Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/8qPUMNk19fJDyNGfgpDz7SR1GUw.roa
File: 8qPUMNk19fJDyNGfgpDz7SR1GUw.roa (raw, json)
Hash identifier: 1/19m9Jbgra/+bJod/yxpRxq1iaxgV3tTXt1/5IYS34=
Subject key identifier: F2:A3:D4:30:D9:35:F5:F2:43:C8:D1:9F:82:90:F3:ED:24:75:19:4C
Certificate issuer: /CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Certificate serial: 018570305BD36EDC819B6CEAB34C0A41373A
Authority key identifier: FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/8qPUMNk19fJDyNGfgpDz7SR1GUw.roa
Signing time: Mon 02 Jan 2023 01:54:55 +0000
ROA not before: Mon 02 Jan 2023 01:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49373
IP address blocks: 2a00:1e6a::/32 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:5b:d3:6e:dc:81:9b:6c:ea:b3:4c:0a:41:37:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Validity
Not Before: Jan 2 01:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2a3d430d935f5f243c8d19f8290f3ed2475194c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2e:96:5b:dc:dd:aa:20:65:08:aa:6e:02:c7:
e1:a0:b1:6e:d2:59:39:48:72:30:a8:66:1c:e8:46:
8e:82:2f:12:a1:dd:71:64:7d:9e:eb:cd:d2:d6:b8:
2f:d4:d4:b3:27:98:10:ac:fa:fc:2d:b1:2f:4b:42:
89:52:70:80:66:3a:2d:21:5e:9c:ed:2a:88:9a:a5:
78:e8:3f:28:f6:42:4b:54:e1:ed:57:32:ab:75:3c:
96:12:db:1b:4e:84:8a:9c:f4:c1:39:8b:5e:7a:91:
a3:ff:b5:f3:71:de:12:4c:c4:a3:f7:f2:d7:86:01:
89:ea:05:4e:ef:37:9b:b1:e5:72:88:86:12:10:fc:
67:96:8b:64:0c:72:4b:6d:95:61:4d:1b:85:82:b2:
9f:95:b7:84:3d:ad:65:05:5a:b1:4a:c2:59:c4:60:
e0:3a:92:90:43:e3:18:0e:f2:05:61:d2:46:53:b5:
f2:22:a2:03:06:47:7d:db:22:a9:df:87:56:29:1d:
13:b3:49:8c:aa:e2:2c:fb:6f:95:30:65:32:d2:9a:
b2:7e:58:67:17:f3:3f:20:4e:7c:29:da:1a:fc:3b:
2c:45:76:61:a0:bb:ae:de:22:6d:a8:27:bf:63:d0:
61:12:73:96:eb:39:24:36:aa:db:13:79:7e:a3:33:
3d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A3:D4:30:D9:35:F5:F2:43:C8:D1:9F:82:90:F3:ED:24:75:19:4C
X509v3 Authority Key Identifier:
keyid:FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/8qPUMNk19fJDyNGfgpDz7SR1GUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1e6a::/32
Signature Algorithm: sha256WithRSAEncryption
45:c8:41:48:ee:e5:9a:14:90:de:20:d1:dd:bf:04:48:40:35:
02:29:4e:f4:69:c1:cb:9d:67:93:59:35:99:49:31:74:89:0c:
bf:e7:99:ce:3e:fe:54:27:d6:cd:53:66:a0:39:d0:2c:ed:4b:
05:a1:71:7d:81:e2:65:23:b3:d3:12:eb:be:aa:c7:1d:6d:66:
d6:3d:e1:01:e5:ab:98:75:1a:3a:dc:c5:95:02:c5:9b:57:70:
c2:48:1e:bf:cf:7e:d9:a5:a7:a8:40:f1:cd:4e:2b:bf:78:61:
f4:f1:ae:74:75:a4:17:1b:d8:89:5a:a8:3f:83:ec:7e:61:dd:
1f:da:9f:0a:04:51:de:93:e9:b1:8f:1f:e8:94:34:48:fb:e2:
32:34:ac:fa:28:0c:c6:0c:d5:be:0c:b1:5b:63:a8:e0:0d:b1:
70:3d:2e:12:5f:21:d0:98:8f:65:22:1b:e9:03:fa:5a:c8:75:
43:e9:8d:c2:0a:b7:f3:02:8d:77:b5:65:2b:e2:68:d3:6a:54:
e8:b1:50:ee:25:7b:c5:fe:4b:2b:29:0d:92:0b:58:34:77:18:
35:d6:e0:e2:17:4e:2c:34:20:15:86:49:a4:18:20:d3:c8:a1:
a4:4f:ee:7d:29:b9:66:7c:1e:b6:88:b9:b3:3e:f8:2c:e7:b8:
e2:dd:ea:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:46 2024 by rpki-client on console-ams.rpki-client.org