Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/IxAgHX-7j5VhTDdKP9jIMgYiS9A.roa
File: IxAgHX-7j5VhTDdKP9jIMgYiS9A.roa (raw, json)
Hash identifier: yKKs44Vye/JiiZ1LrggwEsK92IkSTO4bwKu8aAc121Y=
Subject key identifier: 23:10:20:1D:7F:BB:8F:95:61:4C:37:4A:3F:D8:C8:32:06:22:4B:D0
Certificate issuer: /CN=18e1732f2c80e3ea4d7279d252b874a6164c35b4
Certificate serial: 01856F4B50B329A30095FC457567DE24F6E8
Authority key identifier: 18:E1:73:2F:2C:80:E3:EA:4D:72:79:D2:52:B8:74:A6:16:4C:35:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOFzLyyA4-pNcnnSUrh0phZMNbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/IxAgHX-7j5VhTDdKP9jIMgYiS9A.roa
Signing time: Sun 01 Jan 2023 21:44:44 +0000
ROA not before: Sun 01 Jan 2023 21:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213220
IP address blocks: 2a0e:c147::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:50:b3:29:a3:00:95:fc:45:75:67:de:24:f6:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e1732f2c80e3ea4d7279d252b874a6164c35b4
Validity
Not Before: Jan 1 21:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2310201d7fbb8f95614c374a3fd8c83206224bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6e:87:f1:a0:b2:6d:e0:fa:b8:7d:ce:85:85:
1c:49:15:a8:d6:04:d8:02:8b:0c:e2:61:7f:7b:72:
9a:e1:20:1e:4a:ce:10:53:bc:94:fc:00:81:4d:c8:
0a:c5:a2:83:b6:87:ea:3b:35:56:45:be:96:52:18:
97:dc:26:87:ec:69:77:a3:81:d8:53:8d:ca:60:7b:
25:bd:3d:a0:3d:79:80:86:8b:f2:f2:47:8a:1f:3f:
6c:30:fa:39:1e:59:c6:10:db:30:c4:5a:ae:b9:ca:
e0:37:0f:8e:53:e3:c7:a0:a5:d7:94:1f:41:ac:85:
b9:8c:67:8b:46:90:52:a3:d0:b5:8a:e1:dc:28:4a:
82:24:25:a5:4f:4d:9e:16:d0:aa:4f:f3:7a:3f:89:
23:06:92:de:c5:ed:8c:8b:5e:4b:71:f5:9d:b0:65:
be:62:aa:aa:cd:61:ce:e6:60:b4:c8:cf:ca:ae:dc:
4b:53:8a:f1:aa:a8:9d:69:fa:e4:83:4c:67:20:99:
93:a1:e9:73:af:fb:78:71:1b:00:bb:08:3e:33:9d:
21:7a:2d:7f:71:5f:38:51:39:34:15:4f:de:fa:ab:
61:e2:a9:e6:90:d5:32:a8:7e:78:39:5b:2f:36:09:
7a:92:2f:20:31:b7:6e:5d:1f:5e:f0:09:b2:53:db:
4a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:10:20:1D:7F:BB:8F:95:61:4C:37:4A:3F:D8:C8:32:06:22:4B:D0
X509v3 Authority Key Identifier:
keyid:18:E1:73:2F:2C:80:E3:EA:4D:72:79:D2:52:B8:74:A6:16:4C:35:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOFzLyyA4-pNcnnSUrh0phZMNbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/IxAgHX-7j5VhTDdKP9jIMgYiS9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/GOFzLyyA4-pNcnnSUrh0phZMNbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c147::/32
Signature Algorithm: sha256WithRSAEncryption
53:07:8c:ae:e7:dc:b5:3d:28:50:b2:7c:02:c8:50:c5:e1:23:
72:05:d1:1d:98:0a:8e:f4:05:16:79:b4:79:01:37:73:fd:db:
80:de:e0:8a:03:21:2f:9f:b0:a1:92:95:b2:af:6e:ed:02:16:
db:40:73:f2:20:8c:52:b6:de:de:fd:cf:f9:9b:a7:fa:8b:b8:
a6:71:32:d0:7f:82:15:75:4d:a1:6c:90:bc:29:f2:67:09:f3:
a2:b9:c6:36:f2:33:38:47:2a:c4:e2:2a:89:ef:bd:01:30:13:
b2:2a:1f:bd:fc:18:d7:a9:28:58:f3:f8:66:08:ff:f7:77:ac:
97:74:9e:a3:37:f7:dd:d9:09:d6:71:5c:98:2b:b9:cd:77:54:
82:00:7c:6e:26:3e:99:0c:48:a5:5b:02:2c:38:0f:dc:04:cf:
cb:6d:b9:2b:a2:1a:ac:d1:74:16:63:68:88:ca:ff:d8:71:91:
1a:c4:50:a2:94:7b:16:fb:9a:3e:1a:ea:18:f9:8a:74:92:7a:
d9:6f:84:7f:d0:8f:a9:3e:96:9c:a1:71:5c:5e:6b:c2:5e:4e:
0c:44:ef:fd:51:64:78:8d:20:50:b9:da:8b:7f:dc:8e:98:84:
9d:6b:26:9d:d8:86:49:2a:87:d9:73:39:c0:f3:a9:d4:2c:b1:
58:44:b5:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:53:08 2024 by rpki-client on console-fra.rpki-client.org