Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/Rf9gvtVsdr3VhSsKxxoKfpdpYQo.roa
File: Rf9gvtVsdr3VhSsKxxoKfpdpYQo.roa (raw, json)
Hash identifier: uve13bbI/t2FS7P6npJdKVZREjYTd2BGW6o1Jvnnzm0=
Subject key identifier: 45:FF:60:BE:D5:6C:76:BD:D5:85:2B:0A:C7:1A:0A:7E:97:69:61:0A
Certificate issuer: /CN=6283b6d1d86102e9edf2abddaa7c9347aac717c7
Certificate serial: 018572B3F83F2C04CF53D0EA280764CA9C7B
Authority key identifier: 62:83:B6:D1:D8:61:02:E9:ED:F2:AB:DD:AA:7C:93:47:AA:C7:17:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YoO20dhhAunt8qvdqnyTR6rHF8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/Rf9gvtVsdr3VhSsKxxoKfpdpYQo.roa
Signing time: Mon 02 Jan 2023 13:37:55 +0000
ROA not before: Mon 02 Jan 2023 13:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0f:d3c0:ff00::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b3:f8:3f:2c:04:cf:53:d0:ea:28:07:64:ca:9c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6283b6d1d86102e9edf2abddaa7c9347aac717c7
Validity
Not Before: Jan 2 13:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45ff60bed56c76bdd5852b0ac71a0a7e9769610a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:be:39:ee:9e:94:d8:b9:09:fb:58:4b:59:e1:
12:ff:82:9d:78:2a:f7:62:ed:24:01:a8:eb:6b:3d:
73:a9:92:09:86:bf:8f:58:55:83:70:13:6c:1d:8a:
69:56:83:ff:29:8a:ac:1c:51:52:41:2d:92:8b:2a:
08:f7:dd:eb:90:ce:91:c3:50:96:a9:10:b2:89:05:
2d:93:db:08:cc:c0:3a:5a:14:7f:cd:d9:06:de:be:
41:24:c4:fd:ed:f5:3b:8c:33:8f:ba:93:69:47:a6:
54:d5:b9:54:aa:e3:77:17:e3:5c:f3:2d:99:7a:4c:
c5:82:27:21:5d:cb:a3:f5:b5:28:b4:7e:20:40:4d:
41:19:9e:2c:fb:eb:10:fa:10:96:8b:79:88:e7:f3:
95:e0:2b:bf:a3:2b:cb:ce:cb:6d:97:57:70:75:43:
ac:97:62:e7:8d:41:b0:a2:eb:9b:c4:30:5d:a5:01:
49:66:bb:fe:aa:4e:11:34:e1:85:d6:43:b3:e2:f7:
fe:75:23:76:ef:4f:b5:a0:e1:7a:27:1f:01:e4:08:
b6:58:56:eb:f6:3e:f7:95:e1:51:75:0e:4e:14:16:
94:e1:84:58:9e:4a:6a:4b:73:cd:0f:f2:5a:89:70:
35:c8:60:4c:0d:1b:dd:da:a5:b3:1a:db:70:a0:9e:
d9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FF:60:BE:D5:6C:76:BD:D5:85:2B:0A:C7:1A:0A:7E:97:69:61:0A
X509v3 Authority Key Identifier:
keyid:62:83:B6:D1:D8:61:02:E9:ED:F2:AB:DD:AA:7C:93:47:AA:C7:17:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YoO20dhhAunt8qvdqnyTR6rHF8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/Rf9gvtVsdr3VhSsKxxoKfpdpYQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/bd4317-b9ef-4b23-80ad-914e4881eea8/1/YoO20dhhAunt8qvdqnyTR6rHF8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:d3c0:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
9a:d7:cb:b1:1c:48:f5:3f:d3:22:bb:bf:c1:70:37:8d:64:a6:
56:4f:aa:24:9a:25:d8:a6:99:13:b2:00:4e:20:eb:91:03:83:
c7:1c:be:82:b9:7b:4e:57:09:c3:36:57:cb:2f:78:7a:30:2e:
76:86:84:72:db:36:c4:9a:51:da:44:a6:cf:98:9e:08:9c:f8:
b1:d4:79:73:5f:85:10:e0:d5:af:1f:46:c9:8e:cb:6f:90:7c:
bc:74:f6:37:33:83:74:d6:c3:f5:22:e2:ac:80:55:c6:03:6b:
25:ae:7a:6e:83:36:3f:2f:aa:c4:7d:79:eb:8a:21:dd:36:05:
21:e1:60:97:b1:5e:ef:69:9d:6a:6a:3d:de:31:a4:b0:45:44:
a4:9f:a5:f6:7a:34:b8:71:84:13:4f:d0:03:14:d1:13:92:b3:
12:12:3b:96:93:4e:6a:4d:2a:4f:ce:76:eb:28:31:b5:83:5c:
5e:cf:03:5e:10:c2:d2:64:58:3b:6c:11:4c:dc:4c:13:7c:89:
94:56:85:37:0d:9c:cb:a8:1d:30:62:d3:0b:1d:75:95:b4:81:
c0:bb:e6:b2:ad:78:15:d5:7f:a7:ee:d4:a1:3f:41:b4:3a:89:
e4:5b:6a:e9:7e:77:75:f7:0b:df:a4:7b:52:86:a6:ad:9b:c2:
81:ce:27:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:51 2024 by rpki-client on console-ams.rpki-client.org