Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/ldVsOGWzNpYPl-YwfuE7TrDjZfI.roa
File: ldVsOGWzNpYPl-YwfuE7TrDjZfI.roa (raw, json)
Hash identifier: mvYe8667dSh2btCjbxJONUhzJefB8WEVVuqeQlJQrR8=
Subject key identifier: 95:D5:6C:38:65:B3:36:96:0F:97:E6:30:7E:E1:3B:4E:B0:E3:65:F2
Certificate issuer: /CN=e5f4f24b40fda9b9528e4a8edcad61b841df6c18
Certificate serial: 01856FDDC72AC8D34F5522370E3CEFA0FBEF
Authority key identifier: E5:F4:F2:4B:40:FD:A9:B9:52:8E:4A:8E:DC:AD:61:B8:41:DF:6C:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fTyS0D9qblSjkqO3K1huEHfbBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/ldVsOGWzNpYPl-YwfuE7TrDjZfI.roa
Signing time: Mon 02 Jan 2023 00:24:43 +0000
ROA not before: Mon 02 Jan 2023 00:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 2a0c:1100::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:c7:2a:c8:d3:4f:55:22:37:0e:3c:ef:a0:fb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f4f24b40fda9b9528e4a8edcad61b841df6c18
Validity
Not Before: Jan 2 00:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95d56c3865b336960f97e6307ee13b4eb0e365f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d3:65:ba:40:e2:7f:b9:ba:d0:70:ad:06:61:
07:6e:3e:bf:06:49:cb:9c:73:bc:ee:8d:90:b5:20:
53:38:a0:97:7c:dc:39:a4:55:22:db:bf:61:64:a7:
a9:c4:1a:85:83:c0:98:9d:47:ef:82:b1:ca:a9:1a:
05:a6:52:be:0a:8a:89:9c:4e:71:a2:5a:a8:b2:db:
e2:4b:9e:a7:f2:7c:1f:35:3e:a7:0a:fd:aa:3a:21:
23:86:94:fb:e7:e3:78:09:1d:26:6f:21:07:37:8d:
28:20:20:17:4f:e8:88:2d:3a:37:77:31:26:ef:64:
8a:5b:52:bf:b6:55:59:97:0f:82:de:d4:67:e8:e3:
4e:6a:8d:ce:d7:2a:f4:01:90:2c:98:0d:a2:44:4d:
8b:c0:63:a3:55:96:e1:32:42:c0:5f:81:cf:e2:fa:
13:a4:6d:f1:02:c0:d6:bb:f7:c3:0b:9e:5d:af:f8:
6a:81:8f:1c:e3:67:b5:b9:62:96:29:92:25:8a:29:
30:ce:b6:81:49:3f:1a:f8:c3:60:10:34:44:f3:37:
99:70:17:17:cf:81:06:d3:38:19:9d:84:50:07:9b:
d8:70:24:84:8b:2e:31:2a:9e:49:1f:99:0b:14:22:
5c:78:50:18:68:58:51:71:c5:84:a8:fa:69:97:d6:
44:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D5:6C:38:65:B3:36:96:0F:97:E6:30:7E:E1:3B:4E:B0:E3:65:F2
X509v3 Authority Key Identifier:
keyid:E5:F4:F2:4B:40:FD:A9:B9:52:8E:4A:8E:DC:AD:61:B8:41:DF:6C:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fTyS0D9qblSjkqO3K1huEHfbBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/ldVsOGWzNpYPl-YwfuE7TrDjZfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51e3a5-31db-4bdd-b0cd-828022043ea3/1/5fTyS0D9qblSjkqO3K1huEHfbBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:1100::/32
Signature Algorithm: sha256WithRSAEncryption
61:7f:2c:ef:2c:19:d1:e2:1a:18:3f:1c:68:03:ae:ab:70:f9:
b0:18:d7:2e:ab:a8:9f:b6:ad:28:a2:16:1d:40:cd:96:4e:93:
07:5c:9f:5e:be:b3:ad:e0:81:5d:60:c0:bf:b7:1f:aa:f9:a2:
b2:6b:73:7c:67:46:90:a5:3e:13:65:d4:3a:42:2e:e3:aa:fd:
91:3c:db:3b:7b:1d:74:de:dc:87:95:70:45:c2:0d:37:6e:7f:
5c:0e:b1:36:84:4f:25:2b:c4:d9:6c:cb:6b:35:14:5f:5f:b2:
12:1f:70:70:94:3b:9c:32:a6:80:22:50:41:b0:9f:27:fa:48:
93:8f:61:58:38:02:f2:ac:a3:a2:b8:72:56:2f:1e:8e:f8:05:
98:46:05:50:37:35:62:42:b7:e1:a1:4b:04:ce:3e:18:69:0a:
02:90:98:86:6b:0d:da:5a:4d:ce:55:6c:86:38:31:be:9d:86:
6f:16:5b:2f:4b:78:1a:fd:25:ab:36:69:16:cf:1b:c9:e0:9c:
7a:0e:b6:b2:f8:56:a9:4f:0e:e4:e4:a1:9b:af:64:26:ba:e6:
ea:54:89:5a:da:57:8e:75:2b:b4:51:96:6d:08:f1:c6:a4:b3:
02:c3:74:b7:5d:4a:cc:46:66:15:f3:68:8a:21:21:2e:5e:2b:
2d:85:42:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:36 2024 by rpki-client on console.sobornost.net