Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/0p6sIzgxCP7yxpjbHFbmUCkrDCk.roa
File: 0p6sIzgxCP7yxpjbHFbmUCkrDCk.roa (raw, json)
Hash identifier: dW9745N4x+K3rzfwENZZC/aNVHnL70UooS8Nc2c8izM=
Subject key identifier: D2:9E:AC:23:38:31:08:FE:F2:C6:98:DB:1C:56:E6:50:29:2B:0C:29
Certificate issuer: /CN=1cbbfa49877bc5d9e4cf446950fd14279929f49a
Certificate serial: 01856F0B65F774C8614BFF1AEBAD7FD5EAD0
Authority key identifier: 1C:BB:FA:49:87:7B:C5:D9:E4:CF:44:69:50:FD:14:27:99:29:F4:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLv6SYd7xdnkz0RpUP0UJ5kp9Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/0p6sIzgxCP7yxpjbHFbmUCkrDCk.roa
Signing time: Sun 01 Jan 2023 20:34:55 +0000
ROA not before: Sun 01 Jan 2023 20:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 164.81.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:65:f7:74:c8:61:4b:ff:1a:eb:ad:7f:d5:ea:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cbbfa49877bc5d9e4cf446950fd14279929f49a
Validity
Not Before: Jan 1 20:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d29eac23383108fef2c698db1c56e650292b0c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:24:91:ec:b2:26:73:f5:9a:72:aa:1c:10:e8:
9b:f2:04:cb:ae:77:44:1c:09:3a:8d:98:35:f4:7a:
12:7d:8d:ca:7f:b0:db:9e:7f:2c:c2:3b:5c:b0:ce:
84:da:b4:5a:0f:69:40:8b:ca:dd:2d:db:2e:40:bd:
87:ac:19:3a:59:f1:df:81:9e:7b:e1:f4:25:7f:1f:
35:91:b9:25:2b:05:05:d9:99:87:ed:4f:93:18:e4:
57:29:aa:15:10:20:df:6c:75:f0:91:83:f8:02:39:
49:c4:d4:bf:59:e7:77:33:0c:d0:b3:0d:01:02:e5:
42:6c:49:04:7b:0f:89:f5:c7:72:05:d5:ee:7f:2e:
0c:35:f1:d0:36:ef:91:8e:4c:86:aa:74:85:dd:db:
22:7d:7d:3f:58:22:5b:eb:a8:a9:b9:30:30:72:74:
41:8a:6e:03:8b:a8:ec:16:ed:bf:41:c4:1e:b4:9e:
67:49:d1:b8:7a:19:78:6a:99:ea:bf:a5:ac:ac:36:
39:c5:21:63:42:5c:1d:33:9b:f6:6c:4c:35:3a:73:
62:64:64:68:b8:0d:e9:c9:79:36:81:08:88:f1:68:
92:fe:29:80:0f:cb:de:f8:31:ba:17:28:67:3a:15:
4e:09:1a:f1:a2:c7:2e:83:56:71:6d:df:2d:c8:e9:
4b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9E:AC:23:38:31:08:FE:F2:C6:98:DB:1C:56:E6:50:29:2B:0C:29
X509v3 Authority Key Identifier:
keyid:1C:BB:FA:49:87:7B:C5:D9:E4:CF:44:69:50:FD:14:27:99:29:F4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLv6SYd7xdnkz0RpUP0UJ5kp9Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/0p6sIzgxCP7yxpjbHFbmUCkrDCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/HLv6SYd7xdnkz0RpUP0UJ5kp9Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:0a:df:57:d3:04:88:71:a6:77:1e:06:01:3d:3b:f4:88:18:
86:0c:e1:76:ae:b2:24:9c:a4:d7:c9:c9:81:64:d6:f7:3b:51:
ad:0c:f3:fc:0b:84:81:ba:95:8d:02:6b:c0:97:a3:4d:21:7a:
76:9d:81:79:72:7b:15:6c:18:f8:9e:aa:cf:19:e2:b9:37:0a:
7e:e7:50:f4:24:cb:ad:69:ce:ba:a3:b3:35:6e:36:3c:e7:c2:
68:55:97:55:e1:14:86:e9:62:94:48:5c:07:c3:61:cb:ce:6d:
3f:41:cb:cf:f8:41:93:dd:35:ed:8b:db:ed:2b:69:d5:6d:d3:
48:ee:98:65:66:9c:89:4c:b1:9a:34:82:a7:9f:bc:e1:43:db:
c8:bb:2e:7d:48:45:26:d2:db:42:ef:be:bf:2f:3e:ed:f6:95:
27:2a:80:d7:6f:95:14:cd:de:3b:e3:af:44:95:cc:62:6e:c1:
66:5e:88:54:f0:46:db:0f:af:e8:d3:f7:dc:ec:80:a2:2f:84:
4a:40:8d:d9:7c:ed:fd:43:96:36:e4:97:f8:75:4e:72:d8:b2:
6f:4c:8d:4a:3a:86:d5:ec:58:cb:a1:0a:88:47:7c:ae:5d:da:
c8:44:83:41:fa:7f:b8:d2:ad:5c:8b:84:9d:de:60:5e:c1:7e:
13:b9:f1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:51 2024 by rpki-client on console-fra.rpki-client.org