Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/27847c-5113-4a4b-a788-764363b13cd2/1/NH8JyYa2oPn2nBw5YTw0JObZhaQ.roa
File: NH8JyYa2oPn2nBw5YTw0JObZhaQ.roa (raw, json)
Hash identifier: ZI9EIAQbdppv38Dz/AGIR/0mvt4dxp59USQGgBN8xlg=
Subject key identifier: 34:7F:09:C9:86:B6:A0:F9:F6:9C:1C:39:61:3C:34:24:E6:D9:85:A4
Certificate issuer: /CN=ef52dc6920bde007450630bbfc0216ade4e03f62
Certificate serial: 018AD6938693B7FB77C1B2C16D1038992B1D
Authority key identifier: EF:52:DC:69:20:BD:E0:07:45:06:30:BB:FC:02:16:AD:E4:E0:3F:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71LcaSC94AdFBjC7_AIWreTgP2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/27847c-5113-4a4b-a788-764363b13cd2/1/NH8JyYa2oPn2nBw5YTw0JObZhaQ.roa
Signing time: Wed 27 Sep 2023 12:18:27 +0000
ROA not before: Wed 27 Sep 2023 12:18:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60874
IP address blocks: 2a00:6fe0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:93:86:93:b7:fb:77:c1:b2:c1:6d:10:38:99:2b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef52dc6920bde007450630bbfc0216ade4e03f62
Validity
Not Before: Sep 27 12:18:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=347f09c986b6a0f9f69c1c39613c3424e6d985a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ac:17:9e:22:6d:12:39:f1:8f:75:fa:3b:53:
d0:b4:fe:40:5e:1f:34:9a:9d:bf:4c:82:22:32:c1:
ea:bd:4c:1d:66:49:77:24:fc:9d:bd:50:a5:04:f8:
7c:69:d8:62:9b:40:1e:05:f2:92:11:b3:41:64:a2:
9b:c0:58:6d:ff:72:13:64:60:4f:12:89:3b:0d:b1:
d4:4b:71:af:b3:13:19:80:04:fa:80:06:7e:37:d3:
38:db:56:0c:d0:e9:15:a2:2b:a4:78:3d:37:d6:b2:
27:be:7f:2a:3e:09:28:5e:f5:e2:76:03:cc:50:9b:
d0:5e:4e:bb:dd:ff:1a:d2:f3:7a:f1:b7:9c:eb:d5:
d0:24:f2:ea:84:30:2f:c9:76:e9:47:96:0d:e1:b7:
4a:ea:54:ce:9f:fd:30:02:bc:33:01:b1:fa:84:bf:
58:dc:99:2c:71:20:04:e0:ad:8c:dd:f4:ba:be:56:
55:f0:fc:45:fd:f0:b4:1b:82:bf:5b:aa:12:b8:e2:
5e:d7:52:37:dd:27:90:1b:ac:fb:11:8c:42:30:a4:
75:a4:51:d1:07:4b:97:8e:6e:bd:34:94:51:bb:e0:
a5:1d:c9:ca:7e:a1:3b:2d:af:27:f5:15:93:77:8d:
44:b4:b2:1a:10:12:f0:4e:1e:45:f1:e7:b1:cc:b1:
e0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7F:09:C9:86:B6:A0:F9:F6:9C:1C:39:61:3C:34:24:E6:D9:85:A4
X509v3 Authority Key Identifier:
keyid:EF:52:DC:69:20:BD:E0:07:45:06:30:BB:FC:02:16:AD:E4:E0:3F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71LcaSC94AdFBjC7_AIWreTgP2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/27847c-5113-4a4b-a788-764363b13cd2/1/NH8JyYa2oPn2nBw5YTw0JObZhaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/27847c-5113-4a4b-a788-764363b13cd2/1/71LcaSC94AdFBjC7_AIWreTgP2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:6fe0::/32
Signature Algorithm: sha256WithRSAEncryption
a0:35:1a:42:1b:b6:45:48:0e:7a:39:0c:ab:15:95:89:0a:14:
51:e5:ec:f0:a6:f5:16:7e:d4:31:80:41:5c:6d:68:2d:6e:5e:
05:2b:e8:57:1a:b7:1f:50:77:1c:38:5c:03:c3:aa:0b:96:e9:
cb:f1:33:79:d2:05:a0:ee:7a:a9:89:0e:a4:ea:ff:99:10:01:
8e:d4:62:00:e2:82:6e:55:de:da:81:42:8e:51:05:e6:45:0e:
53:d2:63:5d:96:78:d4:92:00:65:b9:80:f2:2f:f9:89:e7:46:
20:cf:0c:55:84:b3:f0:bc:92:b2:da:60:a9:48:b7:d7:db:10:
7c:61:f5:b7:09:de:9d:72:a4:8e:67:f5:7a:c8:f5:1e:d9:b0:
e5:4b:7f:46:55:9e:c5:41:8f:c5:b3:4d:c3:0d:d8:f3:13:8e:
96:64:3d:2b:e7:74:a4:5e:a0:04:72:ab:f9:44:90:ef:e7:64:
de:f7:3b:5f:5f:d2:34:bc:eb:a2:07:02:6b:68:2a:ae:b5:18:
1c:1c:72:fe:da:5f:62:85:c5:ed:91:a1:26:45:4e:f9:68:b6:
9a:8a:a3:c6:d8:45:c8:64:1b:bf:77:41:1d:ea:84:90:f6:ae:
6a:9e:21:cf:db:fe:79:1c:03:3a:77:6e:6d:a3:d9:b6:80:75:
bb:21:11:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:15 2024 by rpki-client on console-fra.rpki-client.org