Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/80bf4f-ccfd-4cd0-ad4d-b5eec9bd7705/1/1_MNArRE8qGepMTWIu3nHt6GMBM.roa
File: 1_MNArRE8qGepMTWIu3nHt6GMBM.roa (raw, json)
Hash identifier: bWF3AfqLIkrELZLbTWgUOtUmhnjsHJkVP/UNBgAFrWY=
Subject key identifier: D7:F3:0D:02:B4:44:F2:A1:9E:A4:C4:D6:22:ED:E7:1E:DE:86:30:13
Certificate issuer: /CN=c3f41de1fe0636e084379b1ad2ebba7edfcf9682
Certificate serial: 018683B88CA616BEF535541C8FD3B3170A24
Authority key identifier: C3:F4:1D:E1:FE:06:36:E0:84:37:9B:1A:D2:EB:BA:7E:DF:CF:96:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_Qd4f4GNuCEN5sa0uu6ft_PloI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/80bf4f-ccfd-4cd0-ad4d-b5eec9bd7705/1/1_MNArRE8qGepMTWIu3nHt6GMBM.roa
Signing time: Fri 24 Feb 2023 13:59:15 +0000
ROA not before: Fri 24 Feb 2023 13:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202684
IP address blocks: 2a0e:4940::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:b8:8c:a6:16:be:f5:35:54:1c:8f:d3:b3:17:0a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3f41de1fe0636e084379b1ad2ebba7edfcf9682
Validity
Not Before: Feb 24 13:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7f30d02b444f2a19ea4c4d622ede71ede863013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2c:a5:a9:5b:85:51:92:22:5d:27:05:16:e6:
0b:5f:bd:97:11:80:13:e1:d0:51:1b:02:55:0f:1f:
d4:fd:b0:06:ac:a7:70:be:80:7e:dc:49:c5:d4:42:
66:80:6c:49:c2:71:db:99:91:fb:8e:d3:cc:41:0c:
bf:ec:00:bf:da:f4:e1:12:72:0f:94:84:3f:cd:19:
82:e7:7e:3e:9e:d8:b6:8e:1a:07:12:e1:02:b7:97:
6e:ae:1a:4f:d6:78:b3:b1:9d:d5:26:82:a2:57:c7:
e8:c0:b5:0d:69:25:da:78:77:45:18:92:30:f1:3e:
f4:06:b4:ee:ae:96:50:51:51:73:eb:10:d9:57:bc:
f2:b0:1c:93:dc:c7:72:16:b4:f3:20:4f:59:94:13:
54:ec:51:ab:ee:3d:18:b6:e3:30:d4:e2:d3:2d:a8:
c2:79:34:08:3d:97:f7:e8:1f:7a:35:cb:98:d1:aa:
96:88:47:f8:3c:f4:28:f1:50:99:7c:fd:d2:0d:36:
1a:71:93:4f:28:c6:25:2a:9d:67:bf:60:36:af:44:
39:6d:d4:93:19:2b:6b:6c:a9:02:18:c7:9d:70:9d:
39:34:2b:d4:c3:f3:19:67:64:0b:eb:41:08:e5:a7:
b9:bd:91:91:b0:b8:d6:37:d6:c2:70:df:45:1c:c9:
2c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F3:0D:02:B4:44:F2:A1:9E:A4:C4:D6:22:ED:E7:1E:DE:86:30:13
X509v3 Authority Key Identifier:
keyid:C3:F4:1D:E1:FE:06:36:E0:84:37:9B:1A:D2:EB:BA:7E:DF:CF:96:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_Qd4f4GNuCEN5sa0uu6ft_PloI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/80bf4f-ccfd-4cd0-ad4d-b5eec9bd7705/1/1_MNArRE8qGepMTWIu3nHt6GMBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/80bf4f-ccfd-4cd0-ad4d-b5eec9bd7705/1/w_Qd4f4GNuCEN5sa0uu6ft_PloI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4940::/29
Signature Algorithm: sha256WithRSAEncryption
be:0a:13:14:c8:81:53:7a:06:4b:f6:98:ed:38:c9:1c:19:5f:
d9:da:84:03:4a:55:1a:a9:2d:bf:96:51:66:cf:eb:2f:4a:27:
da:90:51:e6:8e:51:b9:2d:26:de:e6:9c:38:0b:81:dc:ba:bd:
39:ad:9d:35:2e:bd:3f:95:6d:c5:9f:f0:34:e3:6c:c9:10:57:
be:d7:68:9b:e8:ec:f4:d9:06:03:9b:30:ce:74:b5:94:f5:e1:
05:11:93:8b:31:6f:86:59:43:a7:f3:85:0d:4d:ba:37:8d:56:
8a:78:55:c3:8c:51:76:a8:da:46:91:df:35:d4:ee:8e:d2:d4:
02:b8:e9:c6:be:27:c9:c9:e9:a1:ef:57:07:4c:6a:ff:2f:fc:
c2:58:2b:1f:6c:75:47:4b:5b:1b:b6:0a:91:db:45:ea:33:9a:
4b:ef:8e:b6:eb:f4:b2:6e:da:79:d7:55:eb:ad:bb:48:6b:e1:
6c:b2:0c:5f:5b:52:1f:6d:40:23:24:bf:52:39:de:5b:f1:6d:
b8:1d:a0:c2:02:66:f8:a6:13:ce:b7:b0:d1:b2:f9:6b:e9:3b:
61:3a:57:5b:a7:63:2a:01:99:91:4b:2d:6f:5d:9c:f2:3f:e0:
39:29:7a:e5:2c:c8:b6:a6:05:ff:9e:bb:76:b7:d6:54:20:4f:
75:93:44:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:52 2024 by rpki-client on console-ams.rpki-client.org