Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/v_qAbcNlxvJuGafMz4EL1-VuALc.roa
File: v_qAbcNlxvJuGafMz4EL1-VuALc.roa (raw, json)
Hash identifier: hkN52DfdRVxUZuMoXkAVvBUbidaw3vZDNpeoQswD5CE=
Subject key identifier: BF:FA:80:6D:C3:65:C6:F2:6E:19:A7:CC:CF:81:0B:D7:E5:6E:00:B7
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 01856F024B7D2ACD227C9A0A81C5F83BA0AC
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/v_qAbcNlxvJuGafMz4EL1-VuALc.roa
Signing time: Sun 01 Jan 2023 20:24:59 +0000
ROA not before: Sun 01 Jan 2023 20:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204318
IP address blocks: 2a13:4c00::/34 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:4b:7d:2a:cd:22:7c:9a:0a:81:c5:f8:3b:a0:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jan 1 20:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bffa806dc365c6f26e19a7cccf810bd7e56e00b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:94:aa:c3:62:ce:d6:72:94:24:cd:ba:f4:f0:
0d:78:c0:e7:4a:d6:7a:9d:9c:a5:8f:45:b1:51:f2:
07:8f:a5:15:bf:e9:7a:de:39:fe:b2:9a:e3:13:8f:
67:f1:83:70:da:4a:54:bb:86:57:27:60:71:0f:2c:
3d:d7:10:bb:b3:70:07:f7:87:3c:b4:42:60:2d:40:
2d:27:66:e9:32:4a:f5:46:dc:e0:2e:d1:8f:57:4e:
2d:6a:b2:6d:8d:b5:94:6a:34:d2:73:1e:11:fb:ae:
05:bf:50:e3:2b:f3:a9:ae:12:b9:7e:b0:14:47:00:
39:b3:ea:13:bb:6a:e6:53:2c:3c:1b:c1:eb:22:21:
e2:bf:09:e8:3d:cb:be:fe:ce:28:dd:0e:40:04:c5:
4e:3f:1c:03:03:94:6a:64:82:3c:f6:5e:5a:a3:84:
9e:62:db:76:8a:c8:a0:cb:0c:0b:25:fc:39:5e:5b:
f8:0c:06:a1:e1:ad:84:79:2d:6f:77:9f:23:e3:bf:
f8:73:9d:5c:1e:d0:da:e0:5d:9c:81:cd:1f:d7:89:
bc:77:32:bd:e2:8b:f1:f2:46:8f:32:87:d3:f3:a8:
7b:e3:f8:5e:b6:9d:5f:9c:2b:93:70:14:65:25:41:
58:9e:fd:ec:ad:09:f5:bd:5c:dd:30:1d:bb:9c:cf:
96:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FA:80:6D:C3:65:C6:F2:6E:19:A7:CC:CF:81:0B:D7:E5:6E:00:B7
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/v_qAbcNlxvJuGafMz4EL1-VuALc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4c00::/34
Signature Algorithm: sha256WithRSAEncryption
c8:3e:67:cf:4b:98:87:bf:0c:51:42:a0:69:3b:07:9c:2c:9d:
e2:dc:13:18:e7:b4:ed:7d:db:9b:90:3a:f6:61:a9:c0:a7:de:
69:24:b9:0b:42:48:8b:b7:6d:16:a3:3b:64:a5:8c:34:10:e5:
fa:04:41:23:04:aa:36:1b:11:a8:29:59:c2:6d:db:b4:cc:c4:
26:f7:3c:f1:57:d8:9e:e8:43:e4:7a:c4:82:77:eb:fe:7c:74:
38:d7:bd:68:dc:b6:4a:f9:93:e7:c2:8d:a7:1f:b4:6d:b0:4e:
b3:14:99:c2:f9:1f:46:af:a3:77:f1:ce:5a:73:8f:88:93:d4:
f5:a6:bd:68:0a:31:83:e3:4e:f0:b7:2d:72:fa:5c:33:37:c2:
2a:71:02:64:55:d4:04:6a:47:f0:9c:ea:18:4b:88:45:77:82:
1b:a0:22:7a:d7:b5:2d:00:0d:db:29:21:7a:c5:ee:17:87:62:
4d:ca:13:83:01:52:1d:4f:03:2a:e2:d8:89:1d:84:06:85:2a:
6c:8f:c8:88:79:74:53:43:6a:84:89:fd:02:bb:15:a5:1a:28:
24:07:eb:77:ca:8c:d8:ff:5a:88:28:15:32:7f:2d:f3:a4:86:
5d:1e:77:07:9a:0e:15:eb:9c:d2:4e:ee:65:c9:6e:6f:5e:78:
d7:e6:7a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:47 2024 by rpki-client on console.sobornost.net