Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/ba6f4182iFocbYTIjmNeT9w8e2c.roa
File: ba6f4182iFocbYTIjmNeT9w8e2c.roa (raw, json)
Hash identifier: lllfohNGorh9gcZgmQAyqNYqOAo+MKR5sPYdjStHZes=
Subject key identifier: 6D:AE:9F:E3:5F:36:88:5A:1C:6D:84:C8:8E:63:5E:4F:DC:3C:7B:67
Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial: 0185710C202A9C2259D27ACA9F92722464A1
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/ba6f4182iFocbYTIjmNeT9w8e2c.roa
Signing time: Mon 02 Jan 2023 05:54:58 +0000
ROA not before: Mon 02 Jan 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 2a0c:8fc3::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:20:2a:9c:22:59:d2:7a:ca:9f:92:72:24:64:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Validity
Not Before: Jan 2 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dae9fe35f36885a1c6d84c88e635e4fdc3c7b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4b:bb:c9:d2:54:04:10:f4:ee:64:48:69:75:
4c:a8:5f:03:73:df:96:5c:92:22:4d:57:b7:8c:65:
7b:4c:b7:6e:0b:8f:aa:eb:d1:a5:bc:39:33:ff:da:
5b:44:d9:33:30:bf:9a:f3:57:d1:c2:54:54:e1:c8:
6c:6e:52:83:dc:18:aa:3d:b9:78:98:ab:b5:6a:5d:
4d:c6:dc:37:cb:b9:5c:b9:3a:16:bd:9f:29:b1:7f:
e0:93:98:a7:c1:fd:2d:03:22:bc:1d:fb:8c:b7:c0:
04:35:6e:22:02:17:e1:1c:44:c6:52:3b:75:87:ba:
e2:8d:e2:bd:7b:77:63:aa:52:a4:5a:d4:5d:2c:88:
c7:d6:36:d1:02:c1:f2:c2:1d:eb:eb:f5:82:39:b6:
0b:e0:da:30:4a:ab:35:5e:12:19:a3:8f:85:4c:5a:
8d:75:f3:71:d0:84:d2:a3:59:20:90:d3:73:9e:21:
42:50:a9:8f:30:65:41:81:d9:72:c3:ea:bd:0c:18:
76:e2:a3:8d:6a:a5:05:59:d0:a1:7a:80:83:ee:e7:
6b:56:26:ce:05:1c:0c:74:2d:39:8d:7d:bb:71:0f:
5b:3b:df:8f:5b:6d:bc:66:e8:e3:02:ec:ed:fd:22:
25:3e:fc:c4:66:d9:f8:f2:87:b9:3d:06:58:ce:9f:
31:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AE:9F:E3:5F:36:88:5A:1C:6D:84:C8:8E:63:5E:4F:DC:3C:7B:67
X509v3 Authority Key Identifier:
keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/ba6f4182iFocbYTIjmNeT9w8e2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8fc3::/32
Signature Algorithm: sha256WithRSAEncryption
67:98:bf:88:66:dd:37:bb:de:99:d9:21:d1:0e:cf:1a:9e:99:
c7:ed:b7:7b:f6:ce:04:d2:ea:60:9e:2c:de:7b:83:17:59:ef:
1b:c9:b9:7a:99:a9:6a:1f:60:1f:08:33:2b:d7:5a:b8:8a:fb:
bf:81:3e:e9:4d:9c:76:a9:c6:91:f8:58:00:6b:7d:b1:fd:40:
d7:f0:53:3f:45:cd:d0:d9:ef:2b:c7:41:c4:3d:3a:d4:82:09:
8b:f7:de:7f:02:c1:a2:4e:40:03:67:56:44:96:eb:83:9b:cd:
38:2e:72:d3:85:f9:3a:37:2a:a5:ad:44:c0:f5:a8:c7:a4:a1:
83:55:44:c1:97:ff:ed:10:2b:8e:51:8b:bb:94:2b:28:3a:15:
5c:9f:1e:1e:f2:83:c3:bd:0a:bc:e1:e7:ea:f2:65:02:5d:0e:
3b:7c:54:b6:04:f0:5b:d8:d4:b3:db:b2:39:23:8a:57:e7:a7:
ac:9c:dc:b8:79:f1:0c:d4:2e:08:49:33:4d:73:66:6b:57:89:
16:aa:bc:ce:4f:14:3c:75:f6:fb:29:2b:4d:62:e6:98:aa:c3:
9e:7f:ad:bf:77:51:cf:64:8e:f0:8c:b0:f5:16:1b:b8:96:6e:
82:ee:bf:b0:fa:1d:65:92:ff:07:8e:7e:55:80:d3:32:13:98:
95:da:3f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:13 2024 by rpki-client on console-fra.rpki-client.org