Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/D1X2CZ05jWrfACOTJBKJoNoYpBc.roa
File: D1X2CZ05jWrfACOTJBKJoNoYpBc.roa (raw, json)
Hash identifier: eWKdrrDtICL/t7ZDPuYCHjhzko5Ep+VKhrjDlcQkZBE=
Subject key identifier: 0F:55:F6:09:9D:39:8D:6A:DF:00:23:93:24:12:89:A0:DA:18:A4:17
Certificate issuer: /CN=a4767bc5fbcbcefb1c1c747bb0eb5337dab691c0
Certificate serial: 018570CBEE2A5D8134CAAE5D91CCB3131586
Authority key identifier: A4:76:7B:C5:FB:CB:CE:FB:1C:1C:74:7B:B0:EB:53:37:DA:B6:91:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/D1X2CZ05jWrfACOTJBKJoNoYpBc.roa
Signing time: Mon 02 Jan 2023 04:44:51 +0000
ROA not before: Mon 02 Jan 2023 04:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30893
IP address blocks: 2a01:298:f001::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:ee:2a:5d:81:34:ca:ae:5d:91:cc:b3:13:15:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4767bc5fbcbcefb1c1c747bb0eb5337dab691c0
Validity
Not Before: Jan 2 04:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f55f6099d398d6adf002393241289a0da18a417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4e:ad:a8:37:aa:ed:ff:72:55:dd:85:94:91:
69:32:d6:12:c0:73:c7:6d:66:31:30:21:21:44:71:
67:ec:99:cd:95:1b:bd:ba:14:71:b7:69:4d:ef:34:
9e:18:41:33:c3:7d:25:dc:1c:40:bb:d9:4e:c6:c7:
4a:d9:c7:50:45:32:a4:50:15:1a:a2:cf:fd:f4:0c:
c2:8e:5d:0d:31:c6:ee:ea:d8:12:c2:1d:fd:88:bd:
9a:82:a2:ff:44:81:24:2c:e9:67:6e:ab:11:b6:0d:
3f:c0:0f:94:83:ca:94:33:73:7b:fe:3e:43:ac:6a:
5e:c0:d3:48:dc:3a:4b:f5:f9:1c:bb:39:6d:4e:f6:
1c:5f:92:d8:1b:2f:f9:62:a1:f4:3c:8e:cb:1f:10:
d1:b4:d7:b8:b7:76:aa:a8:11:06:2a:e4:6d:95:4f:
c9:c2:63:18:bf:32:ee:f9:a4:60:db:41:33:4e:b6:
a6:63:0e:aa:5e:91:6f:5f:40:b3:c1:0d:f8:d7:d7:
b6:8c:66:99:cd:e6:34:59:5b:07:22:90:bc:6b:58:
ae:3c:dd:b9:29:40:e2:8f:a9:3a:36:12:26:ab:ae:
aa:1d:5b:2e:2b:e4:35:43:8f:85:b5:14:31:db:79:
97:88:5d:1b:46:7f:98:b5:07:d9:a8:38:20:91:e1:
ca:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:55:F6:09:9D:39:8D:6A:DF:00:23:93:24:12:89:A0:DA:18:A4:17
X509v3 Authority Key Identifier:
keyid:A4:76:7B:C5:FB:CB:CE:FB:1C:1C:74:7B:B0:EB:53:37:DA:B6:91:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/D1X2CZ05jWrfACOTJBKJoNoYpBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/pHZ7xfvLzvscHHR7sOtTN9q2kcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:298:f001::/48
Signature Algorithm: sha256WithRSAEncryption
bb:f3:b2:34:6f:39:8c:1c:a7:a1:f4:c7:77:ac:f7:aa:e3:e3:
9c:c5:05:df:5a:34:58:6e:d8:43:a3:a9:ff:5f:12:48:66:f0:
64:ec:70:c1:58:c7:42:67:83:84:97:f5:54:2e:fb:db:70:e8:
8c:cd:d7:e5:16:b1:71:6d:35:cc:89:b1:c9:ef:0f:b8:d8:8d:
24:6f:d0:f5:a1:90:21:41:a0:34:dd:2f:bb:20:fe:06:f5:68:
bc:96:da:77:89:10:a6:63:13:10:2a:62:3b:6a:57:96:40:d4:
3a:58:0b:52:81:ca:93:96:2d:ce:91:33:a6:5b:6d:b8:92:f1:
e4:74:0b:2c:9e:b5:46:78:3d:3a:27:64:a0:0f:10:be:04:e5:
e3:dd:f6:40:9b:6e:52:69:85:32:08:08:7d:d8:8a:88:dd:72:
a7:24:76:be:dd:19:42:37:55:a4:29:c2:fa:23:2f:d0:e7:8e:
7b:e2:b1:f9:02:21:f2:d3:94:e9:3a:16:fa:4d:29:9c:0c:f4:
52:48:9f:dc:e9:15:b1:08:f6:df:64:3b:09:08:28:a8:7d:b7:
00:d3:8d:cf:83:3d:32:41:61:b7:47:97:64:64:ec:b7:bf:c3:
c0:6c:d5:66:f2:b8:f8:68:cc:62:d1:d4:ac:f8:2b:54:c8:6b:
d9:53:0f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:08 2024 by rpki-client on console.sobornost.net