Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/kR8ml18Ri_JRJ1IhjM1LYOs6uYA.roa
File: kR8ml18Ri_JRJ1IhjM1LYOs6uYA.roa (raw, json)
Hash identifier: SbN7rEi7IlhQhj38TVfkCJebgEKTaooIJ0H0oyxGUYI=
Subject key identifier: 91:1F:26:97:5F:11:8B:F2:51:27:52:21:8C:CD:4B:60:EB:3A:B9:80
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018CC34893FA6C8D5BADA3C490FFC5D0C22A
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/kR8ml18Ri_JRJ1IhjM1LYOs6uYA.roa
Signing time: Mon 01 Jan 2024 04:29:22 +0000
ROA not before: Mon 01 Jan 2024 04:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203333
IP address blocks: 2a0d:2585::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 02 Feb 2024 23:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:93:fa:6c:8d:5b:ad:a3:c4:90:ff:c5:d0:c2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 04:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=911f26975f118bf2512752218ccd4b60eb3ab980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:ef:f6:00:49:5e:b0:3e:e7:cf:79:6b:59:
2c:7d:a6:45:92:1f:00:ec:f7:ba:f3:b8:1e:b8:7a:
b2:d4:4b:7c:55:6f:43:a9:bc:0e:35:0f:c3:7d:dd:
d5:c4:fe:1c:95:de:31:7b:8d:78:b7:be:98:d3:12:
20:2d:62:1d:9f:d6:1a:06:8c:07:59:aa:da:92:77:
e5:26:21:6d:5d:32:92:0a:37:93:b4:2c:4e:c6:82:
e1:c7:51:1f:e5:69:94:cd:e4:39:a2:03:b7:83:ce:
4d:9a:6f:75:55:58:c3:22:fe:40:e7:26:f1:f1:c9:
0c:d9:c5:ee:dd:dc:4f:c6:f1:67:55:03:7e:23:a7:
a5:a1:3b:5f:16:b1:4f:e5:19:03:03:f0:bf:6d:ea:
89:58:7f:ea:81:dd:28:d8:67:31:73:11:5f:3a:0d:
a6:e7:b5:06:7c:5a:e7:b9:ad:78:f5:75:01:91:58:
51:99:d3:be:c8:2d:85:ca:7b:66:4f:5c:65:49:b1:
2f:87:e8:66:c1:61:1c:14:ff:74:df:09:a2:25:10:
6d:9c:2f:dd:3c:65:74:7c:db:75:45:83:24:b2:38:
dd:7f:71:95:e2:ef:ea:b1:d7:f4:8b:59:3a:30:a8:
0c:b8:87:e5:79:eb:30:f7:46:08:ad:34:d7:71:ab:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:1F:26:97:5F:11:8B:F2:51:27:52:21:8C:CD:4B:60:EB:3A:B9:80
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/kR8ml18Ri_JRJ1IhjM1LYOs6uYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2585::/32
Signature Algorithm: sha256WithRSAEncryption
b9:30:4a:7f:00:4e:bc:12:bc:22:a5:b2:fc:3a:0c:3e:bb:64:
6a:0f:90:44:7e:fd:75:53:2c:ff:fc:9a:2e:6b:32:e8:e2:c5:
d3:1e:3c:9b:c6:f9:dc:61:93:70:19:60:90:ba:80:fc:5f:ba:
64:22:f1:c0:70:0c:f8:4e:12:dc:70:52:ff:e1:f6:2d:ae:34:
3b:80:ab:ba:0c:d0:01:a6:46:e0:c3:2d:b2:7a:75:d4:6c:f5:
e1:dd:7f:dd:37:be:5e:1e:47:53:66:96:1b:33:4d:d1:a0:46:
61:67:96:75:2a:a4:fe:a2:07:8c:61:e4:c1:06:9f:32:6e:03:
ab:a3:49:65:7c:d7:4a:6f:c2:a9:17:b7:ea:c2:ff:92:92:eb:
0e:04:90:a5:33:4d:38:01:39:a1:01:ff:b2:f5:22:cd:87:fb:
a7:b7:1a:0a:9d:5f:bb:db:6c:d1:50:e8:0f:86:98:1f:de:61:
7c:6b:33:dc:39:51:4b:02:31:82:2f:e8:1c:75:db:6c:82:78:
f3:82:fa:0f:39:8f:16:b2:2d:47:dd:06:ee:6d:55:fe:f1:de:
37:e7:a2:98:9c:0f:87:3b:b9:d7:42:8c:bf:8e:80:ca:30:91:
ee:19:b6:b0:c4:e6:f8:70:44:2f:18:66:fe:2e:8b:33:ca:a5:
a2:c3:2e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 3 02:04:49 2024 by rpki-client on console-fra.rpki-client.org