Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/mHWlQmoTglJHVSgcFMCu0KbJQr8.roa
File: mHWlQmoTglJHVSgcFMCu0KbJQr8.roa (raw, json)
Hash identifier: J4xSBeC1esNNHo7IL8JL0Hzeng91i9ATRgG35nIG2vw=
Subject key identifier: 98:75:A5:42:6A:13:82:52:47:55:28:1C:14:C0:AE:D0:A6:C9:42:BF
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0185CF8F5E0DCC73BC102C728003647A5677
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/mHWlQmoTglJHVSgcFMCu0KbJQr8.roa
Signing time: Fri 20 Jan 2023 14:22:37 +0000
ROA not before: Fri 20 Jan 2023 14:22:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a12:ef40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cf:8f:5e:0d:cc:73:bc:10:2c:72:80:03:64:7a:56:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jan 20 14:22:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9875a5426a1382524755281c14c0aed0a6c942bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:84:4f:be:70:b6:26:cf:16:c3:f7:bf:8d:f0:
5b:4f:5b:6f:ce:92:ce:1b:01:e1:d7:22:d7:db:27:
0f:21:a8:80:b2:ff:b0:bc:6a:f5:91:08:f9:7f:b0:
b4:10:52:0c:3b:72:cc:a7:09:1a:e9:60:da:9e:c9:
0e:25:6e:33:e1:d2:3b:6b:f1:39:72:43:ab:6b:47:
a9:a5:7e:2f:2e:a0:e2:da:6c:2a:8c:d8:b3:02:1b:
40:40:96:ec:e7:0c:46:25:72:17:29:94:00:c3:e7:
2b:d6:f2:db:bb:49:4d:8f:03:95:cc:f2:ec:77:ab:
44:8b:1c:49:e5:38:5a:33:cc:03:51:90:64:7f:a7:
ae:ad:62:7c:17:ec:37:90:7f:ee:87:6c:bd:bf:68:
4d:b7:21:00:29:79:34:26:2e:55:4c:8d:9a:7e:6c:
f7:a5:1d:fd:8c:40:b3:9f:a5:b9:44:de:6b:4f:62:
17:6f:82:3b:67:92:0f:0f:bf:db:e2:6c:af:fd:80:
92:a9:66:14:bb:3a:06:cc:70:ba:7a:5c:66:67:8a:
bf:4b:90:89:3d:df:f1:26:2a:87:6d:70:b7:3b:54:
5d:7f:61:9a:ef:63:7e:bb:c9:0d:d2:02:4f:b0:5e:
1b:cc:30:a5:28:fc:30:f7:02:00:cc:6f:9e:ca:85:
9b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:75:A5:42:6A:13:82:52:47:55:28:1C:14:C0:AE:D0:A6:C9:42:BF
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/mHWlQmoTglJHVSgcFMCu0KbJQr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ef40::/48
Signature Algorithm: sha256WithRSAEncryption
95:e2:f9:84:b0:75:32:fb:3e:1d:11:5e:4c:ad:a6:4e:83:3e:
db:a2:60:ae:30:fd:f0:c4:c8:de:b0:fb:68:90:1d:41:28:9f:
a4:9a:66:c1:3c:f5:31:65:d3:d9:48:99:98:2e:08:a8:4d:59:
8b:14:d7:24:da:e7:0c:40:42:1a:dc:5d:27:81:dc:1e:c4:23:
1e:39:c4:40:c7:37:a0:53:96:6a:a9:0a:e6:46:46:24:44:53:
10:fd:ae:7f:ec:02:94:45:51:05:65:cf:eb:df:07:1f:ff:ce:
a3:94:ce:15:26:ac:02:bf:ca:d2:6e:0d:bd:51:f6:27:b4:d5:
10:1f:54:3e:11:8b:bb:05:ac:68:e7:4e:a2:2c:9e:46:32:16:
03:fe:6a:5e:39:6f:dc:ad:6f:45:3f:75:69:4f:c8:7c:d3:df:
95:33:c7:97:c7:7b:bb:e1:10:5f:b5:2c:da:9d:4d:5e:3c:aa:
ea:d4:9b:c5:7d:64:01:d0:c8:5d:89:ed:ef:14:f5:d0:84:9a:
a5:3f:0b:3d:11:13:c5:c1:d0:75:86:09:2d:50:c9:3a:8f:59:
6e:1f:cd:68:94:cc:07:79:4b:44:45:b0:45:70:e5:20:38:ef:
4a:47:3f:8d:d5:f0:7f:75:ec:6c:04:fd:ea:fe:e4:c9:01:07:
27:e5:90:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:40 2023 by rpki-client on console.sobornost.net