Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/kMGy0UMdja72fzkMjb__9hwj1dw.roa
File: kMGy0UMdja72fzkMjb__9hwj1dw.roa (raw, json)
Hash identifier: fiJxQjRfoVAn7uANsOztqDfMvqsR3x5mEDdPLoy4mwM=
Subject key identifier: 90:C1:B2:D1:43:1D:8D:AE:F6:7F:39:0C:8D:BF:FF:F6:1C:23:D5:DC
Certificate issuer: /CN=7b88d4a4ab18a59b664dabafdb3880dc35b22b91
Certificate serial: 01856C780B7D6D1920F73061351880E8E5EA
Authority key identifier: 7B:88:D4:A4:AB:18:A5:9B:66:4D:AB:AF:DB:38:80:DC:35:B2:2B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4jUpKsYpZtmTauv2ziA3DWyK5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/kMGy0UMdja72fzkMjb__9hwj1dw.roa
Signing time: Sun 01 Jan 2023 08:34:44 +0000
ROA not before: Sun 01 Jan 2023 08:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29691
IP address blocks: 2a05:9a80::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:0b:7d:6d:19:20:f7:30:61:35:18:80:e8:e5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b88d4a4ab18a59b664dabafdb3880dc35b22b91
Validity
Not Before: Jan 1 08:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90c1b2d1431d8daef67f390c8dbffff61c23d5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:87:94:4d:95:70:bd:c1:f0:71:d0:9c:63:99:
f2:a5:0f:da:7a:f6:5c:74:64:fa:ad:fb:67:40:80:
b1:f3:b0:ac:1e:7c:47:22:89:e7:88:e3:d4:5e:37:
9e:32:4b:27:18:21:ff:30:e9:85:47:58:27:10:16:
35:5a:50:cb:2a:8f:9d:62:51:aa:6a:14:f9:dd:57:
c2:3f:53:b9:7b:95:99:62:c3:3b:a0:a9:21:a2:66:
b3:5a:a1:e1:8c:1f:17:2a:49:b0:56:10:65:9c:ca:
ce:de:1b:92:68:1c:f7:fb:24:83:bc:ba:b1:6b:52:
a8:ac:79:8e:5e:8e:af:57:7f:c1:6f:b2:1e:dc:44:
26:91:65:bb:51:03:91:9e:7b:b8:31:c4:a7:63:28:
5f:04:99:6b:c4:5f:dd:45:97:a3:bc:e9:ad:9b:88:
1c:4a:4c:87:31:19:46:bd:53:90:f5:94:32:16:67:
f2:77:87:d4:eb:5e:a6:aa:57:5f:b1:cc:3b:25:df:
26:fa:78:87:5d:f9:3e:7a:33:96:21:66:dc:2f:9f:
ec:34:fd:e2:51:5c:ea:88:a8:52:75:d4:13:f9:9f:
c0:6a:0e:a4:44:94:b9:19:95:2d:23:40:55:a4:42:
2c:f7:f7:f9:f6:4e:4a:dc:df:db:e9:bd:5a:02:f0:
73:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C1:B2:D1:43:1D:8D:AE:F6:7F:39:0C:8D:BF:FF:F6:1C:23:D5:DC
X509v3 Authority Key Identifier:
keyid:7B:88:D4:A4:AB:18:A5:9B:66:4D:AB:AF:DB:38:80:DC:35:B2:2B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4jUpKsYpZtmTauv2ziA3DWyK5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/kMGy0UMdja72fzkMjb__9hwj1dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/e4jUpKsYpZtmTauv2ziA3DWyK5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9a80::/29
Signature Algorithm: sha256WithRSAEncryption
c3:83:a7:50:b1:0e:c2:87:dc:28:a2:73:a9:08:c5:95:9e:05:
5d:5e:18:80:b0:24:b1:29:fb:f7:bf:84:a5:1c:3f:83:55:cd:
43:7c:dc:a9:81:f1:08:6a:b6:7d:00:b1:6e:0f:a7:c6:85:79:
0f:06:26:20:50:d6:5f:0d:85:32:b1:d9:66:12:02:b4:8e:77:
ad:4d:13:d4:e6:4e:8c:6d:02:70:61:80:07:d1:a2:21:a8:18:
6c:7b:36:6a:cc:27:f8:32:a5:b9:d6:58:32:ed:e1:66:5b:49:
fd:65:ea:9d:af:08:ed:77:9d:a3:2c:33:c0:9f:f5:b0:96:aa:
14:55:c7:19:1d:46:ad:5b:dd:8f:99:f7:ba:cf:66:c1:f9:35:
9c:59:09:90:01:94:be:68:82:3c:89:1c:d7:dd:c9:0a:16:35:
07:22:9d:20:5a:2e:fa:50:cf:a2:9c:f2:48:37:d5:eb:e6:5b:
73:b0:ec:22:8d:ae:0b:08:58:c8:27:41:55:0d:34:bb:26:9a:
67:31:25:1b:9b:cf:a3:ee:dd:9a:0f:5f:14:b1:01:7d:72:24:
09:c6:bd:c1:38:2c:23:75:8c:9a:d8:8a:10:07:2e:17:1a:c9:
cf:e3:31:a5:ff:a1:95:5f:b0:e5:24:ea:d9:d2:5e:bf:f7:89:
3a:cd:3b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:52 2024 by rpki-client on console-ams.rpki-client.org