Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/J7jjSRgfv1FyaTH7L8ZFmi7xXqo.roa
File: J7jjSRgfv1FyaTH7L8ZFmi7xXqo.roa (raw, json)
Hash identifier: CQWj4lzG1mNVPfLDbJm535d/c+IPGjxmMtg+KhMV7+U=
Subject key identifier: 27:B8:E3:49:18:1F:BF:51:72:69:31:FB:2F:C6:45:9A:2E:F1:5E:AA
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 01857139CB4441D9E7BEB20549EE0A95C54D
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/J7jjSRgfv1FyaTH7L8ZFmi7xXqo.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207530
IP address blocks: 2a09:d2c1:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cb:44:41:d9:e7:be:b2:05:49:ee:0a:95:c5:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27b8e349181fbf51726931fb2fc6459a2ef15eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d3:ea:a5:f3:f3:be:be:5c:7c:c7:e3:37:15:
3b:a6:78:a8:da:3e:d4:a8:a0:58:b4:74:db:db:d4:
eb:4b:64:b6:c7:2c:80:92:29:4b:55:21:76:5b:ff:
ee:43:79:3a:db:2f:ab:bd:6f:77:24:52:44:b7:fd:
52:e8:14:af:2a:03:d1:3b:97:70:6a:33:eb:24:97:
01:70:c5:e2:66:78:02:8c:e6:78:4e:db:0b:4a:4f:
b5:7e:80:8c:60:da:9d:1f:f4:fc:3a:cf:88:6a:44:
81:b3:9f:02:5a:45:dc:28:31:6e:ca:9b:8c:c7:cf:
87:53:2c:bd:78:80:a0:5c:b0:2b:69:f2:e5:3f:ad:
3c:77:55:e6:ef:1d:35:4d:58:f5:09:de:2c:5e:79:
81:5e:8b:f9:9f:38:d8:a9:9c:60:27:1a:1f:35:06:
9f:4b:24:28:d8:2a:53:3e:13:c4:98:45:18:a4:70:
23:38:7c:85:de:03:65:8f:c1:e3:0d:46:0f:05:81:
79:b9:8b:bf:a0:43:3b:89:84:e8:f9:88:09:fd:fe:
33:fa:26:bb:ef:27:22:29:55:9b:f8:da:de:ee:d0:
e9:5e:d2:bf:5d:80:87:4c:a1:15:b4:4b:77:55:33:
b4:38:dc:76:d8:e8:6b:50:36:9a:96:d8:f5:60:db:
49:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B8:E3:49:18:1F:BF:51:72:69:31:FB:2F:C6:45:9A:2E:F1:5E:AA
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/J7jjSRgfv1FyaTH7L8ZFmi7xXqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d2c1:9::/48
Signature Algorithm: sha256WithRSAEncryption
9b:cb:3b:9f:cf:76:7b:ca:2f:d4:74:7f:b3:16:c0:26:8e:45:
db:97:ef:18:88:17:f7:d5:b5:35:d3:b9:52:2c:31:79:96:ad:
d9:e9:29:02:13:86:e2:5d:c8:a7:d0:4c:82:e4:7e:14:b0:0d:
46:aa:38:6f:fd:6f:52:e4:60:ec:fc:a9:c6:8c:ec:78:50:37:
be:ea:24:52:49:0e:e9:9d:29:61:81:76:d3:5e:cb:2b:78:08:
ff:7e:a8:fc:ab:d0:f9:03:c0:1b:78:07:1e:cc:0b:32:ac:f3:
2a:7a:ff:22:61:cd:2e:73:b7:c2:b4:7c:4e:08:80:9b:d1:4f:
09:ec:f7:39:02:2f:bb:80:05:a2:72:aa:51:ab:97:f2:84:46:
0a:59:33:42:6f:82:f8:f4:59:91:e6:3f:d9:3d:5a:33:e7:1f:
9c:5f:e6:5e:af:6e:d9:97:48:5c:41:3a:87:e3:e1:c9:07:c2:
0c:57:55:c7:31:f9:06:e1:af:e4:41:d4:69:a2:f2:22:55:c6:
ce:a7:49:ab:05:9c:d5:79:01:28:3a:30:7b:eb:14:1a:a7:3c:
d2:ed:6d:b4:2f:af:06:f4:d3:99:bf:39:69:89:e4:5b:c0:90:
7e:ac:97:e1:49:37:e7:14:c4:a6:75:fe:ba:58:8c:f9:f7:48:
95:93:3b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:34 2024 by rpki-client on console-ams.rpki-client.org