Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/4IsCKFySgRBtXuvSNtjwdTBMwT8.roa
File: 4IsCKFySgRBtXuvSNtjwdTBMwT8.roa (raw, json)
Hash identifier: 8quggjy7QULxUM+Af9vka+a77rJjy3KIgoq6MX4HvpE=
Subject key identifier: E0:8B:02:28:5C:92:81:10:6D:5E:EB:D2:36:D8:F0:75:30:4C:C1:3F
Certificate issuer: /CN=9e1533c4702c2ccb5a9e0e87ab27ad56b15f2c76
Certificate serial: 0185730CA790AD07E9B333A441CE9EE542AD
Authority key identifier: 9E:15:33:C4:70:2C:2C:CB:5A:9E:0E:87:AB:27:AD:56:B1:5F:2C:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/4IsCKFySgRBtXuvSNtjwdTBMwT8.roa
Signing time: Mon 02 Jan 2023 15:14:47 +0000
ROA not before: Mon 02 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49772
IP address blocks: 2a12:e6c0:f001::/48 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:a7:90:ad:07:e9:b3:33:a4:41:ce:9e:e5:42:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e1533c4702c2ccb5a9e0e87ab27ad56b15f2c76
Validity
Not Before: Jan 2 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e08b02285c9281106d5eebd236d8f075304cc13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4b:6c:eb:71:e0:69:df:b7:20:ba:1e:6b:d8:
52:f4:c8:ee:04:3e:7c:3b:ba:4f:d2:c8:de:a8:07:
cc:45:62:31:be:13:c4:dd:44:e8:0e:a3:89:d8:00:
ee:b1:2f:59:a6:27:a5:5d:82:5d:54:53:c7:49:58:
96:95:ae:66:bf:1d:72:bc:37:e5:f2:31:a7:44:93:
dd:63:71:55:25:1e:9f:20:86:c8:66:cd:60:72:80:
1b:0d:8d:26:cc:61:ba:09:9c:7e:12:7c:6a:66:f3:
3a:df:9b:27:c2:7c:11:41:09:31:40:cd:c0:ff:b6:
75:38:45:34:b2:15:4e:1c:d9:da:26:85:92:d4:52:
f5:8e:5b:35:93:89:24:68:73:f4:89:88:19:07:e0:
36:87:d7:5c:e0:f4:b4:7c:e5:e7:a8:a6:8e:2f:a2:
92:9b:3c:62:4b:b7:aa:54:d4:8a:16:8f:17:28:9f:
81:19:8c:2a:e5:a4:ae:cc:10:49:6d:48:fe:92:5a:
59:5c:e5:3f:a6:b0:09:c5:e3:32:dd:ba:41:c8:d2:
66:19:36:ef:6b:d7:a7:2b:52:f2:fa:32:25:c0:6e:
d7:fa:40:e9:dd:a6:32:56:fb:91:bb:e5:98:b7:d4:
41:41:0a:f5:41:6d:09:0c:94:02:05:61:d2:fa:93:
58:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:8B:02:28:5C:92:81:10:6D:5E:EB:D2:36:D8:F0:75:30:4C:C1:3F
X509v3 Authority Key Identifier:
keyid:9E:15:33:C4:70:2C:2C:CB:5A:9E:0E:87:AB:27:AD:56:B1:5F:2C:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/4IsCKFySgRBtXuvSNtjwdTBMwT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/nhUzxHAsLMtang6HqyetVrFfLHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e6c0:f001::/48
Signature Algorithm: sha256WithRSAEncryption
61:46:3a:9a:20:4e:ad:f7:d1:d2:f5:06:0e:80:65:e1:1a:7d:
6a:1b:ab:db:e6:63:41:8c:63:6c:0c:e7:22:d2:dc:bf:e2:2e:
e3:06:7b:94:a5:f6:15:8b:12:3d:87:a7:5f:ad:ca:dd:43:4a:
cf:6d:7c:55:25:ca:57:30:8e:29:57:7a:25:73:0a:fc:d1:64:
c2:93:e8:9c:73:46:16:54:27:f1:cb:67:66:41:8c:7f:cc:1b:
e4:5b:10:38:fd:4d:aa:b0:8e:f3:e8:75:b9:78:72:e6:02:9e:
a4:b0:84:68:c3:e9:65:e2:38:f0:74:85:f7:44:7d:58:8c:38:
48:d0:c8:d6:76:11:ca:e1:59:3d:d8:c6:75:28:79:fc:43:bb:
81:21:bf:ef:3e:1d:e6:3a:34:32:a1:f3:0a:73:52:47:a0:c8:
0c:de:79:12:84:e0:f2:fb:4f:23:9b:aa:63:ac:8e:9f:96:0f:
65:b5:c1:8b:ca:36:09:cb:a0:23:a4:02:77:be:16:3d:fc:d2:
b0:8b:82:3f:8e:c2:f0:db:9d:63:4a:f3:14:64:33:87:40:3e:
bc:65:dc:01:38:3b:66:74:ee:61:ec:f0:00:77:05:e5:8d:59:
aa:c4:13:e0:24:0a:d8:5f:84:7c:fa:1c:c4:9d:55:38:27:80:
74:b2:88:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:49 2024 by rpki-client on console-ams.rpki-client.org