Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/dBZ9sMwX95cXdZnBiX6X0RoNQ1M.roa
File: dBZ9sMwX95cXdZnBiX6X0RoNQ1M.roa (raw, json)
Hash identifier: euD0EYJL5n5ibXHBBZqAEQVuAtbfTauWxZuUwTsuraI=
Subject key identifier: 74:16:7D:B0:CC:17:F7:97:17:75:99:C1:89:7E:97:D1:1A:0D:43:53
Certificate issuer: /CN=1b982883e1dfbf4633e08c0b58c85e89ffc32101
Certificate serial: 018B0FD38B144C69082DFE0F7CE8105DB0B8
Authority key identifier: 1B:98:28:83:E1:DF:BF:46:33:E0:8C:0B:58:C8:5E:89:FF:C3:21:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/dBZ9sMwX95cXdZnBiX6X0RoNQ1M.roa
Signing time: Sun 08 Oct 2023 15:06:43 +0000
ROA not before: Sun 08 Oct 2023 15:06:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42244
IP address blocks: 2a04:b540:2000::/36 maxlen: 36
2a04:b540:1000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0f:d3:8b:14:4c:69:08:2d:fe:0f:7c:e8:10:5d:b0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b982883e1dfbf4633e08c0b58c85e89ffc32101
Validity
Not Before: Oct 8 15:06:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74167db0cc17f797177599c1897e97d11a0d4353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a3:43:1a:8a:8f:97:39:a1:33:a4:60:84:fe:
b3:aa:de:1a:b4:f9:ab:e7:4c:17:51:75:8a:dd:33:
90:cc:70:5d:24:81:a2:06:7d:63:d3:85:f6:8c:db:
e5:81:a0:6c:85:f4:de:27:18:70:4a:c6:e5:45:08:
65:bc:d7:14:18:de:b3:34:19:4c:d7:c5:ee:b3:80:
ab:6e:b1:9f:4b:bf:97:e0:ab:75:ae:63:51:64:9d:
50:29:45:48:0a:ea:b7:2e:4d:08:2a:a6:0f:f9:72:
fd:a7:82:82:64:1a:1e:0b:88:02:ca:d6:32:5d:77:
b3:20:c2:05:28:7a:9a:48:6e:3d:25:1a:79:47:bd:
6d:c3:9e:87:94:78:54:69:5b:e6:e1:3e:ac:66:1f:
f6:b8:6d:a2:bb:d8:20:0f:51:d7:a7:fe:b0:0e:3c:
1d:12:46:df:4e:9d:57:9f:bc:96:2c:58:38:6f:d5:
86:30:f7:47:e1:37:95:8e:d7:ed:c4:8c:da:08:9c:
bc:13:81:8c:02:df:48:46:6b:ba:42:7b:70:8a:e8:
1a:f0:b1:cc:0b:6f:ef:23:ef:12:1e:4e:1a:b4:31:
d8:19:3d:32:ff:08:7f:a7:67:d1:58:9f:03:55:ca:
26:c8:c6:e9:2f:04:8f:3d:ac:60:37:aa:ed:e5:54:
c1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:16:7D:B0:CC:17:F7:97:17:75:99:C1:89:7E:97:D1:1A:0D:43:53
X509v3 Authority Key Identifier:
keyid:1B:98:28:83:E1:DF:BF:46:33:E0:8C:0B:58:C8:5E:89:FF:C3:21:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/dBZ9sMwX95cXdZnBiX6X0RoNQ1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/G5gog-Hfv0Yz4IwLWMheif_DIQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:b540:1000::-2a04:b540:2fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b6:df:1d:27:ea:a0:e8:5e:56:55:e7:9b:86:6a:38:2a:e4:7a:
e3:b0:fe:bf:71:83:be:d1:9a:65:b4:4e:38:a9:7e:28:26:68:
a2:40:ec:61:92:b0:8a:7d:85:e6:79:cc:55:14:06:96:7f:e6:
d5:ed:2b:a9:11:d9:37:0d:df:34:8e:56:6a:ec:16:3d:4e:26:
5c:df:21:bf:f6:7e:d7:e9:4c:8d:41:73:dd:ba:7b:f3:af:04:
a2:1d:a7:3a:5a:30:48:a9:90:30:af:42:1e:cc:e0:9b:ba:09:
da:8d:86:9d:b2:55:43:0c:a4:17:1b:a4:25:e2:f9:ef:e9:a1:
12:c3:f4:07:e3:59:52:65:4c:42:a9:31:cc:89:4c:f3:f0:ca:
ed:5d:38:04:af:5b:fa:7e:cd:8b:8d:1b:aa:ce:a3:35:a7:55:
45:d1:dd:d0:43:06:3b:36:3b:6e:27:f7:6a:ec:8a:45:43:39:
43:ff:e1:e5:44:bf:b2:50:1c:11:bb:9c:2a:54:2c:50:4c:ed:
a9:df:30:8b:a5:d1:73:ee:f8:8f:4c:13:df:a2:d4:e4:19:e8:
46:f3:cb:9b:09:c5:14:c3:7a:e4:12:1a:4d:71:dc:db:d6:c4:
f1:79:e8:76:12:32:c2:2e:26:d5:60:f7:92:18:2b:5f:f7:2b:
ba:6e:54:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:02 2024 by rpki-client on console-fra.rpki-client.org