Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/s32O6vP8jiuUSpRYYigJth5JIXc.roa
File: s32O6vP8jiuUSpRYYigJth5JIXc.roa (raw, json)
Hash identifier: cDzNiWkPBnQNRud0CKE/5FiicB8u5Da6MNHypHKj44c=
Subject key identifier: B3:7D:8E:EA:F3:FC:8E:2B:94:4A:94:58:62:28:09:B6:1E:49:21:77
Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Certificate serial: 01856F1D9E5AEF8BDF6449501CA412E31EB9
Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/s32O6vP8jiuUSpRYYigJth5JIXc.roa
Signing time: Sun 01 Jan 2023 20:54:50 +0000
ROA not before: Sun 01 Jan 2023 20:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9186
IP address blocks: 2a09:5640:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Nov 2023 09:12:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:9e:5a:ef:8b:df:64:49:50:1c:a4:12:e3:1e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Validity
Not Before: Jan 1 20:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b37d8eeaf3fc8e2b944a9458622809b61e492177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8a:d7:44:55:62:1b:eb:f9:04:f2:c5:65:37:
c0:69:54:e6:76:7f:37:35:a2:b9:76:9b:4d:41:02:
71:80:60:0e:41:36:fb:cd:48:7d:5b:b4:9a:a7:70:
1a:22:31:74:b5:4a:d3:2e:d4:9e:aa:9a:b4:ee:5f:
9c:f5:b2:b9:8b:04:9f:3e:ba:28:bf:4f:2e:a7:2f:
44:5e:fe:44:19:e0:57:d7:5b:81:e4:ea:e1:f4:71:
85:39:b2:0c:2c:1e:c3:64:fb:26:9c:bc:c6:bf:ee:
7c:03:b4:8f:35:9d:b1:82:39:7c:3c:a1:fd:8c:3a:
fb:5a:f9:17:a6:c1:4e:47:f4:18:ed:f6:6c:a4:81:
84:4f:a7:76:b5:f5:cb:19:b1:66:8c:c6:29:38:92:
12:e7:6f:25:3e:0c:72:9b:49:4c:f6:e4:07:3b:d5:
38:0c:82:2a:79:64:1b:e6:0d:b7:4c:9c:46:86:af:
a6:5b:78:c1:3a:7d:10:97:9b:32:3d:d1:20:c2:3e:
47:74:25:e8:5f:27:85:00:ca:13:8a:69:2e:dc:8a:
3f:0d:9c:20:4b:95:a1:1c:26:b1:a0:74:4f:44:c5:
4f:69:b3:3e:e6:a7:0c:b3:b5:a4:30:bf:75:3e:68:
2f:ca:8f:e1:05:7f:ec:1d:d6:fe:b8:b6:e0:c1:3f:
3e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7D:8E:EA:F3:FC:8E:2B:94:4A:94:58:62:28:09:B6:1E:49:21:77
X509v3 Authority Key Identifier:
keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/s32O6vP8jiuUSpRYYigJth5JIXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:5640:1::/48
Signature Algorithm: sha256WithRSAEncryption
3b:b3:8b:6c:f7:95:c2:dc:2b:f0:64:ec:92:4a:80:78:1d:29:
8b:25:ce:00:c3:4b:89:d2:4d:69:3d:74:ab:d8:ab:76:d4:ca:
39:e8:fc:7f:7f:90:c2:86:18:ed:be:0c:a7:65:6f:41:4e:37:
a0:6d:e5:84:a7:58:dc:ae:06:56:6f:12:47:72:92:d8:a4:70:
fc:62:c7:8d:1d:b4:36:f6:44:8b:da:77:46:83:c1:ac:eb:ae:
37:e2:28:11:4c:73:be:95:9d:9b:a2:ae:39:77:45:f8:1f:a1:
12:93:5d:fa:a4:22:c1:1b:9f:cf:fe:28:07:eb:3a:69:2a:04:
b3:2d:fa:41:37:cc:6b:7c:7b:00:1e:03:40:05:12:81:d2:34:
f4:e6:04:2d:40:d7:47:8f:b3:8a:9e:58:d2:92:38:25:c8:90:
51:d9:8d:33:b6:ad:51:d7:68:39:56:3a:a7:39:3b:4f:85:04:
b4:73:9c:6b:a3:35:93:79:ef:c8:61:3c:d3:f2:f9:f0:fb:be:
bc:13:52:9f:db:da:f9:c8:48:f4:35:8b:95:f3:df:25:35:d2:
a0:df:1f:54:9b:c0:88:83:e9:97:ac:4c:a0:05:3c:ad:ba:25:
a8:9e:72:82:c9:16:9b:13:b0:64:0f:e9:e4:4f:5f:6b:f3:f5:
72:d7:04:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:54 2024 by rpki-client on console-fra.rpki-client.org