Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JAaJnn3x0TWt70GngAu6_ES0Tpk.roa
File: JAaJnn3x0TWt70GngAu6_ES0Tpk.roa (raw, json)
Hash identifier: /FuqMdQxIctT5UFcAHoMoctvTp0FBzeF+SOAKsM5bHA=
Subject key identifier: 24:06:89:9E:7D:F1:D1:35:AD:EF:41:A7:80:0B:BA:FC:44:B4:4E:99
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0188D7EB0852DD0D24FA62DB9DAF4045E69B
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JAaJnn3x0TWt70GngAu6_ES0Tpk.roa
Signing time: Tue 20 Jun 2023 08:28:04 +0000
ROA not before: Tue 20 Jun 2023 08:28:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210445
IP address blocks: 2a0c:9a40:821a::/48 maxlen: 48
2a0c:9a40:9300::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d7:eb:08:52:dd:0d:24:fa:62:db:9d:af:40:45:e6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jun 20 08:28:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2406899e7df1d135adef41a7800bbafc44b44e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c3:45:83:41:b8:6b:98:b5:f7:3e:66:3c:c5:
3e:7c:1c:a9:4e:c9:be:4a:d6:62:98:44:29:82:86:
bf:6c:9d:ce:25:4b:4a:b0:94:2e:58:76:b7:29:09:
19:a5:c7:56:53:f9:6d:f7:77:39:77:12:71:8f:f7:
46:23:7c:91:5e:84:5c:46:ab:3d:07:e1:a4:77:1c:
af:65:ef:83:ab:b7:f5:a9:a4:22:4b:22:e1:61:87:
21:0a:c6:10:34:ff:13:73:ea:b4:81:fb:55:19:69:
ed:cc:7b:b7:e3:8b:38:0b:bb:9e:aa:28:2d:25:9d:
08:4c:4d:8c:29:b8:cb:40:c0:13:fb:38:ed:d8:15:
69:ed:92:15:ea:20:61:9a:c5:f1:fe:54:81:53:c9:
56:8d:c2:c4:4e:a2:7b:7c:82:6c:2e:9d:1d:68:94:
d0:a8:4f:c4:f2:ee:aa:81:89:f7:25:82:53:b1:54:
ef:8f:8d:43:cd:0c:55:10:a8:9a:55:b3:b3:b9:5a:
df:1d:27:9b:ab:8d:f3:de:a5:87:20:06:2a:a9:32:
7b:e1:3c:62:67:c8:48:ce:a3:cf:26:28:7c:bb:20:
67:12:fd:88:68:e9:3a:ed:62:61:c1:c3:3a:ab:cf:
23:ac:af:8e:85:0e:8b:2b:d8:5a:0d:20:fb:ab:b7:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:06:89:9E:7D:F1:D1:35:AD:EF:41:A7:80:0B:BA:FC:44:B4:4E:99
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/JAaJnn3x0TWt70GngAu6_ES0Tpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:821a::/48
2a0c:9a40:9300::/40
Signature Algorithm: sha256WithRSAEncryption
20:8f:57:40:4e:3f:73:74:22:6c:2c:36:96:1e:62:6e:5e:a1:
68:8c:a5:d5:73:d0:8b:9e:79:ae:ce:cc:7c:7e:ff:59:c4:16:
32:6e:4e:17:63:2b:58:2a:57:32:3b:a2:4b:50:87:6f:e0:49:
7e:7b:40:9d:2e:da:84:40:eb:3e:b4:5e:b6:4d:ae:9a:e5:e6:
68:2e:e6:cf:30:21:fd:eb:2f:37:63:ea:6b:14:7a:40:e9:c9:
cc:14:d2:86:1b:de:b1:38:7e:32:9d:af:b6:19:5b:08:02:7b:
14:83:cb:0b:94:1b:a7:e8:6a:8f:16:20:51:61:62:bc:0e:52:
12:a3:fa:32:37:15:37:53:19:73:49:a6:e4:3c:73:4f:da:06:
5e:75:f5:8a:79:ca:d7:2e:99:be:7a:b0:38:43:eb:28:62:9c:
fd:83:bc:72:de:53:f6:de:24:1c:90:34:0e:82:bd:4a:79:3e:
9c:a3:21:68:74:62:7c:f0:a9:76:ff:52:b6:86:13:a6:38:08:
49:eb:7b:98:75:6c:1c:28:69:b8:64:39:b5:d3:27:05:7c:d8:
81:f3:0e:c7:7b:eb:fc:32:63:66:be:2e:d8:91:6d:72:45:e7:
a0:83:e3:1b:ca:79:91:9b:c4:d1:d9:ba:bf:16:53:ae:96:39:
38:6c:e3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:49 2024 by rpki-client on console-fra.rpki-client.org