Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/1BWJwYIWc20W7W3gWQNqM7LyBwE.roa
File: 1BWJwYIWc20W7W3gWQNqM7LyBwE.roa (raw, json)
Hash identifier: Aw3Fnj+68d18w6aV4k6zQcnLz5kFIjcEODBvV6Hv7II=
Subject key identifier: D4:15:89:C1:82:16:73:6D:16:ED:6D:E0:59:03:6A:33:B2:F2:07:01
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 01856C53B244E7CA46B0E108F1BE258F8221
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/1BWJwYIWc20W7W3gWQNqM7LyBwE.roa
Signing time: Sun 01 Jan 2023 07:55:02 +0000
ROA not before: Sun 01 Jan 2023 07:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16347
IP address blocks: 2a0b:95c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:b2:44:e7:ca:46:b0:e1:08:f1:be:25:8f:82:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Jan 1 07:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d41589c18216736d16ed6de059036a33b2f20701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:27:38:88:15:06:8e:5b:01:bc:0f:02:fb:
a8:34:41:24:ac:c3:d7:24:13:47:30:22:95:ba:d7:
ac:2b:db:b4:51:df:fb:d4:d8:3b:24:b1:01:0d:3f:
d5:56:0c:d0:7a:95:14:11:fc:bc:3d:e4:3d:62:e9:
07:22:f9:35:2c:1c:73:4d:d4:ca:ec:d7:ce:a8:a0:
9d:f4:7c:d5:e6:f1:6c:13:cc:ec:cd:38:dd:dd:46:
1c:dc:66:d6:4e:72:38:70:e9:37:4c:58:39:39:c5:
e5:5e:2e:45:0d:05:85:e0:5c:6d:dd:3a:94:bb:29:
16:bd:ff:6b:7a:23:5a:96:99:fb:d6:41:9e:bb:0a:
5c:1f:29:00:fc:d5:87:7a:d4:8e:62:65:03:77:13:
91:32:bf:8f:11:c6:3d:aa:a1:a0:a6:c0:13:91:03:
c8:5f:9f:cf:6a:84:1b:58:f1:cc:9a:fc:11:e7:57:
29:1c:b9:02:fe:c7:b4:dc:91:d1:67:ab:58:cd:91:
43:e1:27:42:d0:34:e3:04:80:03:64:0e:80:5c:50:
fd:c5:f6:f7:d9:62:0f:3d:0e:1d:36:45:b9:e3:43:
ef:b1:fc:a6:22:a1:2a:06:b7:04:47:2f:f9:19:64:
ea:81:d3:a7:61:e2:d3:c3:d7:bf:d0:79:ee:c7:18:
5f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:15:89:C1:82:16:73:6D:16:ED:6D:E0:59:03:6A:33:B2:F2:07:01
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/1BWJwYIWc20W7W3gWQNqM7LyBwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:95c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
52:d6:ec:62:fc:5b:c9:cb:a6:00:85:ba:ef:f9:c5:12:68:4a:
4f:74:e2:49:f2:dc:86:15:46:f2:5c:fa:08:3c:4d:08:d6:64:
fc:e3:c0:1d:33:13:c8:c3:a5:fc:b6:4f:61:c8:7b:19:fb:65:
06:0e:4a:ae:6e:28:fc:e1:84:46:5e:5a:fc:83:ae:8b:0b:38:
93:17:27:28:e8:58:1c:f2:e9:a5:92:cb:68:22:3c:a1:dc:90:
3c:f0:2e:90:00:2f:25:3e:1c:b3:c6:46:41:2d:9d:ed:e5:2f:
a6:d6:6d:a4:33:51:c8:1e:c7:e8:92:a4:31:c8:35:18:0e:42:
c8:b0:a0:b9:a4:0a:cd:24:95:69:b6:d7:ee:47:b2:a8:f1:e5:
75:90:48:e0:89:c1:bb:58:8f:1d:df:3b:4b:ed:c0:7d:3e:4e:
37:0a:66:13:8f:c0:d3:97:ee:76:a8:cf:0b:23:6c:cf:a6:09:
2a:65:32:06:e4:0e:ca:1c:c9:32:fa:25:2e:93:62:a7:33:99:
e8:8f:a4:5c:94:3c:6f:df:d8:ca:54:b5:28:a5:2a:cc:3e:22:
96:00:a1:ff:a5:25:e5:5a:ed:ff:de:bc:fc:1b:06:d7:73:0e:
8b:21:14:30:3b:e9:21:6a:b9:27:45:be:96:f3:c6:70:b3:5d:
e6:be:53:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:52 2023 by rpki-client on console.sobornost.net