Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/hzBxGpW_urWRL-jCr9pE5kYJD-c.roa
File: hzBxGpW_urWRL-jCr9pE5kYJD-c.roa (raw, json)
Hash identifier: oNViMlQfmML7oMexWC+76jSElLT5EyU/MPwebqFWbXs=
Subject key identifier: 87:30:71:1A:95:BF:BA:B5:91:2F:E8:C2:AF:DA:44:E6:46:09:0F:E7
Certificate issuer: /CN=f655558b616794a4f77a648fc33609d977f5a780
Certificate serial: 01856DA6507CEF2112787C702E89532C0AC5
Authority key identifier: F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/hzBxGpW_urWRL-jCr9pE5kYJD-c.roa
Signing time: Sun 01 Jan 2023 14:04:54 +0000
ROA not before: Sun 01 Jan 2023 14:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:aa80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:50:7c:ef:21:12:78:7c:70:2e:89:53:2c:0a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f655558b616794a4f77a648fc33609d977f5a780
Validity
Not Before: Jan 1 14:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8730711a95bfbab5912fe8c2afda44e646090fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:50:35:83:4f:03:bd:ae:f8:75:a7:22:0c:0e:
c7:fd:7b:38:f2:79:4b:a5:37:bf:51:82:51:33:29:
92:71:e3:57:a6:07:86:0f:c5:e8:6d:27:69:bd:70:
35:9f:6d:af:1d:b3:f2:e4:ab:f8:bc:38:6e:5a:e5:
36:63:d3:ef:b9:87:ea:8e:04:2a:bf:3d:62:e1:27:
a5:c6:f3:38:b5:ce:c8:e6:64:9e:f7:74:17:6d:6b:
0a:60:b6:0f:ab:ae:f1:76:d8:8f:80:0b:2a:b2:fd:
95:44:b9:41:3b:cf:1b:9a:9a:27:e5:a4:c8:73:97:
52:53:21:6e:55:fb:cd:1a:50:96:3a:86:b5:b5:9e:
64:b1:7e:3d:e3:1f:71:cd:7c:8b:96:9d:56:29:52:
91:ae:53:aa:95:07:e4:ad:0d:db:9a:fb:71:f9:35:
0d:7d:25:99:70:a1:59:b2:13:54:aa:ef:66:f9:90:
68:67:f1:5e:4c:1c:a3:12:ee:34:b3:6a:ce:5f:c0:
5b:99:c6:f8:fe:ba:fd:d6:f9:de:fc:9d:ba:6a:14:
c8:38:d5:60:8e:ef:42:be:b7:01:b2:e9:71:16:f6:
6b:f4:1a:47:79:42:9b:27:9f:32:16:df:7d:a3:19:
be:f2:15:ea:72:dd:68:bb:a0:13:f7:5f:4b:48:72:
10:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:30:71:1A:95:BF:BA:B5:91:2F:E8:C2:AF:DA:44:E6:46:09:0F:E7
X509v3 Authority Key Identifier:
keyid:F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/hzBxGpW_urWRL-jCr9pE5kYJD-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:aa80::/29
Signature Algorithm: sha256WithRSAEncryption
00:ef:95:86:14:81:5d:fe:7b:04:03:ab:dd:95:05:0a:ef:79:
ed:21:de:ab:d7:fe:73:b2:7f:50:33:de:e9:df:27:1d:c5:7f:
05:f4:5e:c6:dd:89:09:0c:e9:3d:65:60:30:b0:94:81:79:d8:
1e:86:53:f5:69:30:f9:e3:4c:50:29:bf:89:7a:66:92:9c:8f:
b7:22:ff:73:ed:89:88:4c:ea:51:c2:cc:b1:fa:25:d1:a6:26:
7b:e8:88:f7:73:e3:79:77:36:36:39:56:3a:52:dd:2e:d0:9b:
a0:67:fe:b0:48:e8:75:c1:a7:16:8b:d3:11:56:4c:6c:59:ae:
aa:85:b0:d6:e9:49:36:4f:bb:56:eb:f3:23:bc:4b:83:95:c6:
b0:2e:ea:0f:53:5a:6c:a7:0b:40:e0:c6:73:e4:43:16:7e:24:
e7:20:13:ca:a5:3e:80:93:8d:27:08:de:93:6a:72:5c:d0:ac:
3b:36:a3:12:0e:92:bb:76:2f:3e:66:3f:eb:f3:4f:b7:94:f3:
23:c8:b2:d1:51:65:16:1d:d3:fa:7c:1e:d5:20:79:08:9a:e7:
a2:8c:74:49:6f:bb:70:8d:dc:5d:6e:37:0f:77:2d:a5:58:ee:
3d:0a:51:cf:89:8b:83:62:10:a4:98:79:3a:11:85:43:97:f3:
82:3b:92:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:54 2024 by rpki-client on console.sobornost.net