Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/h0fMKjQqACHZmAoLiPQOS0fT9zg.roa
File: h0fMKjQqACHZmAoLiPQOS0fT9zg.roa (raw, json)
Hash identifier: yHXZmzlZwPRsCiRxFDbg77z5AnO1IRoLwgi8wkzb888=
Subject key identifier: 87:47:CC:2A:34:2A:00:21:D9:98:0A:0B:88:F4:0E:4B:47:D3:F7:38
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 0185D04677F35F0A684EFA4CB4D1E8CE3D04
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/h0fMKjQqACHZmAoLiPQOS0fT9zg.roa
Signing time: Fri 20 Jan 2023 17:42:37 +0000
ROA not before: Fri 20 Jan 2023 17:42:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26073
IP address blocks: 2a0e:1cc0:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d0:46:77:f3:5f:0a:68:4e:fa:4c:b4:d1:e8:ce:3d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 20 17:42:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8747cc2a342a0021d9980a0b88f40e4b47d3f738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:fe:75:d5:ab:44:56:fd:f3:88:52:20:ec:
13:c5:c4:aa:65:d4:3a:a3:08:e1:3b:58:ea:3d:1b:
22:a1:ce:9c:ea:df:50:80:1c:27:37:43:5c:58:ef:
b2:b1:b5:30:3b:93:d6:d6:99:9e:91:62:4e:54:52:
bf:34:62:26:63:6a:d8:3a:cb:66:57:3b:07:1e:22:
5a:a7:6b:71:0a:ca:46:d3:36:c3:d5:24:52:7e:c6:
a9:d2:c2:10:ec:7e:31:f9:60:84:5e:ee:f4:8c:68:
56:75:de:21:b4:fa:a2:37:b8:32:ff:41:86:0e:3b:
c1:cd:2a:83:f9:9e:2e:77:0b:fd:d6:6e:5f:7f:77:
22:7c:43:8a:91:d0:27:b8:28:51:f1:05:f2:b7:07:
ff:71:fd:50:ff:13:54:5d:78:52:20:a1:70:3f:98:
9c:2a:9c:07:a4:06:9d:b8:7f:39:68:db:2c:37:63:
fd:56:7d:0f:f6:49:dc:dc:d7:81:2d:a4:64:39:aa:
75:3d:db:72:2f:33:2f:9c:1f:9b:69:6c:fb:80:5d:
90:d1:27:93:72:58:cb:c6:89:09:ff:39:6e:9e:2a:
9f:25:3e:75:bf:24:0e:e8:f7:6c:7f:c4:72:d5:69:
9b:7c:f8:d1:bf:29:4f:6f:86:d0:68:71:0b:af:48:
04:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:47:CC:2A:34:2A:00:21:D9:98:0A:0B:88:F4:0E:4B:47:D3:F7:38
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/h0fMKjQqACHZmAoLiPQOS0fT9zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1cc0:10::/48
Signature Algorithm: sha256WithRSAEncryption
29:0e:ec:67:e9:61:f2:bc:48:f4:9d:c2:11:66:f8:22:db:9e:
88:09:e6:da:e4:79:06:a8:2a:94:af:20:bd:a7:4c:e3:a0:73:
39:45:cd:4f:69:67:f7:76:42:85:39:74:99:f4:be:10:9a:ea:
b0:36:f3:6e:51:4e:97:43:a7:51:02:78:3a:96:3c:04:6a:2c:
01:c8:91:4d:b4:c5:a1:08:3f:bb:c4:33:5a:a8:d1:6d:c4:e5:
ca:16:ee:16:bd:9d:47:e7:08:f4:dc:09:d1:01:a7:24:54:6a:
8c:00:29:fe:0c:ce:c8:29:63:e0:9a:cc:3f:29:d4:00:40:eb:
77:e0:54:83:d0:f3:e8:dd:ab:4c:09:2b:4c:99:8d:9e:5c:5f:
ca:1f:6e:1c:b5:23:8a:4b:bb:fa:a9:9c:cc:cc:bb:57:1c:0e:
29:c8:20:33:58:7a:76:1c:7c:a3:90:14:14:48:95:df:6b:ea:
6b:72:2b:12:d1:2b:b4:b8:c7:2b:37:f1:d1:85:b3:17:45:74:
f3:c5:d3:c1:96:94:9c:30:ad:c6:3e:3f:c6:4c:2e:15:e3:f2:
07:37:19:bf:ea:69:c8:b2:1a:c0:86:cc:94:c0:bd:7d:bc:63:
1b:c3:83:69:35:bb:27:d6:ce:4a:f0:62:5a:47:e1:8f:6a:b1:
2c:41:a2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:37 2024 by rpki-client on console-ams.rpki-client.org