Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/28b5cd-73b0-4097-955f-3fe518ea5ba6/1/d1SXaFZGpCm1yfVSMLOK0PLzo8I.roa
File: d1SXaFZGpCm1yfVSMLOK0PLzo8I.roa (raw, json)
Hash identifier: kFhMp48lSt32mb2yBD5g49tL6NV7++SG72SW73D/YOE=
Subject key identifier: 77:54:97:68:56:46:A4:29:B5:C9:F5:52:30:B3:8A:D0:F2:F3:A3:C2
Certificate issuer: /CN=8e50d9b83f3f015ad88bf6b7c52848674ae5cb6e
Certificate serial: 018676262726C77DD56F11BBFBE195BB9273
Authority key identifier: 8E:50:D9:B8:3F:3F:01:5A:D8:8B:F6:B7:C5:28:48:67:4A:E5:CB:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jlDZuD8_AVrYi_a3xShIZ0rly24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/28b5cd-73b0-4097-955f-3fe518ea5ba6/1/d1SXaFZGpCm1yfVSMLOK0PLzo8I.roa
Signing time: Tue 21 Feb 2023 22:44:17 +0000
ROA not before: Tue 21 Feb 2023 22:44:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56430
IP address blocks: 2a12:ec40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:76:26:27:26:c7:7d:d5:6f:11:bb:fb:e1:95:bb:92:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e50d9b83f3f015ad88bf6b7c52848674ae5cb6e
Validity
Not Before: Feb 21 22:44:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=775497685646a429b5c9f55230b38ad0f2f3a3c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8a:63:09:4e:9b:80:1e:f6:64:d1:a3:74:cd:
2b:fa:cf:f3:ed:19:86:5c:87:74:6a:4f:d6:09:3e:
5f:ed:6e:7d:65:f2:5e:06:a6:23:e6:e1:34:0d:4d:
00:25:73:e9:08:cd:9a:5d:6a:c8:1e:4b:3d:b9:25:
bd:d0:6c:51:c9:a6:52:19:f8:27:07:fc:f3:df:51:
ef:db:b0:4d:86:89:ea:c6:51:d5:49:c7:56:fb:96:
89:85:14:ce:a6:f2:ff:71:58:46:5d:a8:63:bd:b6:
fc:33:83:51:3e:e3:73:f7:9e:dd:cf:cf:d6:a6:e8:
b2:e1:2b:eb:28:74:df:87:21:b4:37:66:94:7d:bd:
ab:70:02:0a:80:2f:e8:cf:e8:3f:df:a2:1f:f1:07:
6b:b8:c5:3f:1e:d2:84:6f:71:e0:50:b5:f7:a5:8f:
4f:09:c0:d7:e4:25:2e:df:27:b5:67:ef:7e:35:f8:
fb:bb:d8:90:88:4a:bc:cc:81:81:1e:69:fa:53:2a:
68:ae:6e:25:55:ee:01:27:03:1c:64:3c:c5:ae:6d:
fd:87:e2:f1:51:3e:a0:d2:ba:38:08:61:8f:66:30:
ba:8a:42:d5:ec:84:a0:f3:15:69:19:83:93:b8:22:
12:e4:5d:85:ac:69:38:9e:83:4a:b5:1a:6d:5d:c5:
bd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:54:97:68:56:46:A4:29:B5:C9:F5:52:30:B3:8A:D0:F2:F3:A3:C2
X509v3 Authority Key Identifier:
keyid:8E:50:D9:B8:3F:3F:01:5A:D8:8B:F6:B7:C5:28:48:67:4A:E5:CB:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jlDZuD8_AVrYi_a3xShIZ0rly24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/28b5cd-73b0-4097-955f-3fe518ea5ba6/1/d1SXaFZGpCm1yfVSMLOK0PLzo8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/28b5cd-73b0-4097-955f-3fe518ea5ba6/1/jlDZuD8_AVrYi_a3xShIZ0rly24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ec40::/29
Signature Algorithm: sha256WithRSAEncryption
a2:99:2e:31:f4:65:fb:76:11:59:6f:39:62:36:f7:e0:44:87:
35:54:31:4c:05:af:61:34:a4:13:9c:ac:0c:94:f3:c8:af:9e:
45:0e:78:76:dd:bf:b9:17:a1:c9:2f:09:80:43:c8:e1:0b:db:
92:43:60:c5:7f:5b:c1:4c:74:1e:12:99:9d:5b:7a:0d:94:a5:
be:53:f4:46:97:54:f1:a4:4f:ff:ab:51:9b:03:06:c5:f5:a7:
9c:e1:92:8a:86:87:24:61:07:e4:e8:97:ae:11:d3:5a:ce:72:
31:5c:a9:a6:25:2e:25:cf:62:f6:7d:85:bc:f0:6b:a2:9e:e9:
69:9f:85:cd:44:18:44:62:61:07:0e:25:f3:cb:95:79:25:cf:
49:76:c9:93:e1:fa:a7:77:67:cb:ab:d3:4c:89:d7:6d:4d:c4:
67:ba:5c:62:20:b1:c2:e4:f2:3c:b4:0d:ab:ae:10:e6:d7:6c:
ce:03:6c:30:6d:d2:eb:04:4c:be:43:c3:18:5d:e8:45:ac:1a:
66:9c:08:6e:c2:d8:6a:02:45:2b:59:e2:de:25:20:ae:df:9f:
16:79:d5:fe:13:53:14:40:20:60:c5:0a:49:d2:00:00:51:53:
36:b4:84:84:99:69:87:1e:72:b9:04:e6:f5:97:9f:18:a8:09:
b9:a3:bf:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:41 2023 by rpki-client on console.sobornost.net