Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/rkWunAEUtcNcXWaHQvEjUMg2RyY.roa
File: rkWunAEUtcNcXWaHQvEjUMg2RyY.roa (raw, json)
Hash identifier: qtcGPPxtNpGqJJlJjaB827ycIfeRy51QjuUG5K6thX4=
Subject key identifier: AE:45:AE:9C:01:14:B5:C3:5C:5D:66:87:42:F1:23:50:C8:36:47:26
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 0185701511F8007C11BDF4E7591A95279090
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/rkWunAEUtcNcXWaHQvEjUMg2RyY.roa
Signing time: Mon 02 Jan 2023 01:25:07 +0000
ROA not before: Mon 02 Jan 2023 01:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56837
IP address blocks: 2001:67c:1808::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:11:f8:00:7c:11:bd:f4:e7:59:1a:95:27:90:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Jan 2 01:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae45ae9c0114b5c35c5d668742f12350c8364726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2a:dc:65:b5:03:03:37:82:e8:c0:24:f9:dc:
d8:58:b3:3f:58:44:46:d0:da:e9:48:fc:23:4b:59:
65:48:5b:71:30:7a:dc:23:e3:56:ee:72:3e:1d:12:
1d:fb:87:be:c4:31:af:da:af:21:a7:6d:c2:f4:7c:
20:04:c1:57:05:06:c4:21:4b:93:4f:42:74:82:93:
7e:bf:be:b3:75:50:f8:27:a2:9d:a1:6f:44:dc:84:
a4:8e:e4:1b:2f:33:36:d8:88:e8:e5:29:ec:67:7d:
14:88:02:8f:c6:b7:66:64:30:f1:b1:25:de:60:c5:
14:00:01:8d:ac:93:38:95:d2:e7:a2:64:f2:c3:02:
60:4b:f3:8d:26:44:7c:13:d3:e2:6d:64:fb:0f:68:
cc:0d:86:d3:f2:8f:46:fa:f6:cb:db:69:6f:1b:79:
70:b5:e3:b0:bc:91:1f:94:fe:a9:58:89:0d:d0:3a:
7f:85:e7:b6:c3:55:0d:7e:8b:6f:70:08:c4:fa:4c:
b1:d0:1e:f9:37:54:43:cc:5b:38:0e:96:94:5f:7d:
8d:3a:95:12:9c:0c:8c:cb:7a:12:fa:0e:5b:28:27:
84:93:3c:3d:6b:dc:e1:67:9e:16:4d:02:0b:33:1b:
92:a7:a6:61:e0:86:cf:30:44:00:5c:cb:a0:66:90:
a5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:45:AE:9C:01:14:B5:C3:5C:5D:66:87:42:F1:23:50:C8:36:47:26
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/rkWunAEUtcNcXWaHQvEjUMg2RyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1808::/48
Signature Algorithm: sha256WithRSAEncryption
97:b1:ae:eb:e0:9e:88:fe:c4:0d:66:b8:13:28:d8:bd:13:d9:
f9:1b:1a:5f:c8:a8:52:33:dc:36:31:57:31:e8:45:00:a6:72:
65:c3:d7:7a:d4:b4:63:87:29:b2:3b:41:fa:78:ac:20:1e:e2:
75:53:37:e9:63:2f:58:b4:18:d8:aa:91:d1:0c:08:a5:0b:b9:
e1:2b:47:4d:39:76:23:bd:17:0d:6f:ed:4b:1f:bc:c7:4d:0d:
77:78:34:ee:85:d3:fe:16:b9:8d:ad:28:89:f4:f3:7d:43:34:
6a:f9:7a:0a:79:e2:1a:49:46:36:60:f2:5a:df:c4:7a:e9:74:
ca:bb:06:62:a5:f6:0e:29:d8:24:a5:89:01:37:44:e9:ba:12:
e9:08:80:0d:32:d2:18:3f:b8:9a:98:37:b4:7e:1b:c5:41:cf:
8b:bc:45:06:f1:e1:ea:8c:03:2b:60:c3:12:7e:db:00:4b:51:
44:6e:bb:09:de:ce:57:57:bf:fe:c0:7e:f0:20:8f:50:d1:e7:
3f:02:a1:1b:40:8c:2c:b3:0f:4d:8e:81:01:97:a0:06:c1:d1:
f5:aa:0c:5e:1a:73:9c:0b:e4:4e:de:7c:64:fe:17:8a:cb:b1:
62:fa:18:09:51:0b:a7:a1:64:28:1e:86:31:45:9a:66:22:a9:
f2:47:34:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:35:34 2024 by rpki-client on console.sobornost.net