b9:9c:d7:11:94:44:0f:c6:11:14:8e:3d:b9:e6:f1:a8:4c:56:
37:05:da:61:1e:04:97:b6:e6:1c:6b:9c:6f:29:f5:84:50:00:
3b:d9:75:b2:ba:41:90:ef:21:ee:bd:f2:82:e8:8c:14:97:49:
98:06:61:7e:16:2a:a5:76:e9:60:b9:13:ac:69:c6:3b:11:ab:
35:8d:ca:a9:61:ea:b6:96:55:0a:25:ee:dc:32:57:3f:96:1d:
b5:0e:21:68:19:5c:d4:58:01:c4:60:7d:e5:6f:1a:d9:70:84:
34:6d:88:e9:7c:dc:47:c3:49:be:ce:e4:51:e1:22:70:40:37:
d5:5a:21:34:22:78:de:53:d1:65:bf:58:fc:c1:fa:18:d4:ef:
d2:79:1c:aa:1f:bf:a6:f6:db:02:1f:31:bf:a9:d6:fd:86:c3:
bb:03:69:26
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:46 2024 by rpki-client on console-ams.rpki-client.org