Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/l_2ytEjxb1c3H_MSnR-C8hXksHo.roa
File: l_2ytEjxb1c3H_MSnR-C8hXksHo.roa (raw, json)
Hash identifier: i/zrXVqzc4K4F1p0HAmx9yITW/ve0FlJfP9GBCzcsmc=
Subject key identifier: 97:FD:B2:B4:48:F1:6F:57:37:1F:F3:12:9D:1F:82:F2:15:E4:B0:7A
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018C1B70D1EB09BB87015F0B5BAA527C3FD6
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/l_2ytEjxb1c3H_MSnR-C8hXksHo.roa
Signing time: Wed 29 Nov 2023 14:17:07 +0000
ROA not before: Wed 29 Nov 2023 14:17:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206292
IP address blocks: 2a0c:9a40:8a10::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:70:d1:eb:09:bb:87:01:5f:0b:5b:aa:52:7c:3f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Nov 29 14:17:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97fdb2b448f16f57371ff3129d1f82f215e4b07a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:ec:62:1d:d7:c2:bc:53:22:37:b2:f8:c9:
c1:fb:15:ff:9d:0b:ab:a5:8d:c3:b9:53:3c:0c:0d:
00:54:eb:a4:cf:45:ca:8e:b6:2d:00:fb:2f:06:d8:
f8:af:51:c2:96:4e:6a:c9:b0:ec:e4:da:b8:93:db:
3d:08:39:3f:36:83:19:5c:8d:af:5a:a6:38:d2:9c:
63:44:49:1c:c6:25:49:2e:9c:7c:cd:35:87:64:1d:
94:bc:4e:80:08:ae:af:50:ee:95:1d:5a:73:6b:b6:
2d:00:39:05:29:27:db:71:46:be:c3:45:56:0e:d5:
11:86:10:fd:05:0a:2f:bc:2f:b9:23:d6:9c:31:54:
4a:05:32:0a:c4:f1:9d:c6:08:15:5c:25:da:b7:c7:
e4:e5:37:13:c1:f4:59:ce:2e:d0:b1:c0:a9:d2:07:
b9:2b:1e:65:59:01:00:21:da:01:78:0c:f6:44:24:
63:61:b4:12:da:a4:7b:94:66:08:0c:23:4d:40:1e:
8a:74:dc:36:43:e1:61:3e:63:2a:39:bb:ca:e3:11:
00:2e:09:67:e5:08:66:d4:55:2c:9a:d4:3f:1c:3c:
e8:8c:4d:4d:52:5a:4b:44:76:1d:8f:22:a6:3d:83:
a8:6d:aa:9f:4c:96:41:b5:fd:c2:02:78:d5:b5:08:
eb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FD:B2:B4:48:F1:6F:57:37:1F:F3:12:9D:1F:82:F2:15:E4:B0:7A
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/l_2ytEjxb1c3H_MSnR-C8hXksHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8a10::/44
Signature Algorithm: sha256WithRSAEncryption
15:d7:d3:e8:04:7b:bd:ef:80:de:29:9e:a3:17:cf:e9:0e:a9:
e1:fd:4e:3d:7a:93:3f:16:83:e5:0d:a1:d2:88:5b:d3:40:aa:
4c:a3:f8:5e:d2:e3:00:3e:72:bf:99:a8:35:7b:03:c5:fa:c5:
44:6b:65:ee:29:16:2e:cd:13:c0:cf:73:1f:68:d9:7d:13:d8:
e0:bc:c3:4b:36:26:79:72:a3:4f:c1:6c:b4:d2:49:dd:f8:2d:
3c:5c:9b:30:1c:b5:74:f8:6c:4d:ea:d8:76:bb:ab:95:3a:4f:
88:6d:bb:cc:9f:ae:8a:3b:16:62:8d:9c:8d:22:c6:7c:ec:91:
a6:a3:84:e1:72:cc:0e:ca:21:47:be:4c:ea:80:a1:84:0b:a2:
76:37:dc:34:98:0e:0f:a0:87:e3:3f:ff:f4:52:69:19:5b:64:
56:98:7e:73:2f:6a:f9:8f:e7:2b:9f:3e:df:73:e2:07:f7:1b:
ee:1b:5f:36:34:f3:66:5d:01:3d:de:3a:6b:fc:ed:fd:12:00:
ca:94:be:8d:50:ee:47:6b:38:2e:7d:7f:0b:8d:a1:2f:93:9c:
3e:d3:15:39:72:e6:65:d7:2f:20:f3:77:96:f7:80:84:b7:70:
94:c8:65:c0:7e:c8:6b:01:1d:9e:b2:34:ec:a4:84:9f:09:55:
99:c5:32:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:50 2024 by rpki-client on console-fra.rpki-client.org