Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/uRmwgzEocRPmkIlrJR0Lzb-fM7M.roa
File: uRmwgzEocRPmkIlrJR0Lzb-fM7M.roa (raw, json)
Hash identifier: ahGSQqq1YMGzuQUhkSk659BBAVesadTAmmZZKTzGprc=
Subject key identifier: B9:19:B0:83:31:28:71:13:E6:90:89:6B:25:1D:0B:CD:BF:9F:33:B3
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE6774CDB015E6EA347846435BB30D2
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/uRmwgzEocRPmkIlrJR0Lzb-fM7M.roa
Signing time: Sun 01 Jan 2023 10:35:21 +0000
ROA not before: Sun 01 Jan 2023 10:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211526
IP address blocks: 2a01:5a8:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:77:4c:db:01:5e:6e:a3:47:84:64:35:bb:30:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b919b08331287113e690896b251d0bcdbf9f33b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:f0:e4:d9:fa:8d:78:a2:ef:9a:5c:40:05:
3a:2b:5c:03:97:54:76:22:1f:e1:f2:f6:8e:46:55:
44:db:01:db:97:f7:d8:d2:19:22:97:e1:3c:0c:ca:
1c:85:fb:19:b2:11:21:db:6e:27:94:c8:ff:76:a0:
12:0c:86:6c:15:d8:5e:04:bf:f5:ae:d3:43:43:7c:
94:a2:93:e1:10:92:7b:1b:1b:fd:b9:9f:a3:45:f3:
ab:6e:12:e3:e2:7e:79:2a:a4:cf:4e:3b:6a:cc:6d:
51:b7:d7:59:9c:d5:bb:b2:48:1b:06:31:6e:71:c6:
5a:89:11:f4:6d:a6:3d:0d:9d:21:5c:97:3c:9c:0e:
cf:b2:41:11:d7:d2:bb:da:f8:8f:77:5d:ec:28:d0:
1d:97:b4:9a:1d:8d:82:83:e7:c5:4c:ed:32:56:34:
d4:6a:e9:0e:78:71:59:74:7d:bd:ef:7f:81:b6:8a:
45:fd:83:52:13:3e:09:77:cb:e9:0d:a9:aa:6f:55:
87:06:0f:7b:e0:b5:c1:d1:15:c7:6a:dc:df:cc:3d:
ad:7d:e1:50:a4:7e:2d:b7:bc:9a:08:bb:1a:3d:f6:
6b:23:12:e5:80:32:5a:e8:f0:76:fc:78:66:b8:16:
c9:11:6c:42:dc:75:de:3f:78:da:fa:83:66:f2:e6:
ad:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:19:B0:83:31:28:71:13:E6:90:89:6B:25:1D:0B:CD:BF:9F:33:B3
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/uRmwgzEocRPmkIlrJR0Lzb-fM7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:5a8:8::/48
Signature Algorithm: sha256WithRSAEncryption
08:43:a7:dd:33:3e:7a:2c:fd:81:20:5e:34:d2:9d:9b:f7:3a:
16:be:52:82:65:48:56:21:a3:03:28:39:36:09:68:7b:fc:96:
d1:9d:3b:44:b5:ba:2c:38:b0:41:0a:43:06:78:48:64:7c:ff:
5f:7d:4a:83:bc:35:00:8d:37:2c:73:fb:91:84:77:aa:91:01:
08:4e:e0:b2:ba:d3:d5:45:7a:67:6f:79:0b:69:d7:ef:57:5f:
2d:35:5b:dd:eb:74:29:ed:8c:09:5e:db:f8:38:6b:d3:d9:ee:
04:48:8d:38:26:15:4c:76:b4:a7:d0:16:8b:79:ff:f7:7a:a4:
63:f7:b8:c6:96:10:1b:6f:6c:b8:b2:37:90:b2:0e:16:f9:3a:
d5:1c:ec:65:63:54:29:b2:13:3b:5d:0c:8c:56:dd:95:e1:97:
74:78:1e:0d:f0:a8:a7:3a:12:eb:52:33:a2:37:a7:4c:c4:f2:
61:d6:de:3a:68:a8:1a:d3:88:3f:02:47:1d:ef:01:73:0f:28:
b1:c6:37:f0:22:0a:d4:5d:63:b5:95:62:cd:95:14:a9:ca:ef:
ee:3e:bd:67:a1:4c:f5:67:bf:50:3c:38:75:53:cd:24:00:68:
bf:1f:34:6d:79:87:18:90:b2:f1:ba:12:82:1a:45:ec:48:23:
18:61:6a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org