Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ak8iAbhB62vy-95liWjCof4f8LA.roa
File: ak8iAbhB62vy-95liWjCof4f8LA.roa (raw, json)
Hash identifier: QOJzsW+4B6BNtYpTcDt3PFvRKs0OmfSJkyOs5nKBaaM=
Subject key identifier: 6A:4F:22:01:B8:41:EB:6B:F2:FB:DE:65:89:68:C2:A1:FE:1F:F0:B0
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018C36B49BB2522FE77C75CD05C0D1816C02
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ak8iAbhB62vy-95liWjCof4f8LA.roa
Signing time: Mon 04 Dec 2023 21:20:55 +0000
ROA not before: Mon 04 Dec 2023 21:20:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215909
IP address blocks: 2a0c:9a40:8a20::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:36:b4:9b:b2:52:2f:e7:7c:75:cd:05:c0:d1:81:6c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 4 21:20:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a4f2201b841eb6bf2fbde658968c2a1fe1ff0b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9d:65:7c:4c:2d:ce:19:54:9a:46:8f:f5:55:
c6:75:3f:7e:0b:be:14:57:96:8b:08:6f:a0:1d:2c:
b6:83:d2:85:86:00:08:d5:9d:98:5d:79:90:03:20:
76:b3:2e:94:b5:d2:bc:bf:96:08:ad:33:a4:7b:e0:
16:7c:6e:16:22:c7:26:8d:6a:e1:0a:2b:de:49:39:
4f:14:8f:8c:8f:81:30:36:3b:0e:25:1d:da:9b:51:
b9:d6:6f:11:b5:c8:ac:ec:50:0c:72:6c:ce:77:a6:
ce:3c:b8:f4:29:10:f8:a2:73:8b:95:c3:bc:78:d7:
9b:ac:c7:21:cf:f1:bc:21:73:67:f7:e2:c0:da:49:
75:31:35:b7:a1:81:87:22:dc:f5:1b:5b:f3:8f:56:
e5:10:0d:6b:9a:89:84:ed:cc:d1:15:5f:c7:97:10:
7e:a6:0f:34:9e:b5:5d:f5:7a:e4:e4:f4:a3:5c:34:
87:7b:b9:08:ed:cb:39:ca:1d:ea:99:2c:20:ae:df:
66:eb:22:6a:45:f7:c7:ef:ab:f3:b4:a1:90:7e:41:
cc:2d:fa:85:2b:5b:3d:29:e0:9e:d6:cc:7b:f4:29:
51:3b:99:be:27:89:02:41:17:5e:c8:69:21:84:af:
49:4e:3c:f0:c3:08:21:77:0d:7f:1e:84:07:d8:3c:
73:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4F:22:01:B8:41:EB:6B:F2:FB:DE:65:89:68:C2:A1:FE:1F:F0:B0
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ak8iAbhB62vy-95liWjCof4f8LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8a20::/48
Signature Algorithm: sha256WithRSAEncryption
9c:f8:f6:cd:c3:8e:49:84:0f:65:b0:24:05:a3:bd:fa:94:35:
a6:9b:63:13:a1:ad:8c:34:af:d7:0b:b5:b9:47:38:b0:32:f0:
4c:22:2d:20:07:26:8e:0f:44:6c:89:dc:a0:5a:60:46:6f:18:
75:6e:34:95:94:ec:6f:22:70:c8:6b:62:f4:16:10:81:14:19:
5e:2b:50:6a:62:8f:86:62:38:6f:ec:b5:6b:01:36:e5:0b:00:
ab:20:32:b5:f8:88:7e:16:f9:50:86:33:53:85:1c:19:90:5f:
b7:ef:fe:d6:3b:9d:6e:3b:f8:8b:13:37:68:01:65:01:ee:36:
dc:47:fe:30:6d:f8:10:ad:df:d9:6c:91:07:f2:83:15:fd:06:
fe:01:e3:95:85:87:54:b5:f1:7d:26:02:7d:bc:9e:5f:a0:28:
00:a7:57:00:cf:7d:dc:7b:e9:58:4b:ec:a2:a0:da:ed:66:0d:
ca:2d:ff:85:cb:ed:de:3f:d1:f2:89:9e:ec:f6:d9:90:2b:11:
a4:f7:41:8b:ea:23:37:a9:3f:66:fa:cb:29:04:d7:e5:7a:a9:
44:a0:8a:86:5d:bc:7d:f7:a2:c4:58:1d:62:c2:f4:38:a8:7b:
cc:ce:12:db:a3:c1:4b:1d:4a:09:74:83:bd:64:83:22:d7:f4:
b6:78:60:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:19 2024 by rpki-client on console-ams.rpki-client.org