Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/I7rxIGPNsKgv5OtRk-MQBsrnVCs.roa
File: I7rxIGPNsKgv5OtRk-MQBsrnVCs.roa (raw, json)
Hash identifier: Ggct+g+LFdscI37nACk9E45GntDvpAPIXvl1hkQyb88=
Subject key identifier: 23:BA:F1:20:63:CD:B0:A8:2F:E4:EB:51:93:E3:10:06:CA:E7:54:2B
Certificate issuer: /CN=e4cc76e3b5477ffd42a0fe4b8c783aad2f96fe70
Certificate serial: 0187176F0FFE37A808D47954CFA25A9B5D4C
Authority key identifier: E4:CC:76:E3:B5:47:7F:FD:42:A0:FE:4B:8C:78:3A:AD:2F:96:FE:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mx247VHf_1CoP5LjHg6rS-W_nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/I7rxIGPNsKgv5OtRk-MQBsrnVCs.roa
Signing time: Sat 25 Mar 2023 06:22:47 +0000
ROA not before: Sat 25 Mar 2023 06:22:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 2a0b:9080:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:17:6f:0f:fe:37:a8:08:d4:79:54:cf:a2:5a:9b:5d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4cc76e3b5477ffd42a0fe4b8c783aad2f96fe70
Validity
Not Before: Mar 25 06:22:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23baf12063cdb0a82fe4eb5193e31006cae7542b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fc:b6:b9:fd:a5:9b:43:65:b9:0f:fe:ec:34:
29:ed:80:75:29:e8:bc:b7:31:ee:50:b3:72:0b:19:
48:bb:db:47:88:62:23:7f:7b:b8:81:c4:ff:c2:be:
5e:ee:49:7d:fb:a7:2f:78:b4:cc:d4:62:f9:87:fc:
53:73:53:b9:6a:7a:0f:fb:a1:9b:52:c3:4a:38:59:
7b:49:1f:a4:fe:68:32:3a:46:40:29:01:e8:60:4a:
30:b6:6d:6a:ec:48:60:7a:c3:92:d3:d6:d3:41:e6:
b8:e1:08:95:f6:78:51:55:01:2d:0b:2f:7f:8f:31:
5e:88:d5:f2:0e:2e:bc:eb:ca:6d:59:0c:68:86:70:
2f:30:61:f8:e3:ec:03:65:71:a3:b5:48:40:05:9f:
9b:0b:5f:5b:5b:55:80:97:cc:6a:2b:d3:af:55:00:
77:c3:b5:0f:9e:8f:d1:42:b7:3b:47:1e:d5:11:bc:
5d:24:89:62:20:09:b3:0e:10:9a:db:79:49:9a:8d:
ad:ab:ea:34:1c:01:f2:d7:fe:22:01:3a:31:00:7e:
3d:5f:ce:63:5f:ba:a8:ec:1a:d4:f9:ae:65:34:35:
ed:09:72:86:2a:02:aa:2e:95:b4:2b:0c:0f:41:13:
49:6c:1b:b3:1d:37:7d:d5:9b:1c:b7:34:3c:b1:6f:
1a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BA:F1:20:63:CD:B0:A8:2F:E4:EB:51:93:E3:10:06:CA:E7:54:2B
X509v3 Authority Key Identifier:
keyid:E4:CC:76:E3:B5:47:7F:FD:42:A0:FE:4B:8C:78:3A:AD:2F:96:FE:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mx247VHf_1CoP5LjHg6rS-W_nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/I7rxIGPNsKgv5OtRk-MQBsrnVCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/5f8881-8a44-4842-8009-1165d1d1564f/1/5Mx247VHf_1CoP5LjHg6rS-W_nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:9080:3::/48
Signature Algorithm: sha256WithRSAEncryption
50:fe:86:b3:25:c0:bb:93:b3:b7:1a:d3:1d:c1:25:e3:58:aa:
4d:71:2d:be:94:3c:48:2d:a1:a4:76:38:70:38:13:93:00:a5:
29:62:86:9f:23:91:3e:72:f8:8d:bf:e3:44:34:f5:f6:74:25:
8f:4c:59:21:8a:c4:b3:2c:85:99:e3:ab:20:a2:9f:99:29:b4:
06:f0:60:a0:8e:83:54:61:dd:ca:10:1a:1f:84:26:99:ce:b3:
4a:1f:2f:fc:af:84:f1:fc:5b:9c:8c:54:59:88:c3:c3:2e:18:
c6:df:14:59:78:4e:2c:bf:a8:bc:8e:92:2e:81:4d:26:6a:ae:
d7:c4:e8:10:fb:96:10:f9:b0:fd:e7:3c:38:63:6e:f6:ba:5e:
d7:18:82:46:ba:91:9c:94:ad:ff:7d:dc:58:8f:31:7d:87:f1:
3d:4e:75:5c:6c:64:a1:65:f7:8f:36:dd:ea:d8:8c:6f:97:1b:
e2:54:46:e9:2d:7e:ad:9c:52:32:a9:da:1c:2c:27:a8:8a:10:
e2:77:62:59:c7:ec:e4:32:c5:07:a5:81:01:0c:5d:8e:f6:96:
a1:fd:bb:0b:6a:de:0a:84:13:95:74:9a:cd:7d:e6:98:8e:80:
f1:81:d9:70:90:b8:7c:53:b9:cc:cd:18:e8:1b:b4:69:cb:cc:
be:5d:57:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:43 2024 by rpki-client on console-ams.rpki-client.org