Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/7k5uRGUhL8BpudvqZ7HhlzmGAlY.roa
File: 7k5uRGUhL8BpudvqZ7HhlzmGAlY.roa (raw, json)
Hash identifier: PILHB9zg5lgJYn1OxYUfmAkkFGsOarl4rzORkhAtGyw=
Subject key identifier: EE:4E:6E:44:65:21:2F:C0:69:B9:DB:EA:67:B1:E1:97:39:86:02:56
Certificate issuer: /CN=b2df1c137d7894ccdba768ceb971c4d3df59fe96
Certificate serial: 01856F0B50DB124B902FA003C246446AFD1F
Authority key identifier: B2:DF:1C:13:7D:78:94:CC:DB:A7:68:CE:B9:71:C4:D3:DF:59:FE:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8cE314lMzbp2jOuXHE099Z_pY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/7k5uRGUhL8BpudvqZ7HhlzmGAlY.roa
Signing time: Sun 01 Jan 2023 20:34:50 +0000
ROA not before: Sun 01 Jan 2023 20:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6766
IP address blocks: 2001:67c:2ed8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:50:db:12:4b:90:2f:a0:03:c2:46:44:6a:fd:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df1c137d7894ccdba768ceb971c4d3df59fe96
Validity
Not Before: Jan 1 20:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee4e6e4465212fc069b9dbea67b1e19739860256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ca:63:05:a0:42:e5:d0:85:1e:50:5d:ec:d7:
36:50:2b:38:a9:70:d6:62:a9:29:46:f2:68:43:37:
cc:63:13:8f:fb:a5:7c:1a:db:79:23:d5:f5:af:87:
52:b1:db:f7:00:d1:05:58:72:99:c8:57:c6:6f:b7:
bb:5c:ba:6d:82:bf:eb:23:8d:0c:82:e9:4c:ea:84:
10:5a:76:ca:a4:ef:85:58:53:cb:19:1a:dc:a2:17:
36:af:03:73:20:6b:ca:e2:07:a3:0f:be:fe:f5:fc:
6a:a1:c6:2a:e1:48:26:31:17:b8:7e:1f:58:19:0b:
ca:af:df:2b:e5:9b:b8:1e:73:37:ee:68:22:2c:bb:
c3:4b:28:21:5c:f8:05:ff:ca:22:37:66:91:fc:69:
9e:c1:b4:47:3b:8c:92:7a:77:5d:88:76:63:0c:77:
f2:0e:e2:19:7d:5a:c6:8b:8f:74:2c:ab:ca:0b:c3:
64:87:62:30:08:ab:98:85:f6:f3:c7:dc:95:e2:6f:
88:76:f4:14:15:32:48:8a:89:c9:76:44:28:91:36:
e1:cc:6f:9f:4f:c1:b9:9f:3c:7d:3a:0d:ff:8b:98:
14:9e:ea:5f:35:c8:37:2c:e0:71:25:72:97:3a:43:
6e:e7:ba:3a:05:46:50:89:b9:bc:dd:e2:c4:0c:ff:
30:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4E:6E:44:65:21:2F:C0:69:B9:DB:EA:67:B1:E1:97:39:86:02:56
X509v3 Authority Key Identifier:
keyid:B2:DF:1C:13:7D:78:94:CC:DB:A7:68:CE:B9:71:C4:D3:DF:59:FE:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8cE314lMzbp2jOuXHE099Z_pY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/7k5uRGUhL8BpudvqZ7HhlzmGAlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b06956-e733-4564-9781-d0c4c86bb5fe/1/st8cE314lMzbp2jOuXHE099Z_pY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ed8::/48
Signature Algorithm: sha256WithRSAEncryption
a6:7c:53:d2:50:35:2d:d7:c0:b4:2f:cc:e7:c1:f8:f5:52:1a:
27:ee:a9:aa:ba:59:1a:54:b6:47:fd:a5:8b:56:9a:55:01:48:
88:ed:ef:7e:41:91:6f:de:66:f1:c6:bb:86:89:f5:df:62:45:
3d:0c:9c:77:33:2a:31:cc:bd:64:8c:13:2a:16:69:7a:5e:cc:
56:c1:e3:4c:b7:a1:39:5f:75:15:f9:a8:7d:e9:85:b3:de:86:
71:ba:80:83:8f:b7:81:1b:e3:cf:f3:e1:e0:e3:ef:09:12:38:
56:1e:c3:b8:a7:17:21:a5:a4:c8:a5:f7:6d:37:0e:42:95:2a:
89:3d:7f:d7:7f:63:6e:5f:be:61:b3:db:36:09:18:43:cf:38:
45:65:2e:48:f4:96:05:3f:9b:aa:f8:ef:17:c0:72:dc:68:99:
84:00:7c:7b:f5:59:d6:52:31:16:55:5d:31:2d:1a:ea:fa:cc:
c1:60:5b:34:1a:0a:52:b8:59:22:86:d4:19:c2:64:b0:2b:e6:
0b:75:06:b8:61:21:0c:06:ae:1d:c1:3c:98:41:2c:38:4b:9f:
22:00:58:a8:4c:fb:8b:35:25:bc:d8:cb:c9:2b:ca:36:a2:6f:
8b:54:0e:47:ca:e7:ea:47:29:93:3e:93:6b:5e:3f:0d:f9:a1:
b3:f2:2d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:01 2024 by rpki-client on console.sobornost.net