Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/A-ojkqNmvyjjJNsEwb5LUJqJaWM.roa
File: A-ojkqNmvyjjJNsEwb5LUJqJaWM.roa (raw, json)
Hash identifier: S6WRUqH7jivuiecqvcb0Y0ucK3U2HiZI5UpUK3n3Y08=
Subject key identifier: 03:EA:23:92:A3:66:BF:28:E3:24:DB:04:C1:BE:4B:50:9A:89:69:63
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 01856E666C1A4B43C2056C74ABDE62E89D56
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/A-ojkqNmvyjjJNsEwb5LUJqJaWM.roa
Signing time: Sun 01 Jan 2023 17:34:44 +0000
ROA not before: Sun 01 Jan 2023 17:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2613
IP address blocks: 2a02:2528:2613::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:6c:1a:4b:43:c2:05:6c:74:ab:de:62:e8:9d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Jan 1 17:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03ea2392a366bf28e324db04c1be4b509a896963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fb:9b:5d:9e:3c:4f:ed:b5:44:cd:b7:41:1c:
26:fd:e7:8a:83:a8:c1:75:9e:1d:05:82:4e:5e:77:
2c:f9:d7:6f:b4:45:f5:60:90:7c:2f:86:00:46:e6:
a1:3f:0d:3a:5f:07:4c:ed:8e:09:15:99:16:53:d3:
92:54:07:d0:23:e2:c2:f3:d0:fa:ec:4e:ab:38:ec:
15:1d:9f:74:e4:a2:69:42:ef:1f:4e:08:15:a8:28:
57:87:b3:9a:2c:49:15:e5:44:b8:b3:98:cb:86:90:
ce:05:71:57:11:42:37:42:09:a6:2f:4f:ec:d3:19:
89:d4:e1:bc:51:0b:53:62:b1:15:81:47:51:16:6c:
ed:b8:f1:51:71:57:1a:3e:11:fd:5b:80:0b:ab:74:
5e:18:27:ba:91:d9:b1:b9:92:1e:90:2a:89:fa:82:
cb:be:96:be:60:38:39:44:8e:96:18:70:22:35:70:
77:5f:3a:37:3c:2d:42:19:78:80:25:4c:6b:5e:e5:
31:af:f8:e7:80:c5:2a:37:b8:b9:ee:fa:b6:e3:c5:
f9:f6:94:46:e9:a7:ed:da:a0:7d:c7:b4:e5:ce:fb:
db:c5:72:7a:17:4a:37:36:b0:ef:4c:ca:94:d4:16:
b9:57:69:a1:d2:cf:6a:01:08:7b:23:d2:5a:3e:68:
90:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EA:23:92:A3:66:BF:28:E3:24:DB:04:C1:BE:4B:50:9A:89:69:63
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/A-ojkqNmvyjjJNsEwb5LUJqJaWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2528:2613::/48
Signature Algorithm: sha256WithRSAEncryption
44:19:87:c5:bd:e1:33:60:88:4a:e2:f6:b4:fb:04:af:87:95:
9b:d2:5d:71:b4:ca:21:c3:b0:7b:bd:7a:59:21:3e:1f:e7:11:
55:a5:66:ff:70:7b:6b:c0:00:dc:f8:c3:a8:67:8e:59:af:c4:
3c:d8:6b:72:88:d4:79:3e:f1:5a:c6:9c:30:1c:47:30:ea:b6:
d4:37:dc:4e:bc:44:d8:f5:4a:cf:74:36:92:2f:c8:d4:36:0f:
f5:39:53:f6:93:33:bb:1c:ba:8d:45:b0:0f:c6:6f:51:6e:2f:
68:e2:f4:75:16:31:4c:95:eb:6d:7d:70:2f:7a:fd:84:e5:4f:
54:12:b4:1e:a1:06:67:05:61:aa:25:2c:da:a4:e0:3f:71:a5:
d2:81:31:91:fd:ca:ed:71:9a:44:ab:08:b6:f7:9d:04:7d:80:
3a:86:a4:27:79:2a:18:7c:de:e0:2f:39:20:fe:40:16:83:8f:
bd:1c:a7:08:cf:8c:d1:df:b1:cb:12:f9:aa:93:7c:7e:37:3d:
34:95:4a:6c:f4:45:21:34:96:da:f6:21:38:e8:59:7a:e4:eb:
ba:b5:0b:38:8b:92:14:6d:af:a4:a5:d8:ef:60:1e:c1:13:1c:
cc:3b:0a:83:ac:96:36:f3:20:86:6b:46:1d:1e:cb:be:f1:24:
13:48:1c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:26 2024 by rpki-client on console-ams.rpki-client.org