Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/pcqN8QrzXXh9fhbQEOqqDWchkWQ.roa
File: pcqN8QrzXXh9fhbQEOqqDWchkWQ.roa (raw, json)
Hash identifier: l3SZasYxB8acDpWzgadBxH8knvXqo6zZUfA/BIRirWQ=
Subject key identifier: A5:CA:8D:F1:0A:F3:5D:78:7D:7E:16:D0:10:EA:AA:0D:67:21:91:64
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 018BECAE82AD42BE9447BA21377F38C494DC
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/pcqN8QrzXXh9fhbQEOqqDWchkWQ.roa
Signing time: Mon 20 Nov 2023 12:22:21 +0000
ROA not before: Mon 20 Nov 2023 12:22:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197501
IP address blocks: 2a0a:2c0:8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:ae:82:ad:42:be:94:47:ba:21:37:7f:38:c4:94:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Nov 20 12:22:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5ca8df10af35d787d7e16d010eaaa0d67219164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:23:cc:4a:45:58:07:3e:33:5c:0b:d1:80:
75:fa:a2:d0:7d:47:5b:84:db:ae:be:d2:cd:25:d8:
72:50:0f:51:0c:26:06:7c:66:93:3c:2e:be:b8:f1:
dc:30:e8:1a:02:35:f2:4d:b2:9d:49:50:df:df:6e:
14:c5:c6:44:40:a7:55:7e:9b:68:e0:a0:e2:a9:b7:
ee:a3:b1:67:93:bb:94:93:66:03:e0:4a:b3:72:37:
f3:46:4c:e0:f8:5b:8c:98:78:0d:35:da:73:61:5a:
95:d2:26:d8:ac:c0:6f:e3:13:31:84:93:da:f2:b9:
63:7f:26:a1:0b:8f:73:9c:15:cc:96:f6:6f:1c:a2:
62:ef:d7:e3:f2:22:04:10:e1:0a:9c:d6:52:a3:dd:
cb:11:a5:6d:4a:91:08:17:bd:d6:f3:11:e0:4e:c7:
04:09:7c:5b:ed:e2:a2:62:8f:e9:7f:a7:b3:f4:d5:
15:60:a9:3a:cd:3c:8b:5a:dc:7d:4f:58:de:d6:a0:
94:4b:88:49:b0:91:1e:2b:2c:99:28:bd:61:44:92:
6b:1b:4e:1e:8e:eb:f3:24:0d:cc:ac:ba:98:f8:fd:
c0:8b:9f:3e:e6:aa:34:ec:f6:97:d0:1d:bf:08:12:
39:43:5c:df:d9:e1:b2:37:39:2c:1a:a7:1c:90:06:
42:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CA:8D:F1:0A:F3:5D:78:7D:7E:16:D0:10:EA:AA:0D:67:21:91:64
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/pcqN8QrzXXh9fhbQEOqqDWchkWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2c0:8::/48
Signature Algorithm: sha256WithRSAEncryption
8f:1d:90:6e:64:79:60:e4:15:f3:02:e2:ec:12:0a:ee:9e:a0:
41:b8:f5:b7:32:87:4a:f2:f8:c2:70:96:c7:9f:d9:9c:c3:00:
9d:a4:de:b1:68:0c:4e:b3:50:3f:23:a2:b4:6b:22:0b:60:27:
85:6c:c9:a3:28:06:61:81:b3:8d:54:df:11:ec:3a:8d:8e:f0:
d9:c0:c5:eb:24:4a:f0:8e:c1:c5:c5:ce:59:1f:dd:7f:bd:a8:
06:4b:58:26:14:7b:f9:64:71:2b:a2:f3:e2:d7:62:7a:70:7d:
84:68:92:aa:90:80:09:8e:fa:14:f1:bd:b2:20:69:75:b1:0f:
11:c4:06:da:05:a3:26:8d:72:cb:96:a8:14:b5:b1:5d:41:3b:
75:90:15:dc:2b:f6:b9:e7:a3:b9:4d:5e:90:ba:41:0c:2b:11:
fa:23:46:76:c5:71:79:d4:f3:57:ad:66:3d:53:28:48:a1:76:
9b:21:70:9a:cb:c2:8d:28:53:6a:fd:36:b1:37:25:99:18:78:
a2:8c:71:b6:94:ca:9c:3f:dd:20:52:8e:71:21:f4:21:a6:08:
c7:76:07:79:62:fd:4e:e6:05:e6:9c:00:28:0d:af:db:46:30:
cc:4f:7c:05:46:4f:a7:b3:ba:d2:18:f5:e4:70:fb:83:60:d3:
09:da:a9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:34 2024 by rpki-client on console.sobornost.net