Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/i6W2z4LQtIq6ml0cgLF1UT2s8vY.roa
File: i6W2z4LQtIq6ml0cgLF1UT2s8vY.roa (raw, json)
Hash identifier: /XSXDZdmxbI5aQYxtFgsIBm4xVQOYFbXy/r9vI0S6Nc=
Subject key identifier: 8B:A5:B6:CF:82:D0:B4:8A:BA:9A:5D:1C:80:B1:75:51:3D:AC:F2:F6
Certificate issuer: /CN=cbf74cd846493138f522c57c0065b5c60512dd09
Certificate serial: 018570B985E46FA0A363F2B32242EB8B4DBD
Authority key identifier: CB:F7:4C:D8:46:49:31:38:F5:22:C5:7C:00:65:B5:C6:05:12:DD:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/i6W2z4LQtIq6ml0cgLF1UT2s8vY.roa
Signing time: Mon 02 Jan 2023 04:24:44 +0000
ROA not before: Mon 02 Jan 2023 04:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a06:3b80:154::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:85:e4:6f:a0:a3:63:f2:b3:22:42:eb:8b:4d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbf74cd846493138f522c57c0065b5c60512dd09
Validity
Not Before: Jan 2 04:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ba5b6cf82d0b48aba9a5d1c80b175513dacf2f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ab:8b:4e:3c:d5:6f:ec:92:a5:2f:01:d4:71:
98:ba:9f:da:ef:e5:65:74:ac:84:e8:85:8d:97:b4:
69:ef:64:5c:09:b4:f5:10:03:cb:df:e8:62:ca:d7:
fd:a9:66:03:6a:e1:b3:9b:03:d2:1d:7e:2c:1f:fb:
15:1f:02:dc:7c:74:86:49:e3:3a:1e:79:a4:b0:81:
13:5b:99:34:2c:36:da:ea:65:77:cd:35:f1:12:3f:
df:35:ca:4e:2c:9d:3c:69:83:2a:0c:8f:e7:02:4b:
57:a9:4c:d4:8e:3f:c4:78:c2:47:c1:e7:c4:18:fc:
84:26:00:67:04:88:e3:81:1c:18:05:2c:5f:a8:ea:
2e:0b:b1:f7:08:46:54:1f:ef:a0:d6:44:17:2d:83:
56:86:7f:2d:5b:c2:1d:a6:ca:46:db:30:fc:ca:d6:
70:90:5d:66:04:88:56:d1:2a:d7:0e:cd:89:1b:43:
cb:f3:f8:b3:3d:10:7c:73:af:4d:c3:2d:6e:cf:73:
0e:7b:b1:22:9c:29:eb:ba:92:34:7f:7a:ab:76:79:
ef:26:83:33:d0:9f:9e:03:63:47:cd:d8:c3:6f:8a:
c4:19:a2:3b:53:de:9e:08:17:2d:6b:df:cc:f2:f0:
4e:b0:70:89:ee:60:87:9e:64:20:75:2e:b1:d9:e8:
a9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A5:B6:CF:82:D0:B4:8A:BA:9A:5D:1C:80:B1:75:51:3D:AC:F2:F6
X509v3 Authority Key Identifier:
keyid:CB:F7:4C:D8:46:49:31:38:F5:22:C5:7C:00:65:B5:C6:05:12:DD:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/i6W2z4LQtIq6ml0cgLF1UT2s8vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:3b80:154::/48
Signature Algorithm: sha256WithRSAEncryption
7c:6d:f1:c9:4e:82:55:06:70:ca:83:72:5f:37:e8:1d:1f:c5:
04:a2:91:84:c2:e5:bd:99:51:10:e9:84:62:34:81:99:bc:85:
e1:2c:ec:0e:41:34:0b:47:1f:a9:68:7a:8f:6d:7e:08:b7:6a:
24:4c:f9:fe:3e:99:3a:a2:7a:b5:47:94:c4:1f:f2:fc:a3:2c:
5b:a6:79:62:a9:fc:23:de:ae:39:62:c1:09:f4:26:64:04:ef:
4d:fc:64:a5:d2:3a:2c:7e:3e:d3:6f:88:4e:1b:f8:33:cb:20:
23:8a:e2:48:10:04:26:84:8a:81:3a:3b:03:60:62:8e:33:3a:
77:38:a3:88:c0:c8:89:c4:ed:79:69:e9:41:39:6c:12:85:07:
c6:b9:2d:b3:51:d5:c4:a9:1a:fa:94:0e:da:d7:f5:e7:1b:dc:
07:14:62:1f:22:0a:f6:23:e7:87:24:c2:e0:d4:82:84:32:0e:
be:4c:44:eb:c2:1e:53:1c:b8:54:63:68:56:c0:de:75:02:b6:
f8:1e:29:0c:7d:3d:7c:10:b9:38:96:ac:f6:82:eb:ff:dd:6c:
7b:77:28:3d:80:4d:cc:92:87:45:fd:0b:08:e1:e0:91:15:eb:
4a:a0:13:46:a4:86:42:be:b0:f1:d7:04:18:da:ab:44:a0:3a:
9f:06:51:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org