Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/sN424WfKAI7sOcR9j3uhxYkMp_k.roa
File: sN424WfKAI7sOcR9j3uhxYkMp_k.roa (raw, json)
Hash identifier: yNJF/Zork96SyXFuaUlO9Mvs4Zrjj3rS+wyaJxAXYGE=
Subject key identifier: B0:DE:36:E1:67:CA:00:8E:EC:39:C4:7D:8F:7B:A1:C5:89:0C:A7:F9
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018BB8416E13C033FF34150DA2E18F086E93
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/sN424WfKAI7sOcR9j3uhxYkMp_k.roa
Signing time: Fri 10 Nov 2023 08:02:57 +0000
ROA not before: Fri 10 Nov 2023 08:02:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a0f:f400::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 11 Nov 2023 11:49:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:41:6e:13:c0:33:ff:34:15:0d:a2:e1:8f:08:6e:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Nov 10 08:02:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0de36e167ca008eec39c47d8f7ba1c5890ca7f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:1f:bb:06:20:c9:28:13:68:bd:6c:55:45:
1c:e7:65:a4:2d:48:42:37:9b:6f:1d:1c:2a:48:f4:
19:ed:90:ea:75:03:68:c5:e6:44:d2:d2:71:3b:c7:
00:18:3c:f2:6e:da:44:9f:c1:98:d2:d5:8a:3e:11:
19:f3:a7:99:38:69:cd:b7:e0:3b:24:ab:74:21:74:
24:74:18:27:b3:78:13:a2:1b:4b:4a:9e:fe:ad:84:
e6:98:d8:a3:d0:d8:61:9c:1b:50:f5:05:a3:3c:77:
c4:dc:a9:44:31:7b:e4:3e:d9:fa:38:da:bb:bf:26:
5d:6f:f8:27:92:ea:d2:26:00:5d:63:5c:86:53:55:
20:98:91:62:be:83:61:2f:89:02:d7:f1:23:04:f4:
8c:26:85:a9:72:82:54:55:fe:59:fe:5e:a2:62:59:
63:dd:cd:bd:69:c2:46:97:5e:0f:62:33:c3:8b:b2:
c3:1b:87:aa:b7:88:cb:c6:0a:c3:f5:3c:a9:29:5b:
bf:b5:46:4d:d8:c9:c0:cd:42:5e:11:56:d4:60:86:
40:a6:75:7e:e8:e3:d4:a7:ec:ba:7c:a1:98:68:4e:
fd:69:39:a4:95:af:96:c1:ce:f9:87:f7:ef:4d:95:
fd:69:b4:4e:1e:95:95:18:2a:33:6f:29:d9:3c:c9:
12:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DE:36:E1:67:CA:00:8E:EC:39:C4:7D:8F:7B:A1:C5:89:0C:A7:F9
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/sN424WfKAI7sOcR9j3uhxYkMp_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:f400::/29
Signature Algorithm: sha256WithRSAEncryption
7e:12:99:a1:bd:b0:a8:e7:44:0d:cd:86:09:0e:9d:8d:f1:84:
8a:24:a7:59:7f:2d:dd:ce:d3:cb:78:d2:49:35:9a:1b:cb:4a:
9e:cf:e7:95:1a:88:be:a5:3b:81:4f:83:9d:e6:1c:49:df:bf:
a1:c5:9e:cb:bf:67:47:6d:ad:76:05:e9:57:97:56:ae:fe:c2:
a9:c9:91:97:ab:65:45:cf:80:f0:1c:e0:6a:72:e4:59:f6:c4:
69:18:62:5a:5c:e9:8f:7c:11:cd:7a:17:a8:81:59:82:11:d8:
54:93:2b:9a:f8:18:b2:53:56:c5:23:95:f6:6a:65:57:cf:3b:
26:95:46:21:d6:1d:c7:b6:91:13:d2:4b:60:3d:da:d7:0d:69:
44:3b:a6:56:72:c2:bb:d8:21:99:5e:9d:b9:cc:ce:27:ce:f8:
27:75:e7:75:5c:bc:d3:5a:95:71:02:35:24:08:2d:51:03:2f:
b8:23:d8:ae:04:3a:9c:0b:c5:b5:01:f2:b3:7e:03:c9:48:be:
20:8c:0c:56:cd:0b:fd:76:91:1b:89:0f:f1:ff:92:f5:aa:21:
12:fa:84:c6:45:5a:8a:64:ad:64:ed:cb:22:28:56:6f:95:ef:
6f:60:8e:b7:88:82:46:7c:0c:32:50:e5:07:39:64:14:c7:d9:
92:67:21:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:03 2024 by rpki-client on console-ams.rpki-client.org