Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/987c4e-789b-4c26-8ce5-abb222507f17/1/UrU09-tFip_PsuXnC4BjlYT4bA0.roa
File: UrU09-tFip_PsuXnC4BjlYT4bA0.roa (raw, json)
Hash identifier: it+D5I9sqHGHXcuDX4YLio3VrmZzwW+bXwEev1aH5CQ=
Subject key identifier: 52:B5:34:F7:EB:45:8A:9F:CF:B2:E5:E7:0B:80:63:95:84:F8:6C:0D
Certificate issuer: /CN=46846557b9e42955163e516b02dc8e3ee3828114
Certificate serial: 0186B5BCE4858A6D50A3E03F1395CF919997
Authority key identifier: 46:84:65:57:B9:E4:29:55:16:3E:51:6B:02:DC:8E:3E:E3:82:81:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoRlV7nkKVUWPlFrAtyOPuOCgRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/987c4e-789b-4c26-8ce5-abb222507f17/1/UrU09-tFip_PsuXnC4BjlYT4bA0.roa
Signing time: Mon 06 Mar 2023 07:05:00 +0000
ROA not before: Mon 06 Mar 2023 07:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205627
IP address blocks: 2a11:ac7::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b5:bc:e4:85:8a:6d:50:a3:e0:3f:13:95:cf:91:99:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46846557b9e42955163e516b02dc8e3ee3828114
Validity
Not Before: Mar 6 07:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52b534f7eb458a9fcfb2e5e70b80639584f86c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b4:26:dc:2e:fc:f4:31:f3:56:d6:44:28:2e:
39:57:61:7e:c6:06:ee:95:49:e4:de:d6:fd:56:d1:
69:04:70:17:dc:8b:09:30:68:c9:52:e0:0e:df:bd:
02:24:9d:45:3c:24:3e:7e:f9:0e:aa:0c:56:56:26:
8d:06:29:2f:2b:7b:8a:34:b0:86:43:6e:2a:64:b0:
9c:f2:ed:28:9c:4c:d4:4a:27:fb:28:2d:90:c5:1e:
98:e6:04:3d:6b:f8:ba:fb:2b:96:ea:52:26:e2:c0:
05:63:47:2f:ea:35:92:3b:38:e9:e2:b6:90:c5:13:
21:1d:45:5b:b6:1d:f3:9b:93:b6:bc:fa:26:62:5d:
ac:0b:b2:2d:5e:28:fd:f8:7d:36:37:3e:7f:a5:e2:
12:56:fd:6c:cc:4c:d6:78:89:ff:d5:b7:f5:d1:9f:
20:81:78:9d:15:73:7a:ce:91:08:69:dd:a0:f5:91:
27:03:cd:bf:f8:da:3a:b6:40:dc:47:b6:7f:06:b6:
b5:b3:9e:e2:3f:ba:cf:bf:b3:64:3a:fa:9f:c3:65:
31:6a:83:21:89:33:92:a7:f8:73:0e:f6:57:ea:9d:
47:e5:f8:52:78:50:12:03:6d:19:e4:ec:17:91:a7:
09:7d:13:0d:30:d7:92:24:d1:9e:e4:5a:6b:4f:0f:
1a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B5:34:F7:EB:45:8A:9F:CF:B2:E5:E7:0B:80:63:95:84:F8:6C:0D
X509v3 Authority Key Identifier:
keyid:46:84:65:57:B9:E4:29:55:16:3E:51:6B:02:DC:8E:3E:E3:82:81:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoRlV7nkKVUWPlFrAtyOPuOCgRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/987c4e-789b-4c26-8ce5-abb222507f17/1/UrU09-tFip_PsuXnC4BjlYT4bA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/987c4e-789b-4c26-8ce5-abb222507f17/1/RoRlV7nkKVUWPlFrAtyOPuOCgRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:ac7::/40
Signature Algorithm: sha256WithRSAEncryption
43:cd:80:9e:f1:96:59:2c:42:f6:f6:23:16:35:0e:f3:70:29:
6d:a8:ea:32:ad:88:ae:9a:19:bf:ea:9f:42:4c:ee:75:da:35:
40:04:01:2a:8d:11:ad:27:1a:8f:4e:02:87:a3:c5:c4:c2:9c:
95:e4:f3:34:8b:e7:2d:0f:05:aa:78:3a:13:58:82:10:ee:fe:
0f:7e:d2:35:1c:a9:32:ba:bd:34:40:92:1d:ae:28:d9:2f:51:
69:84:c7:47:7a:30:dc:12:67:17:c2:50:e9:c9:49:1a:e7:88:
f4:17:57:63:bf:a4:11:a8:b6:de:29:48:3e:6a:49:4b:f4:fd:
07:15:d0:e5:87:8b:04:0a:b4:5f:5d:54:cd:68:98:dd:61:fe:
9f:a9:2e:cb:fd:63:f9:db:7c:9e:7f:ee:1b:76:29:76:77:fe:
cc:97:19:51:dd:b9:ca:43:0b:61:06:48:dc:ea:f7:44:81:b0:
91:f2:86:72:4f:ef:01:53:7c:d8:3b:7f:1c:53:02:4b:98:ae:
12:fa:a8:55:46:b6:3f:69:36:86:31:40:6e:68:0e:56:05:65:
53:9b:e1:12:c2:6d:ff:73:6e:d3:36:53:d9:db:dd:d6:7c:85:
22:87:81:dd:4e:a7:8d:6f:54:a6:02:a0:09:d5:8d:da:31:fb:
b7:d3:b8:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:56 2024 by rpki-client on console.sobornost.net