Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ddHghuQZsJaOiyeL_BpnzseYiCk.roa
File: ddHghuQZsJaOiyeL_BpnzseYiCk.roa (raw, json)
Hash identifier: Fu2VrDyNoFO1wpBbuS32F6EhuWaUHjTiKHWhzyqWVPY=
Subject key identifier: 75:D1:E0:86:E4:19:B0:96:8E:8B:27:8B:FC:1A:67:CE:C7:98:88:29
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FE218F23F2AC01BF29F524C314830
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ddHghuQZsJaOiyeL_BpnzseYiCk.roa
Signing time: Mon 02 Jan 2023 17:38:07 +0000
ROA not before: Mon 02 Jan 2023 17:38:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34641
IP address blocks: 2a0b:b86:100::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:e2:18:f2:3f:2a:c0:1b:f2:9f:52:4c:31:48:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75d1e086e419b0968e8b278bfc1a67cec7988829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e7:12:77:9b:a2:8f:d4:4b:da:03:ce:1e:e2:
ac:38:9a:4a:96:42:83:7e:c8:94:bf:99:73:67:0c:
dd:5b:38:7b:ce:dd:f7:4a:b7:3e:05:89:4c:13:73:
a3:c5:59:6d:2a:bf:df:5a:f6:21:e5:2c:8b:6f:81:
74:11:12:24:b6:e8:1f:87:8c:ab:15:87:ff:e1:c6:
11:44:6f:34:df:c0:77:8d:0e:2c:87:27:d5:2b:01:
06:e1:77:0e:4e:c8:8c:26:84:b2:8f:1b:5e:2e:43:
a6:7b:86:ea:3b:35:e3:d3:f1:ed:b1:f3:e8:0b:77:
4c:27:a3:2b:54:a6:db:36:9b:b4:d2:4f:50:45:84:
f4:f4:3a:b7:47:2e:fd:6b:fd:d2:d8:1c:0c:fc:a1:
78:fb:76:c8:26:4f:f6:30:9a:00:bf:b2:f1:1a:b1:
80:b2:54:ab:56:ec:8d:65:09:1c:fc:ca:3d:c3:39:
87:0e:04:cd:62:1e:aa:f9:96:d6:70:e5:91:f0:7a:
11:1d:e2:10:99:54:19:4a:cb:27:b0:a3:92:92:eb:
e4:4f:f0:c9:04:6c:db:19:c7:b6:3b:e4:a0:1e:28:
f9:c7:44:de:dc:ae:8c:57:88:30:28:62:32:44:90:
0b:e8:1c:5e:65:77:69:c0:4a:05:d1:ec:ea:34:a1:
61:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D1:E0:86:E4:19:B0:96:8E:8B:27:8B:FC:1A:67:CE:C7:98:88:29
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ddHghuQZsJaOiyeL_BpnzseYiCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b86:100::/40
Signature Algorithm: sha256WithRSAEncryption
97:8c:f8:51:9c:a4:8f:de:3f:5f:63:60:4c:d5:23:f9:90:1d:
da:2b:3d:f3:f9:a1:56:00:77:92:3d:29:c9:37:49:0d:b7:26:
44:83:f8:6e:c1:50:33:3e:ad:4e:99:5f:2c:a8:5f:f8:27:0b:
d2:d0:fb:f6:2b:bd:1b:5b:a1:01:f8:47:77:ac:ac:84:38:08:
db:e8:27:26:a1:af:98:dd:8d:b4:f8:56:66:49:b7:c2:86:a8:
5c:49:8e:31:17:50:65:d1:13:84:db:28:01:95:bd:03:30:00:
a9:4b:9b:21:89:4c:be:d6:2a:fa:cc:97:f0:a3:5d:25:83:39:
6e:2d:96:af:27:c4:f3:5c:92:f5:1f:a7:94:4e:d7:52:93:1e:
95:5d:b8:52:ba:58:b6:4e:6b:28:09:9b:bc:9f:cd:70:3f:f4:
29:17:1f:25:52:40:11:28:b5:8c:fb:a0:4d:a4:7b:a9:88:cf:
67:c2:67:6b:9a:db:d1:a1:b2:34:6b:5a:8f:76:18:5c:5b:e9:
92:4a:22:c1:c4:ba:05:74:8b:53:a1:15:53:98:5a:13:3e:24:
cb:af:35:a6:e8:e3:f1:f0:f2:bf:30:7e:ec:6c:e4:fb:2a:64:
34:a0:11:fb:15:2f:c2:34:f4:ff:e4:67:64:23:f5:c0:6c:bd:
f1:9e:35:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org