Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/96Ml576wARHeHSkh5AxhZeKW-9g.roa
File: 96Ml576wARHeHSkh5AxhZeKW-9g.roa (raw, json)
Hash identifier: YPaqFGcEfS+fKHltPZnM5M8djItKvxqQAIx0ZEWfMso=
Subject key identifier: F7:A3:25:E7:BE:B0:01:11:DE:1D:29:21:E4:0C:61:65:E2:96:FB:D8
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018C6E53F9B205BA6FD9726C1D39D6B4332E
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/96Ml576wARHeHSkh5AxhZeKW-9g.roa
Signing time: Fri 15 Dec 2023 16:34:06 +0000
ROA not before: Fri 15 Dec 2023 16:34:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149476
IP address blocks: 2a0c:9a40:9c00::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6e:53:f9:b2:05:ba:6f:d9:72:6c:1d:39:d6:b4:33:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 15 16:34:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7a325e7beb00111de1d2921e40c6165e296fbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:61:32:37:33:b4:85:43:58:46:93:6a:08:96:
6d:0c:09:9c:df:6c:98:45:b5:b6:a3:f9:7e:c8:05:
36:83:31:de:63:be:fc:6b:ae:6c:74:07:15:d4:5c:
02:e3:b5:2f:38:a1:ee:06:b4:be:3a:32:30:e8:f4:
cd:09:0a:30:49:cc:fe:08:19:d9:62:39:f0:07:b6:
f0:47:ba:42:aa:b8:b7:a4:57:1b:fd:bc:cc:dc:3b:
73:9d:9d:df:f0:03:6f:d0:d5:38:b5:96:54:c3:76:
fb:f0:c3:89:8e:a8:ac:40:f4:a8:81:ea:8a:db:dd:
94:f4:f4:80:53:4a:98:f8:e0:2e:9e:2f:3f:f0:0c:
5e:33:04:6a:00:e0:fe:e9:3f:f3:c5:f3:ae:e0:3a:
2a:35:bd:7b:bc:be:cc:c2:a2:f7:1c:8b:a3:e5:3e:
1f:07:c1:28:db:53:d8:ab:1d:6b:c8:23:f5:54:f4:
91:45:b1:53:6a:45:bf:a9:f0:b0:e7:e0:dd:72:42:
92:4b:66:92:7a:c8:53:d8:8c:ae:cd:d0:80:6d:5b:
c6:4b:d6:76:32:10:1b:0d:cf:e1:2d:8f:4b:79:05:
d8:33:35:bd:b9:be:f5:0f:e4:43:06:06:46:40:c7:
2b:ab:47:7c:74:92:9b:d9:97:b0:93:ed:59:a7:a7:
f8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A3:25:E7:BE:B0:01:11:DE:1D:29:21:E4:0C:61:65:E2:96:FB:D8
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/96Ml576wARHeHSkh5AxhZeKW-9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9c00::/40
Signature Algorithm: sha256WithRSAEncryption
22:32:b2:6f:8a:0b:c3:1d:13:57:f1:97:75:c1:0b:76:37:9a:
c3:ba:26:49:ea:75:11:c9:6d:93:46:ad:52:e2:44:e4:3d:e3:
06:12:5f:ce:a7:14:ca:2c:02:30:47:7d:d4:44:d7:48:1c:eb:
f6:f1:43:a2:11:c5:9c:f5:b2:9b:28:31:4e:3f:27:ce:83:fc:
9d:51:ad:35:90:06:26:c2:6f:3f:36:37:33:b8:ec:a1:e1:10:
d7:0f:6d:6a:4f:a8:00:57:b4:bd:44:96:a1:69:d7:02:80:69:
7e:f8:1a:aa:8d:59:db:5a:3d:ed:53:b2:75:eb:9d:88:d0:1a:
0f:c4:29:73:19:32:52:e3:bb:fa:84:34:6c:ec:9e:53:97:04:
9f:78:38:50:a3:1c:17:39:f3:f6:9c:4a:eb:23:8f:79:be:15:
8e:f1:b6:4b:40:3d:eb:26:57:e2:d8:d4:ff:d5:0f:b2:dd:e2:
3c:7a:09:80:76:e1:36:8a:6c:64:ea:16:a6:26:40:73:63:87:
1a:6e:8c:87:d8:c2:0c:d2:46:95:7a:5a:c5:0c:4d:89:f9:52:
83:5b:0a:48:94:df:90:a3:8d:a3:53:d8:3e:90:d9:a3:bb:47:
a6:4f:24:50:fd:f2:12:3d:dc:89:8e:11:73:95:f0:28:01:bd:
62:59:c1:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:49 2024 by rpki-client on console-fra.rpki-client.org