Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/JAHJAswKSw4DDfaOhdDc7ptVarw.roa
File: JAHJAswKSw4DDfaOhdDc7ptVarw.roa (raw, json)
Hash identifier: r8VnHjR1hzNL+QSa+FJJO5ELQXwFylQtvz+qKQ6gpzY=
Subject key identifier: 24:01:C9:02:CC:0A:4B:0E:03:0D:F6:8E:85:D0:DC:EE:9B:55:6A:BC
Certificate issuer: /CN=a76b7b9f7fd66943927c60dcf1212ddc07df0523
Certificate serial: 018CC8DCC8A2BD2E15792FC01EA4DFC36820
Authority key identifier: A7:6B:7B:9F:7F:D6:69:43:92:7C:60:DC:F1:21:2D:DC:07:DF:05:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2t7n3_WaUOSfGDc8SEt3AffBSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/JAHJAswKSw4DDfaOhdDc7ptVarw.roa
Signing time: Tue 02 Jan 2024 06:29:21 +0000
ROA not before: Tue 02 Jan 2024 06:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59441
IP address blocks: 2a11:1dc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Wed 14 Feb 2024 08:37:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:c8:a2:bd:2e:15:79:2f:c0:1e:a4:df:c3:68:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76b7b9f7fd66943927c60dcf1212ddc07df0523
Validity
Not Before: Jan 2 06:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2401c902cc0a4b0e030df68e85d0dcee9b556abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:74:4d:19:02:39:dc:a6:5a:ea:d0:22:01:
4e:5f:fb:df:7b:6c:71:f8:00:47:3d:fd:9b:2a:4c:
aa:09:52:73:b2:05:7f:e4:45:34:ae:e3:fb:3f:cc:
3d:5c:ff:59:bd:d2:ed:64:0f:8f:c3:28:5c:dd:a3:
bd:19:76:b6:83:81:b8:0f:6e:65:f1:f8:4a:a9:bb:
a6:a8:8f:00:83:d7:1a:91:0d:07:0a:12:a7:4d:51:
06:c5:88:99:0e:7a:80:e2:cb:5e:c1:1f:6e:4b:35:
d7:11:30:8d:5a:71:29:c1:d4:f7:c0:f5:05:e2:bf:
f7:cb:6f:12:0d:11:89:9c:27:5e:32:07:df:28:87:
2a:fc:43:7b:85:b3:12:66:81:c0:04:09:f2:6d:56:
fd:18:a9:54:9d:d2:83:70:51:21:30:84:f7:3d:d2:
4f:8c:04:dd:10:91:25:85:f0:98:2b:1a:93:a8:6e:
a6:f3:4b:42:86:e9:0b:5f:4a:60:24:d6:30:30:6c:
77:11:0e:1d:73:2d:d3:b1:25:f3:f3:2b:33:59:12:
03:da:e0:7f:7b:db:49:2d:2e:9f:78:71:e2:e0:4b:
fb:d9:f7:da:69:4b:44:03:68:0a:e6:2b:1e:e6:23:
7d:89:13:eb:40:5c:37:cc:41:e6:f3:ce:aa:9f:89:
86:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:01:C9:02:CC:0A:4B:0E:03:0D:F6:8E:85:D0:DC:EE:9B:55:6A:BC
X509v3 Authority Key Identifier:
keyid:A7:6B:7B:9F:7F:D6:69:43:92:7C:60:DC:F1:21:2D:DC:07:DF:05:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2t7n3_WaUOSfGDc8SEt3AffBSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/JAHJAswKSw4DDfaOhdDc7ptVarw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/985be9-9781-4fda-b7f3-0df07a908fbf/1/p2t7n3_WaUOSfGDc8SEt3AffBSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:1dc0::/29
Signature Algorithm: sha256WithRSAEncryption
69:f8:0f:4f:f9:b5:5c:84:87:57:c8:a6:bb:24:40:f0:1c:49:
02:6c:01:17:c6:6e:9b:1a:56:85:15:d0:88:e6:ad:ab:63:3c:
7c:ac:94:55:3e:b0:9d:db:15:f9:37:d9:ce:17:65:3a:96:9e:
87:16:e7:96:05:bb:4f:21:88:bd:21:11:f4:19:41:45:4e:f1:
35:3b:45:0a:a1:aa:38:b4:9a:65:1d:ef:26:8a:98:6e:68:c8:
dc:15:06:01:a3:f9:00:7e:b8:83:b0:44:0e:8b:c4:ce:b7:a8:
e5:9a:a1:c5:ec:91:6d:22:59:f7:cd:ce:e4:19:e5:ee:ca:91:
07:e2:93:7c:1a:61:49:ff:e7:48:c4:67:75:5f:cb:8b:dc:06:
82:c4:ad:9b:b5:75:a9:d4:8a:04:b1:53:e8:38:52:23:e1:40:
09:ba:fa:82:8f:61:a3:54:5b:5d:fd:7d:a8:c4:c5:8f:8a:df:
bc:57:57:3a:db:70:52:ce:fc:af:9a:8b:45:d8:02:18:42:c8:
90:90:e4:40:2e:48:92:db:61:19:6d:3b:69:ea:8b:d1:11:b6:
03:96:42:cc:fc:9f:b8:05:5b:1f:2b:e6:21:8c:a1:42:5f:a5:
d0:c7:7c:b4:20:a7:86:b2:d6:7a:af:5d:6c:65:46:a2:a5:19:
4a:a3:26:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-fra.rpki-client.org