Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/ec90Nw-4jXI_aUy5ozQlDFRQsMw.roa
File: ec90Nw-4jXI_aUy5ozQlDFRQsMw.roa (raw, json)
Hash identifier: PWUs/XJvsIiCRESilMfbf3aLcIF6KUNQx8eljnurjr0=
Subject key identifier: 79:CF:74:37:0F:B8:8D:72:3F:69:4C:B9:A3:34:25:0C:54:50:B0:CC
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 01857139CD9DF74401810CB9518A93C0436D
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/ec90Nw-4jXI_aUy5ozQlDFRQsMw.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213064
IP address blocks: 2a09:d2c2:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cd:9d:f7:44:01:81:0c:b9:51:8a:93:c0:43:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79cf74370fb88d723f694cb9a334250c5450b0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:be:4e:d3:52:8d:95:93:31:c5:74:d2:46:59:
e9:7d:e8:e0:ae:db:45:c7:fe:6d:dc:d5:c5:e5:cf:
db:78:41:df:74:f8:98:56:65:69:ee:22:89:83:40:
8a:a6:61:62:14:e3:bb:01:4a:fd:ad:37:d7:b0:53:
dd:ce:12:b8:95:6a:a0:19:a0:af:5a:c7:90:ca:b1:
6a:3f:5e:20:21:33:ab:fe:7a:be:70:df:af:f1:8a:
00:92:bd:bb:31:68:e4:61:35:23:56:98:f9:8d:b3:
b8:e0:b4:93:89:24:a3:09:fd:ad:2d:33:e5:35:43:
14:96:59:b8:f7:4b:dc:3b:5d:6c:a2:bd:89:25:48:
88:0b:a9:5b:2e:cb:91:02:e8:4e:d8:ed:5c:f5:59:
6a:0e:2c:18:96:60:45:ff:ee:6d:b6:8d:68:64:df:
96:c3:c7:47:30:ed:11:e4:f7:0a:0a:4d:46:78:1d:
03:5e:0a:a1:61:d4:42:53:46:81:d7:45:b6:dc:6c:
d9:c3:11:8a:37:3e:4e:f3:c6:bb:d3:d8:b0:80:bd:
40:f3:37:1d:f1:08:99:94:9f:43:4c:fc:81:4a:44:
10:a0:cd:24:de:12:cf:1e:a6:55:b7:c8:66:49:6a:
ef:bd:02:cd:50:71:ba:f3:24:8c:55:a7:a9:9d:fa:
da:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CF:74:37:0F:B8:8D:72:3F:69:4C:B9:A3:34:25:0C:54:50:B0:CC
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/ec90Nw-4jXI_aUy5ozQlDFRQsMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d2c2:1::/48
Signature Algorithm: sha256WithRSAEncryption
61:42:5d:d1:bf:44:51:fd:44:52:35:51:ad:b9:67:82:da:3c:
0a:bc:79:25:30:81:5d:24:f9:a3:35:a7:da:76:b5:4c:e4:94:
72:bb:cf:e9:32:32:04:eb:64:39:d6:f1:85:38:aa:1d:d7:91:
f2:95:da:18:e1:34:04:03:e3:46:87:b9:3b:69:68:c1:9a:5b:
ac:1f:0b:a9:e2:df:0a:0f:83:30:6d:e1:5f:f1:fd:d2:a1:bf:
bd:b5:fb:27:16:ef:2a:a1:58:da:2b:67:c4:bf:0a:6d:d2:71:
4a:6c:28:00:e3:67:b0:fe:45:db:a1:62:93:b7:5e:ae:9f:4c:
a7:a0:bf:e4:21:a5:4d:d3:41:d0:65:0b:c0:0c:17:64:99:ca:
c9:4d:18:02:aa:42:b9:63:f0:39:89:09:33:f2:dc:4d:59:a8:
4c:45:7a:f7:69:81:3a:fa:00:47:29:ce:fd:32:96:bb:7d:40:
89:6f:d7:98:cf:e3:b3:89:71:be:af:83:8c:14:b1:0e:6f:50:
18:6e:e8:af:5f:d3:6c:14:f6:3b:f3:6a:a0:3d:5a:94:f0:42:
89:9d:a4:ac:f6:b4:b0:bc:73:14:a6:ec:f8:4d:65:e4:db:70:
98:fb:b4:c5:55:80:0e:45:42:c5:83:67:a8:53:48:6a:85:a8:
c6:d8:76:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:34 2024 by rpki-client on console-ams.rpki-client.org