Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/E_A7fdokpVQaePdRM49TxoGHpEY.roa
File: E_A7fdokpVQaePdRM49TxoGHpEY.roa (raw, json)
Hash identifier: krPh9AL5fZwCk1f4ZYKnsDEHJN+GcRDMeP8FVAJAcDw=
Subject key identifier: 13:F0:3B:7D:DA:24:A5:54:1A:78:F7:51:33:8F:53:C6:81:87:A4:46
Certificate issuer: /CN=f59adb0208a2d2a718d3064b4613fdc4320d28f9
Certificate serial: 0185718C3AE4D1D516A5E96F07FF8023D132
Authority key identifier: F5:9A:DB:02:08:A2:D2:A7:18:D3:06:4B:46:13:FD:C4:32:0D:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9ZrbAgii0qcY0wZLRhP9xDINKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/E_A7fdokpVQaePdRM49TxoGHpEY.roa
Signing time: Mon 02 Jan 2023 08:14:53 +0000
ROA not before: Mon 02 Jan 2023 08:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197942
IP address blocks: 2001:678:70c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:3a:e4:d1:d5:16:a5:e9:6f:07:ff:80:23:d1:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f59adb0208a2d2a718d3064b4613fdc4320d28f9
Validity
Not Before: Jan 2 08:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13f03b7dda24a5541a78f751338f53c68187a446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b3:44:c0:ec:a1:ff:42:c5:5c:74:62:12:b3:
06:85:c7:e0:40:f8:ce:8d:e4:34:fd:34:6f:c8:7b:
8f:61:e9:31:2e:57:ed:a4:4f:0a:ae:07:57:a7:41:
45:6d:b0:34:e2:40:f2:cb:7a:f1:21:9f:92:a8:b9:
cf:ed:00:de:45:9c:ef:f3:92:46:20:f5:4b:9a:09:
7a:77:64:25:bd:35:43:6b:fc:e3:42:ac:cf:8d:00:
b4:4b:b2:58:b0:f3:70:4b:10:d5:a0:a7:6b:c2:f6:
04:e2:5a:78:ba:4b:9b:a1:9c:1a:6b:a0:86:6e:0f:
0a:91:e5:43:ef:da:41:42:6c:46:8a:73:01:fa:d0:
de:76:58:d4:18:b3:43:1c:08:22:c4:58:d9:e6:3f:
19:19:ef:ed:3d:fc:dd:35:f7:a0:15:4a:a4:95:bf:
74:73:b0:da:ea:a6:26:dc:7a:50:38:d9:7e:6e:84:
60:5a:ed:a9:a9:4a:1c:9a:21:da:cc:6c:53:0a:4d:
c4:d8:96:c4:0a:d7:31:b9:be:bb:d3:92:f6:0b:45:
16:5a:ac:3b:1f:d9:66:07:f5:bd:aa:1a:d0:f1:56:
d6:5c:1e:de:30:77:e9:c9:d2:ad:f8:5c:77:eb:8c:
80:3c:96:c5:fb:0c:ca:df:19:7c:e4:f0:f5:8b:80:
d1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F0:3B:7D:DA:24:A5:54:1A:78:F7:51:33:8F:53:C6:81:87:A4:46
X509v3 Authority Key Identifier:
keyid:F5:9A:DB:02:08:A2:D2:A7:18:D3:06:4B:46:13:FD:C4:32:0D:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9ZrbAgii0qcY0wZLRhP9xDINKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/E_A7fdokpVQaePdRM49TxoGHpEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/9ZrbAgii0qcY0wZLRhP9xDINKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:70c::/48
Signature Algorithm: sha256WithRSAEncryption
2f:f3:b6:f4:81:d8:d8:90:22:5c:9c:c0:4d:91:49:ad:6f:9a:
9c:50:f8:4b:0c:4b:06:a8:43:d9:98:56:45:4f:80:ad:5a:ce:
fe:56:4a:57:80:53:89:5b:8d:ff:ec:c9:28:f2:d4:e8:80:05:
73:e8:42:23:72:e6:54:ec:af:cc:6d:84:e5:24:dd:e1:3a:df:
4d:5c:19:4b:72:16:81:1f:a3:57:87:89:3b:23:ce:86:a8:ba:
cd:2a:4e:e4:7e:8f:60:88:f1:4b:32:64:52:5b:be:dc:22:62:
75:90:09:b3:a1:fd:e8:4a:6a:52:18:21:c4:ad:27:e8:c5:b8:
8a:e1:0e:12:35:fb:4f:66:d5:11:de:f5:77:63:d7:48:70:ef:
5b:a4:9b:74:20:28:26:35:1c:8a:80:ee:52:43:aa:f8:37:14:
4a:a7:ee:75:64:db:70:3f:58:e3:dc:3c:dd:00:34:65:67:6d:
b9:86:0d:35:f0:24:28:45:14:89:ee:a0:8e:be:c6:9b:ab:2a:
f1:1c:c3:b6:7d:07:7f:cd:93:a8:2b:e8:95:95:aa:e1:45:cb:
ee:90:92:7b:c5:5f:a7:3e:be:7d:71:c8:eb:f2:3f:b2:f1:f4:
23:54:0c:29:80:8d:3a:e4:a9:96:1f:75:8e:2a:5a:6d:36:de:
78:a2:f7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:03:07 2024 by rpki-client on console-ams.rpki-client.org