Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/I9zA8qcgD40w8BvGbx0xIPkgDc0.roa
File: I9zA8qcgD40w8BvGbx0xIPkgDc0.roa (raw, json)
Hash identifier: mfag4qOu0vRRNAbryEJdn+SQfYx2xsMDO1Vpvgbzcsw=
Subject key identifier: 23:DC:C0:F2:A7:20:0F:8D:30:F0:1B:C6:6F:1D:31:20:F9:20:0D:CD
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 01856D8ABB1BA8B44AB978F0FAFCB61717D8
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/I9zA8qcgD40w8BvGbx0xIPkgDc0.roa
Signing time: Sun 01 Jan 2023 13:34:46 +0000
ROA not before: Sun 01 Jan 2023 13:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41996
IP address blocks: 2a0b:b600:3c03::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:bb:1b:a8:b4:4a:b9:78:f0:fa:fc:b6:17:17:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 1 13:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23dcc0f2a7200f8d30f01bc66f1d3120f9200dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b9:a7:e3:5a:6e:a1:d0:24:fa:c6:f5:f5:a5:
35:f9:2b:f1:48:21:3e:d5:68:b4:ba:dc:9f:84:1f:
c4:b7:8a:c8:53:32:d8:e7:58:a6:97:61:b5:dd:97:
9e:94:9b:a9:d9:be:18:45:59:5b:32:b1:3e:32:ba:
cd:0f:02:1b:c1:b4:bf:a7:07:fd:5c:7b:bd:06:71:
5e:48:f2:2b:64:d3:47:38:7d:91:c8:6c:64:87:13:
0f:12:81:c5:52:96:0f:45:25:4f:23:6e:27:10:f9:
54:85:17:e0:3b:92:1a:ce:99:dd:b3:b6:8f:02:6c:
5e:71:1a:61:02:52:04:fd:ba:6b:99:a5:b8:bc:37:
d5:a7:5f:89:b2:73:f1:42:7a:de:5a:c8:29:ef:10:
e4:b3:c3:f1:3e:14:b5:b7:b8:3b:82:30:cb:9d:a5:
74:9b:95:39:f2:41:a6:c5:15:16:7f:17:9d:d0:da:
69:0e:c5:4c:7d:95:f9:2a:dc:f1:11:c1:45:19:09:
ed:c6:33:00:24:07:d9:47:fb:eb:af:72:2f:90:a5:
aa:8e:37:81:1c:cd:2a:c6:fd:bd:40:29:b3:ab:cc:
9f:dc:ca:bb:2a:4e:13:8d:c7:80:cd:e1:3e:95:ec:
d4:e0:c6:27:86:07:2d:7a:e3:e3:06:7c:d4:e4:3c:
c9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DC:C0:F2:A7:20:0F:8D:30:F0:1B:C6:6F:1D:31:20:F9:20:0D:CD
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/I9zA8qcgD40w8BvGbx0xIPkgDc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:3c03::/48
Signature Algorithm: sha256WithRSAEncryption
17:f1:a5:f2:3a:09:77:32:9b:01:5f:32:ec:de:b7:04:24:ab:
b4:2a:fa:31:e6:91:4b:19:76:bc:05:da:72:bf:9c:22:fb:d3:
0c:98:60:19:6b:9c:7c:a7:d6:24:8e:ea:ab:92:37:d5:8a:6e:
ad:5d:77:8c:cc:75:f8:12:02:c2:a5:22:1c:40:01:01:b9:b7:
e9:db:5f:97:b7:db:68:2c:e8:e9:3b:87:5d:64:f5:d7:08:b7:
ca:bd:79:a4:68:52:5c:67:3a:3d:01:75:08:79:5f:f5:62:69:
9e:29:bd:b9:17:50:77:76:a8:32:87:5b:9b:a9:59:66:b2:5c:
a1:82:bc:2d:27:ee:96:b9:77:35:1c:13:91:f3:83:27:a1:1b:
76:b0:10:36:62:1a:92:a9:fc:a5:6e:fb:7a:57:6f:f7:8b:21:
ef:c6:d1:24:86:0a:8c:07:d2:04:bf:72:dc:46:52:1b:cf:1d:
1f:82:23:b9:ed:f0:d5:ce:5a:0c:c8:f3:5e:c8:d0:99:28:c4:
3a:af:f7:01:10:d6:ce:04:73:1f:b9:1f:b9:d0:8e:25:59:18:
15:ef:2b:65:c9:8a:a2:dd:b6:9c:ef:be:6a:da:aa:98:d3:73:
f2:56:0d:cb:3b:c0:1e:38:ca:2a:7b:d6:54:ae:89:2d:57:72:
08:92:9c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:25 2024 by rpki-client on console-ams.rpki-client.org