Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/623561-0715-4277-a0be-3411c6fb4fca/1/jAVhIrzPRHy3vC4qBy8dZlHfStY.roa
File: jAVhIrzPRHy3vC4qBy8dZlHfStY.roa (raw, json)
Hash identifier: pU/WaUXlKjqVpH0w5Y5epoDZLlvy3vzi3D3UaO8a/fE=
Subject key identifier: 8C:05:61:22:BC:CF:44:7C:B7:BC:2E:2A:07:2F:1D:66:51:DF:4A:D6
Certificate issuer: /CN=7abe11843dbe80340b2460fc160ec6b9b88f222a
Certificate serial: 0187C32F2D47ACCE45CAE3147A8C466B7DCD
Authority key identifier: 7A:BE:11:84:3D:BE:80:34:0B:24:60:FC:16:0E:C6:B9:B8:8F:22:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/er4RhD2-gDQLJGD8Fg7GubiPIio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/623561-0715-4277-a0be-3411c6fb4fca/1/jAVhIrzPRHy3vC4qBy8dZlHfStY.roa
Signing time: Thu 27 Apr 2023 14:47:41 +0000
ROA not before: Thu 27 Apr 2023 14:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200327
IP address blocks: 2a13:6d40::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c3:2f:2d:47:ac:ce:45:ca:e3:14:7a:8c:46:6b:7d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abe11843dbe80340b2460fc160ec6b9b88f222a
Validity
Not Before: Apr 27 14:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c056122bccf447cb7bc2e2a072f1d6651df4ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:38:1f:f0:3f:9d:10:5d:1a:6c:6d:b5:c0:d5:
bf:72:0e:58:6e:50:90:6d:a5:99:db:45:b3:23:ee:
70:db:26:2a:2a:22:e1:f3:fb:4c:0b:b2:74:5a:69:
51:5a:1b:5a:d7:de:11:b3:f5:4f:31:14:09:34:54:
f8:4a:44:50:53:90:09:28:3d:1a:97:70:40:3d:15:
14:fd:87:16:4c:ce:85:ad:8e:92:0e:d4:2a:6c:59:
5a:72:f0:ce:82:50:f6:0a:38:1e:89:4e:c9:05:23:
19:e9:c3:0e:b5:9b:3d:ed:46:7f:29:fc:e9:fb:bf:
62:1f:8e:ab:a1:6f:df:01:3f:ca:da:4e:54:1a:f6:
9f:69:7b:b4:ff:e7:28:d0:47:61:75:49:b3:23:43:
e6:28:e4:83:5c:57:6e:7f:d3:16:ae:34:91:4b:f2:
d4:42:d2:da:43:13:38:ac:5a:bc:e5:8e:1f:4e:93:
6c:b7:4a:d2:23:46:b0:5b:43:c4:15:46:34:ce:35:
ff:50:74:26:45:4b:d1:df:bd:98:73:e8:4f:33:d9:
93:d5:cd:ef:9d:55:ce:18:0c:2e:98:f0:ad:c9:d0:
49:62:ab:ac:45:a2:39:89:e0:43:91:c3:1f:3e:90:
b8:c5:ae:97:66:8b:bc:29:c7:0c:a2:74:b0:c5:32:
3e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:05:61:22:BC:CF:44:7C:B7:BC:2E:2A:07:2F:1D:66:51:DF:4A:D6
X509v3 Authority Key Identifier:
keyid:7A:BE:11:84:3D:BE:80:34:0B:24:60:FC:16:0E:C6:B9:B8:8F:22:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/er4RhD2-gDQLJGD8Fg7GubiPIio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/623561-0715-4277-a0be-3411c6fb4fca/1/jAVhIrzPRHy3vC4qBy8dZlHfStY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/623561-0715-4277-a0be-3411c6fb4fca/1/er4RhD2-gDQLJGD8Fg7GubiPIio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
72:06:da:4c:6c:11:52:67:93:69:66:f9:9b:98:3d:13:dc:06:
9d:e8:7a:dc:4e:5b:6e:46:ab:ba:cb:71:f8:9f:cf:a7:6f:be:
17:3f:36:4c:db:46:38:b9:66:f0:e2:97:a7:15:3d:2c:fa:a8:
7b:6c:d7:8f:fe:28:eb:8e:a5:8b:6c:2c:69:b3:29:05:c5:68:
a9:a6:00:33:65:8c:b1:a3:9f:01:b4:84:2d:f7:3a:6c:ae:68:
36:3b:6b:60:93:21:1c:96:55:e8:d9:24:ab:a3:9e:b4:9a:21:
f3:0a:ec:4a:38:ae:4e:aa:64:44:ee:28:e7:a2:10:f0:bb:c2:
e1:0a:2d:aa:85:df:8c:01:4f:07:77:28:33:c1:86:e0:c7:61:
ff:b2:72:a7:94:04:0c:cf:7d:ad:55:93:b3:cf:b5:a1:2e:6d:
73:8f:f4:ba:bb:23:5d:36:97:59:2d:4f:1f:85:14:f0:ef:85:
49:31:ae:3b:14:97:3d:2b:d0:3d:8d:41:e6:0d:a2:bc:42:5c:
34:c0:bd:07:29:34:70:b4:4b:ea:f2:51:76:ca:e8:40:ed:c0:
6e:3e:d2:9c:c2:db:0e:84:6d:b9:97:dc:89:23:90:f6:d4:59:
af:55:f6:e5:7a:5f:5e:39:a9:c7:85:43:ce:77:1f:73:cb:3e:
6c:ad:8d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 7 11:39:42 2023 by rpki-client on console-ams.rpki-client.org