Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/f3NxhZsSpjQKb9nepMnNcuYQDWw.roa
File: f3NxhZsSpjQKb9nepMnNcuYQDWw.roa (raw, json)
Hash identifier: s2841GZT6/AFJykbVBqeyNeADf2SNuInY43Cwx6K3CI=
Subject key identifier: 7F:73:71:85:9B:12:A6:34:0A:6F:D9:DE:A4:C9:CD:72:E6:10:0D:6C
Certificate issuer: /CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Certificate serial: 0187D128237EF01440C5B2254BD4DA8FA0C5
Authority key identifier: 56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/f3NxhZsSpjQKb9nepMnNcuYQDWw.roa
Signing time: Sun 30 Apr 2023 07:54:41 +0000
ROA not before: Sun 30 Apr 2023 07:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212077
IP address blocks: 2a13:7b40:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d1:28:23:7e:f0:14:40:c5:b2:25:4b:d4:da:8f:a0:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Validity
Not Before: Apr 30 07:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f7371859b12a6340a6fd9dea4c9cd72e6100d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:90:b2:ae:5f:48:4f:89:37:07:85:90:c6:e8:
2a:cb:08:d2:34:4e:11:70:40:fc:2d:b2:70:8a:b7:
97:11:5d:5d:2d:e0:1b:80:e3:84:c4:e2:4d:8a:41:
2f:ed:55:c2:50:2c:c0:28:c3:9a:8e:40:9c:d5:dd:
e1:96:4c:7e:c6:31:ee:4e:46:e7:25:a7:ee:04:f8:
66:2d:b9:41:ec:f5:85:ed:fa:08:b2:ca:d6:43:38:
34:7b:53:05:99:92:37:29:c7:80:c7:9a:df:76:a7:
71:e6:53:9b:a3:9a:4a:c6:ee:3c:6d:43:39:87:4d:
8b:ec:96:50:a8:9f:e3:bc:61:c6:ad:40:54:b2:aa:
91:0a:bc:01:46:b9:b6:6b:e1:29:2d:79:ae:24:0f:
19:44:20:d3:f2:f2:4b:cd:16:83:27:d7:a1:89:85:
7f:45:3b:26:19:a8:e8:55:cf:a8:76:87:c7:f2:cf:
a7:96:41:e2:08:20:30:89:b1:dc:ec:93:99:9c:a1:
1c:3b:ee:ff:39:5d:d9:aa:57:44:73:15:d9:0c:02:
a4:59:ef:13:30:97:8e:31:a4:b7:0d:3d:0c:5d:98:
e3:8c:73:cf:fd:dc:7f:83:9a:8f:5b:ea:80:80:50:
66:f7:45:51:63:4c:9d:30:ac:dd:e8:df:52:f1:30:
37:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:73:71:85:9B:12:A6:34:0A:6F:D9:DE:A4:C9:CD:72:E6:10:0D:6C
X509v3 Authority Key Identifier:
keyid:56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/f3NxhZsSpjQKb9nepMnNcuYQDWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7b40:1::/48
Signature Algorithm: sha256WithRSAEncryption
0c:fb:2d:17:94:b1:f6:36:5c:68:ad:60:52:53:21:40:09:50:
6e:bb:43:e0:19:bd:6b:e6:2c:c1:6b:de:0f:2b:13:70:f2:61:
7f:c3:16:ff:e7:b6:71:b6:e2:c4:90:0e:dd:90:8d:21:93:46:
99:0a:05:95:a0:a2:58:f9:8f:7c:3d:b6:69:c6:3e:5c:76:bf:
0e:a8:55:e2:0d:ae:e6:c4:f4:ee:18:51:f8:28:3f:62:e1:55:
bd:14:4b:12:18:26:3b:5d:f1:e8:e5:ab:16:de:bc:94:df:fb:
ec:8a:d6:75:3d:21:5c:50:aa:af:e2:5e:83:9b:7a:4a:e5:9e:
ff:4f:69:c1:24:a1:3e:55:ef:27:4b:f2:5c:60:50:d6:3f:ae:
81:0f:1f:fd:84:68:b7:45:cd:61:4f:e9:58:7b:ca:42:6f:02:
07:b1:89:a1:ee:78:17:6c:93:1a:8e:25:63:81:ac:76:8d:dc:
5e:cb:6d:28:35:13:5e:37:a2:72:f1:90:67:dc:e4:6f:a4:b7:
d0:38:1d:3b:e1:8c:39:f2:8a:6f:09:9d:07:04:28:ea:fe:f1:
8b:6b:0a:ab:c7:27:27:eb:57:b3:21:ae:a7:7b:22:fe:57:68:
c7:2f:f9:1c:89:a4:88:19:e0:19:e3:01:52:4c:74:35:0d:0c:
3f:65:96:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:21 2023 by rpki-client on console.sobornost.net