Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/jIvGsbDgDHIW54feWjSSRoo1NH8.roa
File: jIvGsbDgDHIW54feWjSSRoo1NH8.roa (raw, json)
Hash identifier: MQk0CN8sQIynGL0tqUKJ8bPynSFKyd7aWbOTyaWvnNI=
Subject key identifier: 8C:8B:C6:B1:B0:E0:0C:72:16:E7:87:DE:5A:34:92:46:8A:35:34:7F
Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237
Certificate serial: 0185730CA8DE94CC346A5D45DE7C7E6D5D28
Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/jIvGsbDgDHIW54feWjSSRoo1NH8.roa
Signing time: Mon 02 Jan 2023 15:14:47 +0000
ROA not before: Mon 02 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35365
IP address blocks: 2a07:bbc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:a8:de:94:cc:34:6a:5d:45:de:7c:7e:6d:5d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237
Validity
Not Before: Jan 2 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c8bc6b1b0e00c7216e787de5a3492468a35347f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:02:e4:e6:97:b4:50:88:c3:f4:53:b4:d6:b4:
86:d8:77:77:54:10:d0:6a:1f:00:20:b6:64:7a:d8:
8a:0a:9a:57:af:c6:0f:d5:99:83:8a:fc:e7:48:fc:
e4:39:8f:29:ee:20:ae:75:43:d3:b9:d3:74:ed:ca:
fd:eb:5a:56:e2:24:f4:06:52:e9:21:9a:25:15:3d:
2a:d2:df:ce:02:fd:17:79:f8:d8:aa:bd:8c:5d:88:
54:4f:0e:75:c9:5f:45:06:43:1e:88:fc:28:f8:b6:
92:d9:bb:a9:a8:84:cc:b1:0b:f8:56:56:6f:8d:a0:
e4:35:1b:db:e4:dd:c8:06:49:ef:c6:df:3c:a1:53:
68:50:a1:fd:c7:11:b4:bb:cf:33:f3:81:7a:bb:c1:
92:c3:90:31:31:36:9d:a4:33:d0:bd:33:b8:59:4b:
aa:28:54:2d:11:bd:28:4f:a2:2e:0e:d5:7f:f1:24:
c8:e8:64:ff:33:4b:c1:26:6b:85:43:8b:31:d4:48:
d0:70:86:c4:56:c0:57:c1:4d:fc:ce:3f:04:a2:68:
ac:f7:3d:b0:f2:b1:45:d1:2c:30:fc:42:b9:08:8c:
7e:02:dd:4e:88:82:a9:d1:2f:8b:aa:a5:03:cf:ac:
e8:37:bb:a9:d9:11:96:37:4b:a2:15:2d:c1:f0:1d:
14:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8B:C6:B1:B0:E0:0C:72:16:E7:87:DE:5A:34:92:46:8A:35:34:7F
X509v3 Authority Key Identifier:
keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/jIvGsbDgDHIW54feWjSSRoo1NH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:bbc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
46:86:f2:28:78:62:ee:65:9b:b3:af:ad:80:4e:87:f5:c9:c6:
91:b8:f9:ba:e5:d0:fe:40:a7:ce:b7:9b:01:15:bc:c1:cb:5a:
23:07:b0:4f:bb:4a:10:d4:66:3d:11:29:41:46:20:86:28:4f:
65:f1:ee:4c:bc:bd:7e:c7:2e:a3:af:ce:d5:55:40:90:c8:b1:
24:ff:e1:d5:2d:2f:73:e6:63:96:6e:41:a2:52:ef:54:f3:63:
d9:af:c2:18:e4:10:75:b2:76:81:07:3b:bd:de:cf:7e:98:7a:
8d:88:39:2d:bd:37:0e:a4:3a:88:1a:0e:c4:6a:fc:3f:fc:c2:
88:7d:ef:9a:a6:7a:25:0a:84:93:f0:fa:41:dd:59:67:3e:92:
30:ab:50:be:23:0b:f7:2d:7c:cb:16:d9:56:ff:59:34:8d:73:
9c:0d:19:e0:f4:45:b5:67:01:a1:63:02:da:88:5e:3d:e7:dd:
ed:a0:43:8c:3b:37:75:6f:38:09:99:12:01:57:8d:17:1f:c7:
b9:4e:c1:e4:53:cc:f8:22:b4:94:c1:e3:d1:4b:2c:66:26:8c:
81:4f:7f:e4:c0:8d:9e:7c:1e:d3:e6:94:c7:9e:08:20:32:6c:
fa:ca:66:66:9b:22:41:c5:a6:bc:71:aa:04:7f:23:94:0f:62:
fd:59:93:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:40 2024 by rpki-client on console-ams.rpki-client.org