Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/eWa9_2rx7FHbghzflfXRccBdkpA.roa
File: eWa9_2rx7FHbghzflfXRccBdkpA.roa (raw, json)
Hash identifier: W7SWVxLr19D47/ARVPZOy/0kASibOOn4no83WS0wYcU=
Subject key identifier: 79:66:BD:FF:6A:F1:EC:51:DB:82:1C:DF:95:F5:D1:71:C0:5D:92:90
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ADDAB1BF50D6466758E5EDE06B3CC
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/eWa9_2rx7FHbghzflfXRccBdkpA.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207808
IP address blocks: 2a00:7180:8008::/46 maxlen: 46
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:dd:ab:1b:f5:0d:64:66:75:8e:5e:de:06:b3:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7966bdff6af1ec51db821cdf95f5d171c05d9290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:fc:8e:54:ca:57:13:88:05:f1:a5:85:87:
92:c6:37:93:e0:ee:3d:8b:5d:ab:37:52:eb:16:4c:
1b:94:72:2f:0a:13:2a:f3:aa:1d:ec:5d:70:96:85:
18:31:7f:0a:62:11:03:27:84:0d:73:4a:43:12:2d:
24:19:6b:34:23:ac:7e:fc:8e:b7:89:45:e5:61:46:
e2:73:85:af:59:66:76:9b:17:fe:af:a6:81:34:d9:
d5:fd:ea:6a:6b:82:08:63:a2:26:14:83:a4:26:4c:
68:2f:2d:54:e3:ea:30:19:64:d2:67:65:ab:ff:cf:
72:a3:44:b9:76:86:46:f6:90:68:2e:5d:13:8b:2a:
8a:48:27:f5:02:1c:7b:44:42:a6:af:88:4f:c8:6d:
e8:1d:43:78:c2:8e:c6:0e:d2:de:84:18:55:b3:74:
bf:b2:84:29:df:70:3d:36:4d:f3:f7:25:29:d3:a9:
c3:f9:ac:bf:29:62:05:eb:90:a5:53:82:6f:0e:6a:
15:5b:f2:b7:de:80:ba:37:e2:38:70:dd:d9:52:5a:
50:0e:e3:ec:a4:24:e3:e9:92:8b:f0:dc:39:ae:6a:
83:17:36:17:d9:6e:bf:8b:e2:c9:28:ac:89:d7:c3:
1a:16:62:1a:15:6c:bd:30:32:aa:ec:83:58:f6:52:
e7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:66:BD:FF:6A:F1:EC:51:DB:82:1C:DF:95:F5:D1:71:C0:5D:92:90
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/eWa9_2rx7FHbghzflfXRccBdkpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:8008::/46
Signature Algorithm: sha256WithRSAEncryption
29:d0:79:c1:ff:8f:1c:f5:0d:4c:45:70:e7:1d:68:2d:0d:f4:
58:68:b3:2b:6f:fd:91:ee:18:2f:e0:5c:df:7d:37:e2:ec:25:
fd:6f:b0:ac:f1:68:34:ff:2a:0f:45:8d:f9:ea:31:c0:db:94:
86:15:ed:d1:d5:71:de:fc:3a:f9:e4:dc:a6:28:f9:00:46:c1:
f3:c6:a0:9d:b1:76:b2:b0:0c:9c:b3:0e:82:ed:9a:97:50:af:
cb:bc:ab:b4:f9:5e:ec:64:ab:79:80:1f:8d:f8:fd:aa:1a:95:
cb:06:87:09:18:9c:1d:9d:a9:b7:93:3d:64:53:c0:86:ee:b9:
a4:8f:d2:1d:3c:05:c8:29:0f:57:b3:a2:a4:31:93:31:2f:19:
71:a5:8a:5a:a2:02:f6:e4:a6:0e:b9:24:1e:f9:a2:dc:99:a8:
0c:a2:fd:69:80:04:9d:4a:e4:64:65:6f:a7:51:e9:a3:93:36:
b3:74:b0:68:9d:c0:05:0c:9f:31:d7:5a:b5:71:73:42:49:37:
9e:35:5b:dd:b8:f6:f8:78:f5:66:dd:e2:64:5a:41:38:d1:5c:
95:13:ca:dc:1e:83:83:72:28:2c:97:ca:1a:cb:f8:87:81:73:
95:6d:dd:91:40:be:3a:76:d8:e9:f0:71:13:bd:9f:6d:74:d1:
68:25:04:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org