Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/FVSUOgfkLri4yrPHjmABJlm020c.roa
File: FVSUOgfkLri4yrPHjmABJlm020c.roa (raw, json)
Hash identifier: gVhuRn1sqfA2k4RjFCrUdpZWwTfGEqpqGEPDrA7V/IY=
Subject key identifier: 15:54:94:3A:07:E4:2E:B8:B8:CA:B3:C7:8E:60:01:26:59:B4:DB:47
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 018570DE56C162B757C777F504D34940FCFB
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/FVSUOgfkLri4yrPHjmABJlm020c.roa
Signing time: Mon 02 Jan 2023 05:04:57 +0000
ROA not before: Mon 02 Jan 2023 05:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42655
IP address blocks: 2a03:1240:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:56:c1:62:b7:57:c7:77:f5:04:d3:49:40:fc:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Jan 2 05:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1554943a07e42eb8b8cab3c78e60012659b4db47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:54:1f:43:b2:53:fe:3c:a0:2a:6a:3d:76:
3c:e5:48:1b:1e:cc:84:63:e8:6a:e3:9e:77:e2:81:
81:56:88:24:8e:f2:09:33:36:a0:c4:d2:e8:03:26:
8f:33:0b:b8:b0:63:84:10:e0:16:29:09:c5:ca:23:
b7:2c:da:c0:a2:10:24:97:8a:fd:e9:b7:34:59:99:
fa:f0:b7:e5:ec:10:c8:0a:75:1f:48:32:30:49:e9:
19:85:52:fa:87:46:30:db:99:ab:a3:9e:96:3b:d0:
70:5f:6f:17:3a:b9:5b:97:77:2b:de:1d:d0:0d:ea:
b6:49:66:71:0f:95:e5:7c:8c:1c:6d:63:d1:b4:87:
28:7f:df:5c:3d:a2:b6:f6:7a:0a:9f:e8:ba:35:22:
5f:ae:2a:9a:6a:ee:8d:0a:02:df:4f:c2:b3:c3:18:
aa:31:be:fe:9d:47:bd:88:1d:e6:6a:ed:1f:2e:35:
4f:8a:f1:f8:12:ae:5b:9b:b8:ef:76:a0:62:12:eb:
19:fc:4d:02:77:a2:a5:8d:33:22:04:49:68:55:c3:
e9:b6:6c:d8:b9:6c:4e:37:8f:88:2b:d1:81:23:6a:
fb:46:31:2a:96:a1:a4:87:0a:35:1a:8d:14:25:dc:
aa:d8:db:5a:15:0f:9b:85:0c:06:c2:9c:9f:af:2e:
52:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:54:94:3A:07:E4:2E:B8:B8:CA:B3:C7:8E:60:01:26:59:B4:DB:47
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/FVSUOgfkLri4yrPHjmABJlm020c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:1240:1::/48
Signature Algorithm: sha256WithRSAEncryption
73:fe:dc:e7:37:be:70:10:65:98:57:80:b1:a6:d3:d3:4e:22:
17:d9:6a:57:d9:e8:40:90:b7:14:aa:8c:fd:de:ed:54:cb:09:
b0:0b:97:32:0b:e6:52:2c:ad:d4:c0:d2:d6:61:0e:7f:95:a5:
d7:c8:d9:70:ae:d9:fc:25:ea:b7:62:5b:53:10:ba:d2:58:41:
2a:45:04:7b:d1:e7:71:d2:01:90:79:bb:37:76:ab:f9:31:91:
5f:35:cd:9c:0d:4c:b5:df:e2:04:ce:a4:26:12:25:dd:5f:ea:
0c:5a:c6:44:65:fb:80:76:97:64:33:e7:44:8d:ec:4c:1d:6d:
f4:ce:7a:5d:d7:0e:76:f4:de:ef:01:62:88:ca:3f:da:6c:e1:
8b:cd:e8:bd:6e:f2:a1:a4:4e:59:9a:67:1b:b8:12:84:2d:e1:
19:db:51:f0:a7:b9:6d:4f:3e:80:ae:7e:68:fd:36:00:33:40:
b0:6f:2c:7d:74:72:2e:8c:72:95:88:56:e9:4d:74:3c:c3:c6:
a1:0d:21:1c:96:6d:93:18:f3:b9:76:ff:c2:4f:bb:94:f2:d8:
4c:44:25:e3:8e:7b:bf:ab:e0:ed:b8:80:31:73:ec:5f:99:07:
e5:cc:c9:49:ce:d0:57:eb:08:46:19:db:d2:1e:dc:f5:35:b5:
dc:6b:3d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:52 2024 by rpki-client on console.sobornost.net