Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tn2ONnUVUB7-PK7ccNvsKcmMh5g.roa
File: tn2ONnUVUB7-PK7ccNvsKcmMh5g.roa (raw, json)
Hash identifier: WZaszSIyad3Pmt4A0wr5rS2cjYONOD84gkrFdpbASQo=
Subject key identifier: B6:7D:8E:36:75:15:50:1E:FE:3C:AE:DC:70:DB:EC:29:C9:8C:87:98
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018573900AA5AA5B4EA728788C5DECBEDB89
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tn2ONnUVUB7-PK7ccNvsKcmMh5g.roa
Signing time: Mon 02 Jan 2023 17:38:17 +0000
ROA not before: Mon 02 Jan 2023 17:38:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210977
IP address blocks: 2a0e:c7c1::/45 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:0a:a5:aa:5b:4e:a7:28:78:8c:5d:ec:be:db:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b67d8e367515501efe3caedc70dbec29c98c8798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:1f:ec:d4:08:de:4e:1d:4e:33:1d:66:bf:
d7:01:3c:d4:bc:4b:ed:ab:24:ac:a3:7a:7a:21:16:
e1:e8:8c:6b:74:2c:50:05:eb:f8:08:3c:0e:d4:f0:
ab:d1:d3:7b:e8:80:25:76:cc:37:d0:96:99:5f:79:
17:be:e4:91:f4:ec:2d:1e:3a:2c:a3:d0:59:b3:fc:
89:d6:d4:5d:20:b2:93:34:e6:60:61:1b:4c:e6:31:
9f:72:0c:93:26:b6:eb:4f:66:66:a2:f5:fa:fd:b7:
63:7b:11:41:5b:64:4c:4f:6c:2c:c6:44:56:a8:4c:
73:7b:3c:a2:f7:54:bc:88:81:75:5c:33:29:f7:f2:
5f:d0:cd:37:6c:96:f8:1e:ac:83:44:cf:fc:f3:19:
d0:02:fd:02:5b:3a:c2:e9:c7:44:5c:a1:ec:80:db:
e4:b6:76:56:60:a7:c4:0a:6a:f2:27:4c:f1:7b:f0:
89:89:cb:06:c1:8a:44:13:12:87:cb:10:35:ce:d4:
6b:13:fd:bf:be:a3:42:52:91:8f:00:dc:64:a7:aa:
69:df:86:4d:90:ad:be:51:e7:b0:19:70:64:07:a4:
ec:47:d8:85:df:84:db:85:c4:0d:8f:a3:cd:b5:ad:
3b:a8:d1:ef:24:b8:42:44:b0:bb:4e:34:88:3a:f2:
39:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7D:8E:36:75:15:50:1E:FE:3C:AE:DC:70:DB:EC:29:C9:8C:87:98
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tn2ONnUVUB7-PK7ccNvsKcmMh5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c7c1::/45
Signature Algorithm: sha256WithRSAEncryption
57:1d:0b:2f:22:fb:51:28:c6:41:1f:a1:ef:a1:53:82:30:60:
d9:a3:08:58:c1:c7:33:bd:fc:09:27:e4:1a:4a:bb:10:17:85:
41:35:08:9c:81:f7:b5:15:ff:25:b2:f7:89:e4:cd:14:b0:4c:
4a:0a:78:79:6a:cd:e3:19:32:78:af:9d:5f:63:13:47:2d:0f:
34:20:21:60:88:6e:3a:33:ab:40:2c:aa:45:04:bd:b0:19:d5:
dc:97:59:01:34:28:da:de:5d:6f:d5:7c:1e:5b:a0:79:8f:b1:
95:ee:25:8e:66:89:a1:cc:1c:94:ab:f4:ea:1f:29:21:16:62:
cb:26:2e:9e:f3:58:65:78:ff:a3:76:28:77:a5:20:8d:f0:3c:
e0:4d:66:10:2e:2e:fc:e4:a8:8c:15:e6:39:4e:b8:75:12:2b:
27:9b:69:88:85:c3:d0:b6:f6:ed:1d:ce:2a:2a:c6:01:44:37:
ce:9c:22:e8:65:33:85:fd:1c:11:ad:3a:b6:00:39:66:e6:b9:
73:ab:c3:70:60:db:1f:9a:bc:90:99:5b:8d:74:e8:ef:3e:56:
d8:d1:6c:99:56:7f:62:6c:57:0b:d7:c5:5e:67:76:ad:ed:dd:
eb:b9:c1:0b:d2:03:55:7f:ff:64:c8:58:6c:b5:b2:ae:69:0b:
22:ba:21:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org