Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/r2XAWEmhqEXAhlL9jagitCmvous.roa
File: r2XAWEmhqEXAhlL9jagitCmvous.roa (raw, json)
Hash identifier: 7ctR2Yi0caUriEaNVc3tvi8k6HSq5bDvg7lgDYXgTzs=
Subject key identifier: AF:65:C0:58:49:A1:A8:45:C0:86:52:FD:8D:A8:22:B4:29:AF:A2:EB
Certificate issuer: /CN=712f9cb3c298b150beb79080376f74bdeac438ac
Certificate serial: 01856B258EE0BF1A53E844E5C0B6D2F30B12
Authority key identifier: 71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/r2XAWEmhqEXAhlL9jagitCmvous.roa
Signing time: Sun 01 Jan 2023 02:25:01 +0000
ROA not before: Sun 01 Jan 2023 02:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210118
IP address blocks: 2a00:6060:ff00::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:8e:e0:bf:1a:53:e8:44:e5:c0:b6:d2:f3:0b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712f9cb3c298b150beb79080376f74bdeac438ac
Validity
Not Before: Jan 1 02:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af65c05849a1a845c08652fd8da822b429afa2eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fb:5d:31:05:64:b7:24:2c:73:fc:bb:32:fc:
22:f2:69:3e:05:b0:b9:b2:b8:2f:91:fd:1f:92:02:
ca:6d:b5:99:71:15:45:bf:38:b1:80:4b:26:54:ce:
b9:c5:c2:4e:6e:84:c5:9e:dc:e0:17:35:0d:5a:73:
81:7f:5e:77:20:1d:bb:53:cd:86:8b:15:a9:61:b3:
f2:6c:70:74:07:bb:f2:4e:09:05:6e:e5:f5:9f:b3:
df:6b:c7:c7:05:08:45:ab:bc:14:e0:49:ec:0d:e8:
38:25:22:d0:93:c6:cb:fe:a1:31:9c:15:28:21:d7:
af:17:8f:06:f9:ff:c9:8d:99:4e:45:c9:4f:17:e8:
e6:7b:32:d6:5f:62:7f:9e:f4:0d:47:2b:77:cd:d8:
ee:52:bb:86:48:1e:46:80:29:03:68:58:c1:3f:c1:
03:24:b6:88:0e:f6:da:e4:00:1b:1b:7f:df:0d:50:
1e:e8:4b:3b:73:dc:5a:5a:2d:80:45:c0:92:8b:5d:
12:90:c5:bb:ef:2e:6d:d0:99:f7:2a:5b:bb:22:e7:
4b:5c:81:09:af:a8:bc:29:74:2f:15:f8:c8:7f:d7:
bc:83:c3:f8:a4:8a:44:63:01:36:62:d5:03:80:cb:
51:5c:1d:d0:8e:92:5a:02:80:83:d3:22:4e:4e:ca:
b9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:65:C0:58:49:A1:A8:45:C0:86:52:FD:8D:A8:22:B4:29:AF:A2:EB
X509v3 Authority Key Identifier:
keyid:71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/r2XAWEmhqEXAhlL9jagitCmvous.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:6060:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
1a:c7:ed:db:cb:a4:8b:13:de:d0:22:0c:2e:94:f0:f4:9c:18:
5c:6d:d8:d4:09:69:dd:8a:b7:a9:5f:4c:28:15:29:8d:29:f4:
ad:76:59:66:f2:10:5b:88:ac:36:49:95:c6:41:4f:b8:62:c0:
d6:8d:d0:a4:e4:6f:5f:e3:73:7e:0d:17:ef:2a:d0:c0:ab:0f:
ae:c8:cb:22:6d:27:3e:c2:ab:41:b1:b9:2b:b7:89:8a:01:fe:
35:95:21:df:bd:ea:6b:81:bd:f8:60:cb:bb:6b:0f:0b:1d:85:
59:31:ee:e2:79:4f:0c:56:86:b2:55:68:9a:90:f2:fb:0c:ab:
19:4d:15:19:21:c1:96:96:6f:89:05:1f:a6:0d:de:56:e1:8f:
e7:e9:16:06:b9:0b:2e:5c:9f:a0:a5:78:ce:2a:68:11:45:e8:
f4:ed:10:66:c5:0b:e6:51:dc:94:89:64:5f:08:7d:e8:d5:d8:
80:00:3c:07:c5:28:cb:3c:dc:03:81:e0:31:a4:d0:8e:2f:3b:
fa:36:c2:d8:f9:b5:75:0c:00:4d:87:b8:b5:ea:95:20:f8:13:
a7:72:6b:2b:a0:c3:9b:a2:aa:b6:ac:b4:0d:b3:96:21:4d:74:
53:a6:58:bd:56:84:c2:7c:51:bc:57:49:f1:c5:9a:a0:6e:8f:
20:12:29:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:31:00 2024 by rpki-client on console.sobornost.net