Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/_JBwy9Dz5xIDM3I4j5JRH8KKvr0.roa
File: _JBwy9Dz5xIDM3I4j5JRH8KKvr0.roa (raw, json)
Hash identifier: IhCoxVGtQ6gXaC8lUhNqM/YOI7R/u5jWq1Xlt8COg8o=
Subject key identifier: FC:90:70:CB:D0:F3:E7:12:03:33:72:38:8F:92:51:1F:C2:8A:BE:BD
Certificate issuer: /CN=cbf74cd846493138f522c57c0065b5c60512dd09
Certificate serial: 018570B986CA0C0B596F4CA795821AD35025
Authority key identifier: CB:F7:4C:D8:46:49:31:38:F5:22:C5:7C:00:65:B5:C6:05:12:DD:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/_JBwy9Dz5xIDM3I4j5JRH8KKvr0.roa
Signing time: Mon 02 Jan 2023 04:24:44 +0000
ROA not before: Mon 02 Jan 2023 04:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a06:3b80:154::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:86:ca:0c:0b:59:6f:4c:a7:95:82:1a:d3:50:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbf74cd846493138f522c57c0065b5c60512dd09
Validity
Not Before: Jan 2 04:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc9070cbd0f3e712033372388f92511fc28abebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a7:48:26:d7:7d:c9:9a:d4:ea:46:c8:c7:4a:
64:8d:46:0e:96:29:ee:0e:80:03:86:20:f2:a0:b2:
11:38:ed:0b:41:1e:c6:7c:d5:a3:23:e1:c3:f0:bc:
db:43:74:e1:da:04:92:60:f5:c9:1f:9f:81:a5:31:
65:5c:dd:35:8b:ae:30:d0:5c:71:63:23:b3:02:dc:
6e:16:c4:ad:63:67:bc:1b:e1:a6:4d:8b:fd:e4:a1:
4e:46:ca:fc:a5:56:a2:7c:2a:f9:88:0d:26:b9:43:
37:08:44:ce:e2:cc:ff:97:c0:98:65:ee:f5:2f:5d:
bb:ae:e3:84:cc:fb:9f:06:2d:6c:de:71:77:3d:b4:
77:a4:7d:a0:17:78:d7:49:30:4c:1e:50:24:84:ab:
36:f1:88:86:23:99:f4:38:23:a5:57:bc:90:01:cb:
da:78:8b:f5:8d:6e:58:34:1c:99:78:6f:64:93:95:
09:d9:1b:2d:42:e8:77:38:05:64:10:e5:5f:3c:22:
65:22:c1:e1:e3:c4:7a:56:2c:c9:28:49:d8:d9:4c:
61:ec:48:33:13:10:3f:57:84:b0:b3:97:a3:32:9f:
76:a2:6c:aa:4e:da:f8:93:17:9c:c4:75:54:59:8e:
a0:4a:7a:13:d9:67:c4:c6:fb:2d:f0:dd:cf:8e:80:
d4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:90:70:CB:D0:F3:E7:12:03:33:72:38:8F:92:51:1F:C2:8A:BE:BD
X509v3 Authority Key Identifier:
keyid:CB:F7:4C:D8:46:49:31:38:F5:22:C5:7C:00:65:B5:C6:05:12:DD:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/_JBwy9Dz5xIDM3I4j5JRH8KKvr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:3b80:154::/48
Signature Algorithm: sha256WithRSAEncryption
6d:0d:76:fc:26:4c:b2:a4:df:18:10:09:0c:72:e2:b6:55:3b:
75:0a:7b:3e:53:f0:be:7a:eb:8f:23:59:05:5c:57:e4:92:8c:
a3:97:56:b2:31:b4:f7:94:7e:1d:1e:b6:87:34:b3:59:08:aa:
61:3c:0f:59:7e:80:9d:8a:dd:da:f4:fb:9b:ba:5f:99:4c:56:
27:8b:27:3b:e8:43:67:88:cd:fb:71:48:15:bf:6e:3d:c3:0e:
b7:66:c8:f0:3d:a5:16:7d:ee:40:50:87:6b:d6:e8:d4:e0:28:
0e:00:58:50:ad:7b:76:5b:f6:b9:3e:cb:fb:bc:4b:a3:37:37:
ef:85:2d:82:f8:c6:ec:00:f3:e2:f5:4d:39:a3:96:7b:28:ea:
66:09:e5:c9:7b:8d:21:ef:ac:43:17:ed:b4:c0:28:66:9e:27:
38:5f:b1:d2:67:a8:60:55:e7:fd:8d:68:9d:1a:5d:02:5e:ad:
d1:a5:96:48:46:a3:fc:03:f5:d1:e4:32:90:b4:b6:8f:dd:35:
bb:15:d3:f3:dd:9b:e0:6e:de:5b:eb:38:b7:57:29:95:e0:ef:
c6:fb:b5:50:e6:27:e2:dd:eb:01:48:6b:ae:69:0c:7f:12:97:
b3:20:0f:21:e0:48:34:f8:de:08:3e:22:60:f1:bb:25:e0:79:
26:2f:0b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:52 2024 by rpki-client on console-ams.rpki-client.org