Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/m0Xj9QTmlIAWOPk-BeZtTxsGLnE.roa
File: m0Xj9QTmlIAWOPk-BeZtTxsGLnE.roa (raw, json)
Hash identifier: +LBrv0f9PHgjO/EmFUuWLTNX+lgMSfHAD4P8udVVaz8=
Subject key identifier: 9B:45:E3:F5:04:E6:94:80:16:38:F9:3E:05:E6:6D:4F:1B:06:2E:71
Certificate issuer: /CN=36eaa00ea777098b1bf036756d640e9d31d63b3b
Certificate serial: 0189914AD0BC4F0A022B44C66578D94C755A
Authority key identifier: 36:EA:A0:0E:A7:77:09:8B:1B:F0:36:75:6D:64:0E:9D:31:D6:3B:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/m0Xj9QTmlIAWOPk-BeZtTxsGLnE.roa
Signing time: Wed 26 Jul 2023 08:22:26 +0000
ROA not before: Wed 26 Jul 2023 08:22:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 2001:7f8:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jul 2023 11:56:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:4a:d0:bc:4f:0a:02:2b:44:c6:65:78:d9:4c:75:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eaa00ea777098b1bf036756d640e9d31d63b3b
Validity
Not Before: Jul 26 08:22:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b45e3f504e694801638f93e05e66d4f1b062e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0f:e0:d2:2c:d4:cf:dc:0d:b5:62:1a:cd:ee:
1e:8c:da:8c:6c:c9:24:eb:71:fc:34:92:9b:a3:d1:
c4:7c:01:c2:ce:e1:51:68:c4:33:0c:aa:8a:b3:a8:
59:75:d7:60:f6:02:fe:4b:dc:e8:d7:c1:5e:1e:59:
f2:86:97:50:3c:86:c9:e6:08:fa:bd:ed:1a:c1:db:
6f:53:47:24:3b:c2:11:63:b1:f7:1d:d2:02:e8:8e:
95:dc:b9:e2:c2:64:69:d1:09:99:71:00:88:b9:24:
5e:26:b3:61:26:ee:88:c6:67:f5:57:a5:0e:74:ee:
76:bf:9a:0e:4f:eb:94:bc:8c:3a:9e:7c:33:1c:44:
6a:04:1a:92:08:0e:b2:78:94:d0:45:28:6f:9f:01:
97:f0:ee:34:c0:58:c2:d5:b2:43:d6:e9:28:cf:0a:
c3:5d:6f:4f:0a:0f:47:64:3b:44:bf:a6:f3:e4:1c:
9c:45:89:d6:fe:5b:4c:bf:32:7f:db:f6:42:e3:26:
26:bf:d0:56:84:64:23:c1:e3:ff:82:95:7b:3e:b2:
a5:a6:ee:4d:a4:55:05:c3:2a:17:82:ec:63:4f:82:
7f:85:0c:b2:83:c1:13:87:9e:13:9d:bc:a9:c0:5d:
7a:5d:88:ca:10:30:77:81:8c:db:60:e6:33:49:85:
db:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:45:E3:F5:04:E6:94:80:16:38:F9:3E:05:E6:6D:4F:1B:06:2E:71
X509v3 Authority Key Identifier:
keyid:36:EA:A0:0E:A7:77:09:8B:1B:F0:36:75:6D:64:0E:9D:31:D6:3B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/m0Xj9QTmlIAWOPk-BeZtTxsGLnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:4::/48
Signature Algorithm: sha256WithRSAEncryption
27:81:2a:5a:2e:51:b2:a6:7d:63:5a:ea:fd:1f:a4:10:28:44:
03:a5:f0:e1:3a:8a:94:cc:18:77:ed:5c:85:85:7f:52:54:10:
18:70:db:43:0d:50:ac:99:17:9f:6a:45:a3:63:1a:c1:14:60:
ea:f0:93:60:d0:64:51:5f:84:21:51:e0:80:27:1c:9b:c9:14:
d2:b6:11:82:b4:6d:c1:c1:9e:6d:12:6f:98:8c:e1:08:12:ca:
10:fc:b6:0e:81:d9:ce:4c:db:e8:a2:6e:7f:6e:50:a7:ce:a3:
6d:47:5a:35:1a:c7:4f:7d:0d:f2:30:61:17:5d:81:04:f3:a1:
0d:b9:f0:07:c2:5a:37:12:fa:bc:23:9e:66:70:cc:5e:26:13:
25:7c:62:33:d7:cb:cd:c5:26:14:c7:38:19:48:57:d9:c1:32:
a1:3e:ae:b8:fc:d8:64:00:77:c7:cb:ce:2d:ba:d2:a6:62:55:
56:0b:1f:a4:5b:08:64:a7:f8:33:5e:b0:19:44:a4:9b:97:0d:
12:83:ac:a6:3d:f1:64:8f:b8:1a:3a:20:79:09:2a:b0:f3:99:
d5:d9:3c:2e:01:bc:01:6d:83:da:7f:9b:81:ae:f1:e8:5f:7c:
2f:23:17:10:13:a4:44:ab:9c:df:44:d1:75:fd:56:d3:b4:7c:
a5:70:72:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:37 2024 by rpki-client on console-ams.rpki-client.org