Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/DLsTC8MCd3T3EnXNoKC1A2SpD_8.roa
File: DLsTC8MCd3T3EnXNoKC1A2SpD_8.roa (raw, json)
Hash identifier: TO3PmVUy9WZoIVkcfRsfTrsZ38VY3mhy5ZKh6lOav5Q=
Subject key identifier: 0C:BB:13:0B:C3:02:77:74:F7:12:75:CD:A0:A0:B5:03:64:A9:0F:FF
Certificate issuer: /CN=5aee92846fe38fde8e0f62948ca9883c1a29b755
Certificate serial: 01856D93EA8F36FED0F79FBCEAE9D59358DC
Authority key identifier: 5A:EE:92:84:6F:E3:8F:DE:8E:0F:62:94:8C:A9:88:3C:1A:29:B7:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wu6ShG_jj96OD2KUjKmIPBopt1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/DLsTC8MCd3T3EnXNoKC1A2SpD_8.roa
Signing time: Sun 01 Jan 2023 13:44:48 +0000
ROA not before: Sun 01 Jan 2023 13:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5400
IP address blocks: 2a0c:7c80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:ea:8f:36:fe:d0:f7:9f:bc:ea:e9:d5:93:58:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aee92846fe38fde8e0f62948ca9883c1a29b755
Validity
Not Before: Jan 1 13:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cbb130bc3027774f71275cda0a0b50364a90fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e8:2b:d8:c2:6c:05:27:3a:02:b0:f6:39:10:
0c:cf:11:36:d9:cc:3f:be:f0:ca:2c:13:91:bc:c4:
68:f7:a7:5f:af:df:b4:17:ff:8b:b6:a7:25:c9:80:
15:a8:0a:6a:18:24:c0:03:f6:0e:05:ac:36:10:5e:
1e:a0:a5:72:da:26:18:71:8f:b1:5b:e3:89:95:5e:
f8:f7:83:b3:e5:30:d5:8a:64:20:60:89:38:f5:44:
58:8d:d1:40:d9:e8:16:f4:87:a7:30:e4:1d:45:b2:
da:b8:f7:6f:50:27:bc:c3:c0:22:3a:1e:5c:c6:27:
c1:51:60:e5:3a:85:a6:cf:bf:77:81:8d:fe:ef:9b:
f8:62:ee:6a:05:7e:b8:11:2e:ae:7c:46:a6:a3:83:
f1:4e:b7:90:ea:6f:4d:c4:e4:98:d3:68:69:fd:06:
db:b8:5a:37:e2:9a:64:e8:e4:eb:d6:33:1a:2e:bb:
5b:d9:ca:cc:94:11:de:b0:59:f3:21:d9:d7:07:9f:
9e:6a:e8:55:fa:29:30:0d:11:a7:b6:6a:c7:2b:db:
cd:40:86:d4:00:0d:9c:c1:87:8d:97:74:68:7b:18:
c3:27:77:90:b1:01:cc:ab:df:79:28:e8:50:67:13:
01:a8:2d:62:e5:da:a2:f0:86:49:77:75:84:0d:62:
cb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BB:13:0B:C3:02:77:74:F7:12:75:CD:A0:A0:B5:03:64:A9:0F:FF
X509v3 Authority Key Identifier:
keyid:5A:EE:92:84:6F:E3:8F:DE:8E:0F:62:94:8C:A9:88:3C:1A:29:B7:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wu6ShG_jj96OD2KUjKmIPBopt1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/DLsTC8MCd3T3EnXNoKC1A2SpD_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/Wu6ShG_jj96OD2KUjKmIPBopt1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7c80::/29
Signature Algorithm: sha256WithRSAEncryption
51:45:9c:27:74:51:bf:e1:24:91:37:f7:9e:e9:06:a6:b0:97:
59:9c:23:78:4c:0e:7a:14:c8:b1:90:9d:86:32:f1:c8:82:4f:
73:d6:c8:fd:39:07:d9:61:95:3b:ff:a1:18:e8:8c:79:a7:5e:
20:7d:92:25:42:af:1c:a3:dd:33:50:ce:84:e5:60:7c:cd:49:
8d:ab:f2:6e:9b:e3:5d:10:3b:7c:0a:11:66:f6:57:6c:c2:db:
bb:d8:28:7d:20:33:85:7c:b3:9b:99:ec:ac:a7:5f:91:25:b8:
1c:4d:08:07:00:1f:92:aa:6a:f0:87:43:ba:1d:8a:d9:69:8d:
b1:df:a2:71:cb:10:c5:08:15:ce:27:e6:89:e2:77:d1:d3:75:
0f:44:f3:50:04:24:cc:73:44:44:58:f9:a3:f4:75:c9:ab:16:
8e:41:87:3b:8f:69:aa:87:fe:da:dd:41:89:96:62:ea:c7:c5:
0c:23:05:e7:bb:9a:27:0f:42:f1:65:b0:63:bf:96:c0:14:67:
5e:8f:d3:c4:de:c0:29:8d:ce:a5:09:01:52:8f:ad:4d:f7:81:
ff:46:e0:af:24:d8:e6:d7:cd:4b:f3:62:a8:2f:ed:db:98:d5:
aa:17:83:e0:ac:4a:4e:d5:71:73:96:23:8d:14:a1:c5:c0:ac:
09:3b:1c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:26 2024 by rpki-client on console.sobornost.net