Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/eR7By8mbVxEDXFPQeRD0XcEMYhg.roa
File: eR7By8mbVxEDXFPQeRD0XcEMYhg.roa (raw, json)
Hash identifier: t0icYYapmcXsw04Bcnwb4YG+qzaPGGuVS48HMJVmYRI=
Subject key identifier: 79:1E:C1:CB:C9:9B:57:11:03:5C:53:D0:79:10:F4:5D:C1:0C:62:18
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 01856FA70F2374C31344810E348F38112448
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/eR7By8mbVxEDXFPQeRD0XcEMYhg.roa
Signing time: Sun 01 Jan 2023 23:24:57 +0000
ROA not before: Sun 01 Jan 2023 23:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42675
IP address blocks: 2a13:7c80::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:0f:23:74:c3:13:44:81:0e:34:8f:38:11:24:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: Jan 1 23:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=791ec1cbc99b5711035c53d07910f45dc10c6218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7e:37:14:ef:b1:44:57:ba:d2:f8:d7:a1:ca:
c1:49:fd:d0:85:b4:3e:e4:92:27:35:c3:25:48:33:
99:4a:42:bc:5e:26:f5:53:95:5e:4e:48:eb:31:57:
65:13:ef:85:0e:a4:04:44:9a:d1:89:74:31:b4:87:
4a:e2:13:f7:72:fb:b0:92:07:93:1e:7a:c7:a4:e8:
ea:1f:70:4b:a7:79:9d:78:b4:fa:ad:e3:0a:b8:5d:
23:f6:86:0c:30:a4:7c:a8:dc:70:8c:f9:12:99:be:
e0:d2:08:d4:d5:a1:25:eb:fb:9d:09:85:f1:49:94:
9e:03:b3:cc:89:84:0f:56:2f:84:04:1a:bb:de:c4:
b5:d9:b3:e2:fe:2a:70:13:0b:1a:41:12:29:ec:26:
d8:2e:49:95:50:79:7e:74:97:a7:1c:d5:95:43:1e:
ca:c9:cc:cf:6c:3f:4c:48:ef:d6:ca:cb:ec:b6:4a:
9c:02:70:30:19:7b:4f:cb:b2:05:d5:7c:fb:37:8a:
df:2d:93:0a:04:1b:71:3d:4e:94:0a:30:02:51:a7:
cd:4b:15:1d:4f:ce:d4:eb:02:4a:29:77:44:97:5b:
69:ef:e2:14:36:42:22:9e:a1:c1:95:b6:3b:93:1a:
b1:c8:b2:72:de:8f:dd:1e:fe:92:8b:ae:7c:59:fa:
64:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1E:C1:CB:C9:9B:57:11:03:5C:53:D0:79:10:F4:5D:C1:0C:62:18
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/eR7By8mbVxEDXFPQeRD0XcEMYhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7c80::/48
Signature Algorithm: sha256WithRSAEncryption
87:a2:63:c6:74:80:ff:36:f3:b3:4e:38:2a:97:59:92:64:8b:
cb:91:0d:42:1b:47:a8:d8:23:c8:56:b0:f9:6d:9e:3d:38:c2:
96:dd:b9:f5:6f:b1:4a:76:6b:88:93:47:d5:4b:82:4b:57:a2:
bc:d7:59:61:6b:b4:22:a9:aa:73:32:ab:f9:cd:ea:a9:2b:be:
09:c5:44:c3:89:be:12:24:87:4d:47:9f:95:a4:27:7d:75:e2:
03:b6:d4:99:1b:91:54:c4:f4:9e:9b:e1:01:b5:8e:1f:39:d5:
8a:d8:d2:d6:5b:26:3b:a5:29:29:07:a4:b9:b1:02:c4:c4:c3:
0b:fe:d1:15:7c:95:e9:5c:bc:8c:fe:1d:44:6c:b0:19:71:61:
25:c2:18:77:e8:9e:0d:5f:86:19:19:75:1d:ca:71:48:2e:8f:
6a:e4:8b:0b:35:30:df:a0:7f:73:2c:b1:2d:c6:5d:13:93:14:
13:9e:b1:3c:43:bb:fb:b2:af:9e:6d:f4:d2:ea:57:fc:41:a8:
fb:98:ba:1e:ea:bc:ec:f1:8e:01:76:90:a7:90:83:52:a4:7e:
e2:8b:58:5f:0e:22:95:29:70:72:08:2f:c6:9b:f8:71:b0:c1:
7f:30:a0:12:b8:19:6c:10:38:6f:65:b0:86:da:25:51:c3:1e:
ce:76:80:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:34:56 2024 by rpki-client on console.sobornost.net