Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/p2ulNVVxsk07TILYpfRbEd_ivPg.roa
File: p2ulNVVxsk07TILYpfRbEd_ivPg.roa (raw, json)
Hash identifier: GPffGKYxy65PbHoz567ygakNvrqZ3JCY2a5hrzPhTg4=
Subject key identifier: A7:6B:A5:35:55:71:B2:4D:3B:4C:82:D8:A5:F4:5B:11:DF:E2:BC:F8
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 01856F024C16DE5EF6B26ED525008B722B29
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/p2ulNVVxsk07TILYpfRbEd_ivPg.roa
Signing time: Sun 01 Jan 2023 20:24:59 +0000
ROA not before: Sun 01 Jan 2023 20:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207080
IP address blocks: 2a0c:2f06::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 12 Mar 2023 16:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:4c:16:de:5e:f6:b2:6e:d5:25:00:8b:72:2b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jan 1 20:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a76ba5355571b24d3b4c82d8a5f45b11dfe2bcf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:60:fa:78:4d:33:1d:8b:5c:a6:78:73:04:47:
90:1f:73:a2:3f:fe:91:4d:22:9d:1e:50:fa:4c:5f:
6e:ce:c9:98:88:7e:b9:5d:52:05:03:2c:90:f5:9c:
59:ed:0b:c6:48:4d:d6:12:af:e6:2b:d4:f1:99:6a:
d6:b2:3d:38:60:a9:f5:69:26:61:17:52:99:1d:b4:
ac:b9:ee:97:1b:64:69:85:9f:9f:15:60:fa:36:d8:
d4:fa:72:84:39:b1:50:3e:b1:65:f6:47:75:3c:bf:
f5:42:2a:b5:c2:5b:12:0f:4e:eb:df:60:2c:d2:dc:
ed:5a:fe:79:db:12:0f:fa:3f:25:7c:85:15:84:60:
58:64:8d:fa:bb:74:bd:49:bd:b8:46:06:8d:38:92:
2c:1e:79:1e:49:a5:0b:c9:92:4f:d8:a7:79:c8:55:
22:57:8e:90:6b:bb:14:05:8f:fc:4b:0e:a2:99:da:
d6:c6:70:98:ed:a2:76:6a:aa:2f:b5:d7:5f:76:c4:
69:ab:de:61:10:d1:04:7c:ae:b9:0b:7f:e1:cc:93:
bc:58:78:0e:2b:ff:94:3f:af:16:7f:39:1f:2a:81:
72:45:0d:fa:c2:07:a2:28:ea:7e:73:85:e6:3a:31:
10:fa:7d:8a:b7:22:8c:45:dc:20:0d:bd:c6:6d:0b:
6e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6B:A5:35:55:71:B2:4D:3B:4C:82:D8:A5:F4:5B:11:DF:E2:BC:F8
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/p2ulNVVxsk07TILYpfRbEd_ivPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:2f06::/32
Signature Algorithm: sha256WithRSAEncryption
6b:13:43:49:b7:f5:27:07:bb:db:a5:77:ee:2c:09:99:fc:96:
b6:bb:b2:3b:bf:b5:f2:b3:9e:4b:ca:14:e5:15:9a:31:e9:77:
74:b0:00:a8:a8:a7:f3:06:75:50:3e:b4:f0:2f:6d:69:d4:06:
01:63:27:41:a8:8f:47:9d:92:8b:fd:e3:57:8f:15:18:09:1f:
06:ff:93:b8:a5:fc:f5:27:2a:0d:11:f2:99:ad:38:9b:85:c6:
2f:5b:ae:df:cf:d5:6c:4c:35:d9:84:a0:a3:1f:46:3d:96:6c:
49:3d:a0:64:eb:d8:90:69:a1:32:c4:2a:77:c7:f6:e1:79:81:
59:ac:9b:a2:38:e0:7d:dc:da:7e:c9:58:e3:66:fe:68:43:1e:
11:99:d1:9f:12:11:81:37:6c:12:de:79:89:59:26:b2:be:b8:
c3:a6:a8:8c:aa:52:7b:80:0b:ee:f7:81:2d:42:35:fc:1a:9c:
71:5c:e5:61:7c:84:48:2e:9a:a0:68:95:45:b6:81:6e:59:ee:
35:35:19:55:55:6e:74:f7:b8:39:2c:5d:9e:52:30:43:18:56:
52:0a:62:52:3a:44:06:a3:96:77:6f:15:10:f9:9c:97:2f:64:
30:c3:23:5d:06:46:b4:81:eb:79:df:db:c2:ac:56:d8:3b:d2:
2f:aa:5f:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:42 2024 by rpki-client on console-ams.rpki-client.org