Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/9QpqmNUUDpI5SpfAB_HYMiNsNWw.roa
File: 9QpqmNUUDpI5SpfAB_HYMiNsNWw.roa (raw, json)
Hash identifier: 6gmtRu8Ig4pA5YUDG2wEsEmHqDaFcIeGrefIyihEQ+U=
Subject key identifier: F5:0A:6A:98:D5:14:0E:92:39:4A:97:C0:07:F1:D8:32:23:6C:35:6C
Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74
Certificate serial: 0193468DF9EF8B42582E4583DFF6100B8598
Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/9QpqmNUUDpI5SpfAB_HYMiNsNWw.roa
Signing time: Tue 19 Nov 2024 22:32:09 +0000
ROA not before: Tue 19 Nov 2024 22:32:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213893
IP address blocks: 2a0d:d940:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 22 Nov 2024 20:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:46:8d:f9:ef:8b:42:58:2e:45:83:df:f6:10:0b:85:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74
Validity
Not Before: Nov 19 22:32:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f50a6a98d5140e92394a97c007f1d832236c356c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1e:09:97:69:6a:05:6c:37:88:a9:d6:a8:61:
3c:00:39:83:cc:9c:59:19:44:fb:1d:ce:94:f9:6c:
09:c8:04:72:59:3e:f5:2f:2d:9e:c7:45:28:84:1c:
7d:d1:55:04:4a:9a:bd:22:e9:a7:89:1d:84:a5:55:
36:56:aa:c7:da:57:3c:bc:ae:01:05:c3:d5:8e:7c:
05:0b:81:71:45:44:ec:b6:90:8b:d4:c5:5a:d5:e8:
a0:53:68:7a:8b:cd:68:26:25:44:d2:c7:2a:b0:5e:
c8:fa:0a:fb:1b:d1:d0:27:68:f8:fa:3b:e6:e9:81:
c8:4b:e0:44:c6:c1:0f:ad:2c:a2:9a:41:be:74:e3:
e7:f3:f6:a9:9b:19:1f:52:9f:87:e0:da:f3:5b:93:
61:c6:6a:69:b7:e4:4e:9d:ef:1b:30:2f:b8:5c:d4:
1c:f5:35:3e:db:46:3b:85:a1:5e:5b:66:51:0d:ba:
06:b9:44:16:23:67:23:11:02:a2:e5:1f:69:40:54:
0a:9b:97:b6:38:aa:21:90:5b:bf:94:6d:5e:2d:fa:
77:2e:e3:a1:d0:8e:df:c6:46:6c:43:53:48:c2:2e:
ff:0f:c4:a0:c3:05:4f:20:cd:fc:00:a6:03:5f:32:
2a:8d:47:a1:5a:e8:06:45:a2:47:59:14:64:52:09:
b8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0A:6A:98:D5:14:0E:92:39:4A:97:C0:07:F1:D8:32:23:6C:35:6C
X509v3 Authority Key Identifier:
keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/9QpqmNUUDpI5SpfAB_HYMiNsNWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d940:10::/48
Signature Algorithm: sha256WithRSAEncryption
15:c2:99:65:f2:c5:bb:9a:c2:1e:17:e6:df:7e:30:e8:3e:a9:
f0:bc:7d:07:e7:12:f1:41:e3:17:0b:cb:42:b9:39:8c:e6:06:
87:86:3e:2a:19:8a:63:57:85:30:fa:1b:a1:0b:7d:58:d1:38:
62:a0:ea:9a:a9:1e:2a:e0:13:0c:d1:ec:60:c7:91:41:bc:b1:
df:e8:fc:93:dd:cd:6b:43:a1:2c:dd:da:5b:62:41:68:3b:73:
20:d0:13:00:2a:49:fa:58:ed:0d:98:d1:e9:c2:63:a7:e0:02:
d1:35:a8:f8:48:79:8e:45:1e:3f:1a:72:94:c1:e1:ab:57:4c:
c8:0c:e4:83:6a:7b:84:4f:3c:6a:52:30:08:9e:50:da:0b:30:
90:3a:27:e4:f5:e0:23:a3:e9:8b:f6:75:47:40:02:3b:41:a4:
66:b8:5a:e2:94:a5:d4:48:09:97:8e:e6:c2:a7:03:9e:b5:89:
6b:25:a9:54:19:99:88:01:e4:13:35:ad:8e:6c:55:13:ff:59:
d8:0d:eb:1d:c2:6b:7f:a9:48:7b:20:63:d5:c7:7d:4d:fb:12:
d0:5e:15:0f:41:f5:5c:a8:3d:11:02:a0:c6:03:11:d8:47:d2:
6f:7b:91:33:90:89:51:a5:b3:6e:92:5e:f5:ea:90:8d:90:3d:
e1:05:87:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:36:01 2024 by rpki-client on console-ams.rpki-client.org