Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/IBAIY5M1F1LAK4QJeBcDPl5fdqA.roa
File: IBAIY5M1F1LAK4QJeBcDPl5fdqA.roa (raw, json)
Hash identifier: Go51wTh/ERf3MU7Fq4PL2OZFRdgYpzYoEp59JM0OuHU=
Subject key identifier: 20:10:08:63:93:35:17:52:C0:2B:84:09:78:17:03:3E:5E:5F:76:A0
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 01882525D92FED38FB9EF279AEA976F94E4B
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/IBAIY5M1F1LAK4QJeBcDPl5fdqA.roa
Signing time: Tue 16 May 2023 15:20:17 +0000
ROA not before: Tue 16 May 2023 15:20:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a06:5901:8000::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 May 2023 22:54:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:25:25:d9:2f:ed:38:fb:9e:f2:79:ae:a9:76:f9:4e:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: May 16 15:20:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2010086393351752c02b84097817033e5e5f76a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:87:ad:f5:ab:67:a1:e9:36:94:b1:cd:61:0b:
66:ee:4d:ac:fd:4a:d1:84:94:1d:3b:38:60:14:6a:
1b:52:a5:85:ed:4b:ab:c3:3b:97:53:3b:b5:a2:ee:
00:4c:8e:da:64:87:c6:cc:ae:2e:b6:0f:41:ab:8b:
11:32:c3:89:0a:e3:bd:0d:05:f1:63:be:6a:f9:78:
18:5a:ce:c0:e6:83:ca:35:99:de:bb:1c:90:58:a9:
c1:ae:9f:43:bf:81:74:3e:e4:47:fa:bd:e6:fd:a3:
af:bc:36:d0:79:36:6b:5b:9e:4e:8b:46:fb:1b:21:
19:f2:e8:45:96:e0:5b:77:70:47:d8:c0:13:66:84:
68:5c:bd:1e:db:ac:7d:17:ee:6a:e7:30:f8:27:27:
21:2f:c5:96:98:f2:1a:29:74:21:73:3e:ef:38:22:
f9:83:d4:1b:4a:38:4b:70:2d:46:dc:07:38:c0:0f:
9a:b8:8e:46:4d:61:e4:bf:07:39:91:f2:6f:d7:d7:
b6:aa:12:93:76:79:45:9c:ab:30:89:f4:40:9f:d3:
d3:c5:12:b9:b7:f9:41:7b:55:db:00:05:bb:f7:04:
32:7b:1a:f6:59:3a:25:75:20:30:84:a1:20:67:1c:
0b:98:1d:85:2b:e3:84:e4:aa:cd:e9:6e:1d:6d:bb:
ad:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:10:08:63:93:35:17:52:C0:2B:84:09:78:17:03:3E:5E:5F:76:A0
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/IBAIY5M1F1LAK4QJeBcDPl5fdqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:5901:8000::/40
Signature Algorithm: sha256WithRSAEncryption
16:e0:94:a9:69:f8:1f:64:39:d0:bc:c8:3e:4a:b8:b9:a7:19:
77:e8:b7:ce:d8:a1:3a:a9:07:96:80:a6:a6:6d:3d:ed:cc:1b:
dd:43:64:d9:d7:14:f4:da:a1:3d:ea:fa:66:0c:f1:f6:e3:69:
91:ec:ef:c1:db:71:9b:69:09:d7:ff:e5:e1:c1:d9:99:78:1b:
4c:d2:bc:52:00:99:8b:66:c8:fb:ad:56:25:a4:f9:43:4b:26:
d3:ae:db:fb:83:17:d8:d5:44:07:5a:95:78:97:52:d7:4a:2a:
2c:1a:f5:88:27:cf:c6:fd:ee:f3:ef:03:39:15:08:08:5a:8c:
ed:18:a0:28:65:94:27:7c:a4:6b:59:05:d1:3e:f9:63:90:c9:
d4:75:80:5c:99:76:d0:69:d8:69:e4:59:20:7a:4e:b5:54:b1:
62:0d:6f:15:f4:6f:4d:0e:66:5b:6c:24:f3:2d:83:e9:a9:16:
f9:d3:48:3c:96:58:25:4d:cf:90:1f:93:b2:79:75:cd:34:fd:
42:cc:d2:57:b1:e1:33:7a:85:72:ff:45:33:7a:e9:b9:55:1d:
54:3b:1a:30:de:68:88:05:a5:03:71:e4:9a:a9:3f:75:57:ca:
5e:af:e6:ab:e5:2d:10:59:4b:46:14:5c:af:d5:6a:14:94:dc:
e4:d9:56:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:23 2024 by rpki-client on console-fra.rpki-client.org