Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/4ACtCOgI6klA-FNM8PsmR8YMSJQ.roa
File: 4ACtCOgI6klA-FNM8PsmR8YMSJQ.roa (raw, json)
Hash identifier: xwWtu5K3qNLZ1S837/yvIHbOa42y6jC5xzvaGXFf6P4=
Subject key identifier: E0:00:AD:08:E8:08:EA:49:40:F8:53:4C:F0:FB:26:47:C6:0C:48:94
Certificate issuer: /CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Certificate serial: 018CAFF01DD99E12F6712182E67F858BC6DA
Authority key identifier: D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/4ACtCOgI6klA-FNM8PsmR8YMSJQ.roa
Signing time: Thu 28 Dec 2023 10:19:58 +0000
ROA not before: Thu 28 Dec 2023 10:19:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 2a0f:e80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:f0:1d:d9:9e:12:f6:71:21:82:e6:7f:85:8b:c6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Validity
Not Before: Dec 28 10:19:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e000ad08e808ea4940f8534cf0fb2647c60c4894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:0d:0a:b5:e9:4a:b5:0f:c1:d6:fe:4a:08:1c:
d2:a4:21:66:06:31:a7:f1:24:4c:bc:17:50:a3:ff:
12:23:70:d1:d1:ab:4d:df:e4:3b:19:f7:5b:5d:0b:
97:33:82:21:62:97:84:36:46:33:71:7a:62:0a:af:
31:74:70:7a:f7:65:32:0c:cd:c6:f0:9a:7d:80:02:
71:7d:a8:16:bc:23:3c:7a:86:ce:af:ae:73:08:bb:
ed:27:9b:fd:3f:6f:f2:72:e1:dd:70:37:f9:38:aa:
a6:78:72:ac:75:1d:f1:5e:30:45:53:02:78:8a:6a:
91:72:ef:46:fe:1d:3b:c9:74:f3:41:61:f6:32:3e:
aa:50:a7:8c:1a:ce:31:ff:4c:d4:f0:3a:83:49:b8:
e6:67:6d:78:3c:f2:cc:0b:65:12:72:1b:f3:0d:df:
28:65:b5:60:1b:78:c2:17:ef:3b:ce:5e:22:c8:63:
39:31:a1:21:85:4b:f9:98:65:c3:1e:03:e4:31:88:
2e:96:b6:1f:54:83:13:21:4b:24:08:b8:56:a9:62:
4c:16:1b:4b:aa:f1:05:c7:c8:a5:e0:60:9e:0c:83:
2f:08:d5:96:d5:54:2a:ea:89:84:6c:ed:30:eb:85:
c3:38:2f:c2:a5:31:23:a3:45:8c:26:8d:41:4c:d5:
36:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:00:AD:08:E8:08:EA:49:40:F8:53:4C:F0:FB:26:47:C6:0C:48:94
X509v3 Authority Key Identifier:
keyid:D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/4ACtCOgI6klA-FNM8PsmR8YMSJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e80::/29
Signature Algorithm: sha256WithRSAEncryption
93:82:d2:1c:4c:ed:c9:81:b3:00:9c:57:ee:c7:39:c5:bb:a9:
f3:79:bd:a6:2d:c7:f7:a2:c3:e6:19:da:d2:0f:cd:ca:63:f4:
0a:b1:6a:8d:65:f2:d4:ac:ce:a5:bf:e0:6c:6d:3b:57:29:6a:
f3:ea:b0:d1:aa:8a:96:4c:ad:d4:ea:01:f9:56:f6:f5:7a:0d:
5c:21:a2:59:2c:6e:7f:17:8e:12:3b:31:85:30:90:cd:5d:60:
f3:8b:c1:91:75:df:96:64:6d:68:d2:7a:f9:2d:40:0e:bc:a3:
0b:3a:b9:11:df:43:81:88:c7:62:03:5a:9e:45:f3:3f:f3:a9:
92:55:8f:b2:d7:98:d2:f2:68:8d:e9:a5:31:4c:f6:53:bc:cd:
1e:22:41:07:5a:d4:11:2f:f8:0a:89:94:e1:28:a5:a5:d4:14:
d3:1c:94:9b:02:b8:4f:12:55:a6:29:f3:aa:25:ce:6c:06:86:
49:46:0f:d7:92:1f:33:83:49:e1:8b:2e:a7:fc:c9:0d:d6:3f:
9d:d6:92:a6:b5:ec:07:a9:21:e6:2e:9b:1c:4d:97:e7:41:96:
4b:66:db:14:6f:95:72:6e:98:b7:a5:6b:ea:73:a9:27:e1:fa:
4b:25:ce:a7:8a:60:be:cf:76:53:93:65:5f:2c:b9:30:6f:37:
f4:32:01:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:52 2024 by rpki-client on console.sobornost.net