Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/ef7192-2cdf-4ac3-ac04-a6c0ceaaac52/1/oWSeaDfrMzXBZ7K6e5jTogsdrG8.roa
File: oWSeaDfrMzXBZ7K6e5jTogsdrG8.roa (raw, json)
Hash identifier: gJUvCx1jNU82KdB2lo1VHXHovaRWxd1G896tpzkgDKs=
Subject key identifier: A1:64:9E:68:37:EB:33:35:C1:67:B2:BA:7B:98:D3:A2:0B:1D:AC:6F
Certificate issuer: /CN=e5c0fb256374b7d43e232c848e42cc7b3f83ed22
Certificate serial: 01856BE5B23F2556EC691E0621E52F7B204D
Authority key identifier: E5:C0:FB:25:63:74:B7:D4:3E:23:2C:84:8E:42:CC:7B:3F:83:ED:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cD7JWN0t9Q-IyyEjkLMez-D7SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/ef7192-2cdf-4ac3-ac04-a6c0ceaaac52/1/oWSeaDfrMzXBZ7K6e5jTogsdrG8.roa
Signing time: Sun 01 Jan 2023 05:54:53 +0000
ROA not before: Sun 01 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:d580::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b2:3f:25:56:ec:69:1e:06:21:e5:2f:7b:20:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5c0fb256374b7d43e232c848e42cc7b3f83ed22
Validity
Not Before: Jan 1 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1649e6837eb3335c167b2ba7b98d3a20b1dac6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:52:f3:84:76:91:26:62:9f:17:6d:f7:69:6a:
11:f3:e6:32:7e:fa:37:3c:c4:74:bb:b0:ce:ed:fd:
34:8b:ee:6d:8a:95:fa:67:bb:5d:e3:64:ff:86:d1:
51:7a:db:df:31:65:64:b3:70:d3:61:1e:81:69:6a:
2f:42:d2:b5:2b:3c:a4:f2:3e:1c:0f:f2:28:55:83:
fc:51:a8:68:23:e1:73:6e:1f:38:7f:38:0a:26:17:
7a:d8:1f:d9:2d:7e:e3:64:24:22:f6:aa:23:ce:b4:
52:a9:cc:39:db:e4:2f:f1:44:da:d7:dd:c7:84:32:
fd:a8:20:50:ce:ca:bc:74:b8:fa:8a:b5:d3:c6:c2:
2e:df:51:3f:ca:7d:1c:74:4a:a0:b7:aa:16:3e:6d:
1d:63:f8:7b:21:c2:f5:4b:f9:28:3a:18:b2:b2:88:
1a:76:92:62:ff:bb:3d:aa:57:42:2b:b2:f2:02:37:
1b:96:ed:13:e8:c9:4c:dd:63:5b:47:f2:a3:81:bb:
58:df:66:f7:1b:f5:ba:96:3e:09:f5:d6:de:cf:44:
c8:a2:f4:b8:05:70:1b:73:4e:98:ba:83:f4:86:5d:
80:7a:31:4d:bb:d9:f3:f1:93:2a:37:f9:ab:21:22:
8d:65:bc:1d:dd:27:65:1e:df:ac:db:56:cc:88:17:
b8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:64:9E:68:37:EB:33:35:C1:67:B2:BA:7B:98:D3:A2:0B:1D:AC:6F
X509v3 Authority Key Identifier:
keyid:E5:C0:FB:25:63:74:B7:D4:3E:23:2C:84:8E:42:CC:7B:3F:83:ED:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cD7JWN0t9Q-IyyEjkLMez-D7SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/ef7192-2cdf-4ac3-ac04-a6c0ceaaac52/1/oWSeaDfrMzXBZ7K6e5jTogsdrG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/ef7192-2cdf-4ac3-ac04-a6c0ceaaac52/1/5cD7JWN0t9Q-IyyEjkLMez-D7SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d580::/29
Signature Algorithm: sha256WithRSAEncryption
71:6e:e4:19:32:fe:9a:d2:c6:2a:53:21:7e:56:9b:22:1d:2a:
c9:a0:67:cd:4b:99:31:ad:d3:97:3b:2a:b5:26:6b:53:7e:8a:
49:07:e3:1c:f8:78:46:af:58:37:d7:a6:fd:67:41:78:36:77:
66:10:0f:e3:ce:43:59:36:a2:af:21:1a:9a:f5:d7:d8:6c:65:
6a:24:d7:e4:03:e5:c7:6e:ac:44:a7:c3:48:73:47:7a:8f:af:
d6:b8:83:74:f9:2c:1f:61:b5:10:4e:cc:3a:3f:d0:58:d2:14:
30:b3:12:93:79:ce:1c:63:06:ce:9a:5d:75:59:a3:ba:8b:a3:
c0:07:8a:bd:01:89:79:4c:bf:3c:58:34:70:31:fb:64:49:eb:
ed:f5:3e:2d:4e:79:a0:4d:57:95:e9:5b:2f:f1:52:d9:3b:33:
b9:54:aa:26:a5:ae:7c:2c:1f:56:88:61:98:a3:7f:fc:61:94:
da:5e:ac:2e:06:de:0f:be:bf:0d:ee:68:e2:c0:30:00:d5:85:
a9:a9:97:74:38:ec:d4:94:94:c5:b5:7d:4a:15:04:0f:a5:8b:
d0:bc:55:94:47:b5:45:bc:e5:f2:d0:e3:5c:c6:35:76:d2:14:
e4:02:60:5d:80:dd:46:11:3a:6c:ec:57:dd:f3:3e:9f:be:26:
eb:28:24:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:27 2024 by rpki-client on console.sobornost.net