Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/iCc7JwazOW5EdonyBTqG3yMq3oM.roa
File: iCc7JwazOW5EdonyBTqG3yMq3oM.roa (raw, json)
Hash identifier: WvYNbZ790gEGg60OzPK+kpXKfyO2cThkfh61NFEwCDY=
Subject key identifier: 88:27:3B:27:06:B3:39:6E:44:76:89:F2:05:3A:86:DF:23:2A:DE:83
Certificate issuer: /CN=325a8b688deadbb91efbe0772308bac9f304a533
Certificate serial: 01856C0114D3727D646A75CE0F978CDC5CB4
Authority key identifier: 32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/iCc7JwazOW5EdonyBTqG3yMq3oM.roa
Signing time: Sun 01 Jan 2023 06:24:48 +0000
ROA not before: Sun 01 Jan 2023 06:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209861
IP address blocks: 2a0b:6647:b000::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Jan 2023 23:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:14:d3:72:7d:64:6a:75:ce:0f:97:8c:dc:5c:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325a8b688deadbb91efbe0772308bac9f304a533
Validity
Not Before: Jan 1 06:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88273b2706b3396e447689f2053a86df232ade83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:60:86:98:60:8a:af:7c:41:5b:8c:26:27:ab:
05:9b:a4:24:c0:c4:9e:73:65:b2:ea:2d:da:47:29:
27:9f:90:ff:89:3c:83:c1:1d:ab:e5:97:f0:1e:05:
0e:1c:b6:6e:88:e2:6e:38:73:8c:8d:f3:19:78:81:
ba:94:62:10:49:d7:ae:ff:22:7c:30:3f:f2:30:79:
eb:2d:09:4c:7f:30:62:5f:08:a6:93:ab:ce:e6:13:
dd:df:01:9b:90:8c:e4:4b:63:99:69:18:e7:47:7b:
2b:bf:5d:6e:89:c8:4c:05:e9:10:1e:69:33:c3:de:
a3:06:21:b3:42:f9:68:75:ba:65:62:eb:5b:b9:00:
6a:7a:f9:fe:5c:e6:5a:ed:3d:d8:2b:87:66:99:8c:
84:da:7c:b4:9b:a2:b6:ae:0a:52:e6:21:47:5a:f4:
e6:8f:a5:e5:61:ee:70:ff:18:d5:48:0f:2f:24:3c:
72:d8:2b:85:23:57:97:a9:f4:fe:82:77:e7:4e:b5:
19:68:39:56:c9:73:27:dd:41:9b:2e:8d:41:22:6a:
7d:44:e2:64:28:93:8f:39:89:f9:0c:4d:9b:b5:33:
9c:07:5a:f3:00:42:a4:dd:e5:44:5d:02:83:f4:b7:
83:a8:e0:33:69:5e:d0:4c:f6:09:be:f4:92:21:66:
9c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:27:3B:27:06:B3:39:6E:44:76:89:F2:05:3A:86:DF:23:2A:DE:83
X509v3 Authority Key Identifier:
keyid:32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/iCc7JwazOW5EdonyBTqG3yMq3oM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/MlqLaI3q27ke--B3Iwi6yfMEpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6647:b000::/40
Signature Algorithm: sha256WithRSAEncryption
dc:c6:00:0a:2d:26:cd:7b:ca:9f:93:7c:26:8f:d8:a8:9e:ff:
d8:d8:4c:c4:79:0f:75:63:52:5d:62:28:66:15:59:8b:bf:32:
17:86:98:0c:72:35:e2:c4:62:f0:74:a6:df:7b:e7:de:db:5d:
08:c1:97:99:ce:eb:3d:39:4b:19:0b:78:34:39:2f:8a:ad:a8:
52:36:bf:81:6a:b0:f5:7c:7c:36:c6:ed:ec:b9:5d:3b:93:5a:
07:92:52:b5:fd:2c:a0:56:5e:31:e6:18:62:01:37:ce:6a:03:
d0:c6:71:c7:31:1d:c2:cd:65:8e:e0:0c:41:d2:dd:4a:60:90:
ef:80:e3:5e:26:8b:ac:11:c1:6e:3e:6a:ec:f0:19:af:ec:93:
1d:27:6e:60:fd:58:6f:f4:3d:c7:62:3b:b8:05:49:72:42:75:
57:7f:29:69:6f:ab:0c:0d:54:bb:c9:fe:e8:52:43:a3:5d:42:
37:de:ef:1d:75:e0:9f:78:ff:0e:b1:95:aa:11:de:f1:bc:45:
9c:58:e4:4f:97:e8:da:09:65:50:ad:2a:d2:61:06:8b:28:32:
44:d3:a5:42:5e:83:f5:34:ca:e0:94:c7:64:6c:02:75:d4:fa:
f9:91:ce:73:2e:cc:49:f5:cb:50:60:6d:61:b1:ac:c9:78:62:
a8:96:22:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:23 2024 by rpki-client on console-fra.rpki-client.org