Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/i-2d7V4TbAg4tkcuVuVyqr5sKL4.roa
File: i-2d7V4TbAg4tkcuVuVyqr5sKL4.roa (raw, json)
Hash identifier: SAUkorfRjQHlYKgZ7mf9UIxC9gfo5Mm4vOMgR7Q8Twc=
Subject key identifier: 8B:ED:9D:ED:5E:13:6C:08:38:B6:47:2E:56:E5:72:AA:BE:6C:28:BE
Certificate issuer: /CN=93a229e266b2558899f3547ee63d84ed6594768b
Certificate serial: 018E09C7512243EFCCC0FBF5AC1F0F7B44CC
Authority key identifier: 93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/i-2d7V4TbAg4tkcuVuVyqr5sKL4.roa
Signing time: Mon 04 Mar 2024 14:04:00 +0000
ROA not before: Mon 04 Mar 2024 14:04:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200508
IP address blocks: 2a03:94e0:2101::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Apr 2024 08:39:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:c7:51:22:43:ef:cc:c0:fb:f5:ac:1f:0f:7b:44:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a229e266b2558899f3547ee63d84ed6594768b
Validity
Not Before: Mar 4 14:04:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bed9ded5e136c0838b6472e56e572aabe6c28be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:77:3e:4e:f9:fe:6e:2a:1a:26:d1:aa:75:
46:f6:6d:39:04:89:4c:53:8b:c7:fa:e4:c1:0e:52:
79:a5:9d:c1:81:f5:0c:67:91:c0:5a:34:2c:9c:03:
de:99:48:5f:61:e8:1f:64:e3:56:ff:ba:6a:e5:a6:
2d:3b:28:42:1e:f6:9e:eb:32:2f:de:02:71:5e:62:
50:c6:fe:04:68:59:ea:41:d9:6d:a8:50:e8:9b:6e:
b2:6a:49:05:67:e5:9f:3d:98:c1:3a:d9:0e:dd:05:
5e:d7:aa:10:d3:1d:4a:b5:82:b9:1f:cf:69:c2:69:
e7:02:f2:73:0b:88:ec:54:4f:4a:e5:4c:5c:06:4b:
f4:c4:e1:9b:02:fc:ef:91:2e:8a:43:f4:4c:f1:82:
6a:ea:e7:fd:bb:4c:4a:fa:9c:d9:b0:47:23:45:b5:
c4:af:2c:06:87:f5:71:69:e1:38:2a:ae:f6:9a:71:
61:ff:d8:f0:b5:3a:79:5f:5c:c8:70:d7:e5:ec:60:
f8:90:e4:d0:76:91:ce:34:7b:64:93:f6:c0:ba:44:
61:da:ad:44:f2:59:a2:8f:f4:39:9d:95:27:a3:0f:
13:3e:42:9f:d3:54:ce:2f:85:d5:60:6f:f7:f3:f4:
52:0b:8b:df:1a:5b:4e:ba:18:10:4d:9b:27:c3:15:
7f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:ED:9D:ED:5E:13:6C:08:38:B6:47:2E:56:E5:72:AA:BE:6C:28:BE
X509v3 Authority Key Identifier:
keyid:93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/i-2d7V4TbAg4tkcuVuVyqr5sKL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:94e0:2101::/48
Signature Algorithm: sha256WithRSAEncryption
29:e1:d3:9b:50:87:09:6e:fd:12:2c:0c:1c:65:fe:64:7c:da:
e1:34:80:6a:8a:60:70:bf:cb:4c:27:0e:63:7c:37:02:b9:2b:
1f:e3:bb:50:ac:66:3e:e8:2e:70:77:33:7d:74:63:1e:60:ef:
65:f3:ab:54:67:15:c8:81:d4:2b:74:27:02:f5:ab:13:9a:9a:
f1:49:e9:51:59:d2:9b:07:28:5f:32:c5:ae:10:fb:d5:c8:38:
d4:b6:83:4e:a3:1b:4d:72:cb:9a:13:6d:a7:d2:be:19:2a:eb:
26:b6:36:6a:90:35:3b:ba:12:02:66:4a:75:7b:4c:a4:57:5d:
7d:01:f3:75:4d:70:c8:b4:db:d3:70:b9:1f:df:9f:18:44:48:
f6:09:7a:ac:9a:ae:03:1a:03:dc:91:7f:13:17:1b:83:a8:fc:
6d:f0:3b:c3:2a:80:62:eb:38:23:fd:9f:77:69:1e:ff:7a:9a:
8c:99:2b:53:21:1b:f9:b8:de:31:b2:21:a7:fc:5a:30:3f:4e:
4f:f3:1a:96:ed:4d:03:22:3a:39:8b:a0:98:21:4b:f6:bd:3d:
69:47:68:e9:4c:d2:be:09:01:1b:83:af:29:9b:0e:2e:fa:af:
fd:b0:7f:55:c9:7c:fb:c0:0a:61:22:c3:40:db:84:f5:a9:c0:
c1:fa:71:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:21 2024 by rpki-client on console-fra.rpki-client.org