Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/uE9wjWMibUZrsRG8GLILMPArIC4.roa
File: uE9wjWMibUZrsRG8GLILMPArIC4.roa (raw, json)
Hash identifier: 3TnicqgjluIRI4sPh9hMoT1hStewwfqTyB86hUbUDKY=
Subject key identifier: B8:4F:70:8D:63:22:6D:46:6B:B1:11:BC:18:B2:0B:30:F0:2B:20:2E
Certificate issuer: /CN=df8f961c6efbb7f9ce74217b1d5dbb54e981c6f2
Certificate serial: 01870415C2A254504E675C07A9F1A9CC8C3C
Authority key identifier: DF:8F:96:1C:6E:FB:B7:F9:CE:74:21:7B:1D:5D:BB:54:E9:81:C6:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/uE9wjWMibUZrsRG8GLILMPArIC4.roa
Signing time: Tue 21 Mar 2023 12:12:27 +0000
ROA not before: Tue 21 Mar 2023 12:12:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398781
IP address blocks: 2a09:77c0::/30 maxlen: 32
2a09:77c4::/30 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Aug 2023 10:19:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:04:15:c2:a2:54:50:4e:67:5c:07:a9:f1:a9:cc:8c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df8f961c6efbb7f9ce74217b1d5dbb54e981c6f2
Validity
Not Before: Mar 21 12:12:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b84f708d63226d466bb111bc18b20b30f02b202e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:10:3a:b1:f1:ac:87:ed:9c:60:0a:86:27:f6:
33:6e:2e:8e:89:55:c8:c2:b1:84:b0:af:93:f4:c6:
1b:2e:69:67:9a:f3:e4:3f:d7:c8:40:d7:73:68:39:
ed:cf:6b:95:10:6b:28:16:3a:70:c5:42:fe:02:d6:
65:7c:02:a8:95:5d:af:c2:ab:a2:8c:02:84:80:48:
b5:07:00:6c:ed:c4:a7:03:e6:fb:ff:3f:6d:fd:45:
ab:95:8d:ab:da:55:a9:c3:db:01:b5:56:45:c5:b5:
af:7b:05:e6:9f:e8:b0:f6:cb:10:1d:27:be:4f:79:
10:ba:3c:34:8f:95:34:37:a2:a2:a5:a2:da:f0:39:
d1:f6:a2:66:6f:0c:cd:fd:ae:ed:31:09:3d:14:c6:
eb:2b:82:b3:3c:d1:3e:dc:68:b4:65:fe:60:ab:cb:
12:53:6e:89:bc:ae:c1:b5:5e:1b:70:5a:2c:be:97:
41:09:af:6f:64:1a:39:15:4b:3b:ee:14:f1:d4:38:
5c:72:0f:9c:e1:53:4e:4f:e0:df:0b:08:17:0b:c0:
dd:f3:68:ff:c0:ff:36:83:39:8f:a5:5e:a3:f6:74:
d9:52:8a:04:59:30:a3:4a:6d:36:6c:18:7a:ed:6e:
aa:10:c5:82:8a:03:89:1d:42:5f:de:d1:be:8c:cc:
58:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4F:70:8D:63:22:6D:46:6B:B1:11:BC:18:B2:0B:30:F0:2B:20:2E
X509v3 Authority Key Identifier:
keyid:DF:8F:96:1C:6E:FB:B7:F9:CE:74:21:7B:1D:5D:BB:54:E9:81:C6:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/uE9wjWMibUZrsRG8GLILMPArIC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/34-WHG77t_nOdCF7HV27VOmBxvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:77c0::/29
Signature Algorithm: sha256WithRSAEncryption
37:8d:69:30:3a:c6:fa:d4:b7:54:a1:34:8f:fe:3d:13:93:40:
47:98:13:89:0c:7d:86:de:ef:7a:c9:6e:4b:be:75:de:88:93:
12:92:4d:a0:b3:00:08:ec:c1:51:9a:c6:11:d2:31:ac:10:06:
42:b9:00:6c:15:51:b4:6b:41:7a:1b:e6:f0:56:07:19:74:03:
cc:79:4a:db:85:26:2e:bc:52:19:03:b9:15:d8:7e:9d:c6:ad:
66:cb:fb:bc:c6:bb:8d:60:d0:b8:b3:b5:c0:24:86:7d:11:5b:
b1:86:05:e2:9f:80:7f:88:9f:ac:80:17:12:11:d6:66:ca:d2:
8b:e4:46:08:cd:56:57:3a:0e:3b:51:44:38:18:e8:1d:b4:ad:
b3:94:c9:ae:b0:45:37:3a:a8:53:be:14:35:ae:ce:16:06:24:
fa:20:e5:e6:cc:1f:5b:9c:f2:48:b3:60:6b:6a:59:26:cc:bd:
0f:a2:1a:5a:64:f7:dd:94:56:d0:3c:8d:c2:a1:11:51:ad:eb:
0d:7b:36:8b:b6:83:a2:a5:93:a8:c3:8c:5e:e2:dc:d6:b9:e2:
28:60:75:2a:5f:b9:6c:69:06:0c:6c:ba:c7:6a:41:6a:50:22:
01:d2:4d:f9:66:f5:b5:a1:16:c5:ac:e0:ce:13:5b:65:76:fc:
9f:47:83:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org