Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/2g3AjJ669lm-AJrSWRPCp0lVby0.roa
File: 2g3AjJ669lm-AJrSWRPCp0lVby0.roa (raw, json)
Hash identifier: 79lerj71aJEPeYQD26I/EIqzDoHlCzgCC1JKZ2Bm/RI=
Subject key identifier: DA:0D:C0:8C:9E:BA:F6:59:BE:00:9A:D2:59:13:C2:A7:49:55:6F:2D
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 018AEAC5184D1DFE34409D1B54E677684F73
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/2g3AjJ669lm-AJrSWRPCp0lVby0.roa
Signing time: Sun 01 Oct 2023 10:24:59 +0000
ROA not before: Sun 01 Oct 2023 10:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201086
IP address blocks: 2a0e:9c00::/29 maxlen: 29
2a0c:f340::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ea:c5:18:4d:1d:fe:34:40:9d:1b:54:e6:77:68:4f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Oct 1 10:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da0dc08c9ebaf659be009ad25913c2a749556f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0b:cd:ba:da:cb:12:6f:d4:79:68:24:d2:73:
53:c6:df:3b:fb:9d:8a:e9:1c:12:9a:1b:9a:fa:36:
95:d4:19:a3:51:c9:37:50:cd:1a:24:f3:cd:42:85:
2c:49:2e:29:f3:bc:a5:8b:b2:57:5c:fa:6e:11:9e:
43:3b:78:30:92:76:bf:a8:83:73:de:49:d3:b0:75:
c2:87:29:fd:a5:77:2a:09:77:9d:d6:d7:c1:ca:be:
1f:b4:01:c0:50:bb:cc:30:85:f4:b5:3a:89:e1:00:
1a:82:37:a3:db:c5:10:a9:15:88:46:a4:13:16:a9:
23:56:03:0d:69:7f:b9:28:5d:c9:50:3f:e7:b1:cf:
2a:5f:cd:6e:20:3d:25:bb:c6:60:4f:1b:d5:f3:9a:
ca:d6:e4:32:ce:d2:f2:92:aa:97:b5:c8:06:db:aa:
85:82:70:d1:60:bc:7b:2c:2a:09:8d:0c:95:61:b9:
70:d2:1b:ac:a9:54:b7:5f:dc:2c:7c:47:5e:8b:b1:
cb:e8:fa:86:63:c7:2e:95:25:2d:10:0c:69:f6:58:
2b:58:68:6d:9b:5e:39:bd:9c:0b:c6:ea:9c:06:95:
3c:3e:b0:d5:ec:6b:cb:40:ba:42:4e:e5:3e:a7:83:
22:36:da:ad:f6:9d:56:73:32:dd:d6:61:06:d0:75:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0D:C0:8C:9E:BA:F6:59:BE:00:9A:D2:59:13:C2:A7:49:55:6F:2D
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/2g3AjJ669lm-AJrSWRPCp0lVby0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:f340::/32
2a0e:9c00::/29
Signature Algorithm: sha256WithRSAEncryption
6c:b6:40:11:f1:47:f8:68:0a:91:e7:1d:e5:e0:3c:4e:ad:cf:
af:82:e2:c8:e9:b4:d0:ee:23:45:ce:d2:3e:65:58:55:c7:b0:
38:a3:15:38:89:8e:57:22:8f:62:06:a6:0f:6a:8d:02:54:fc:
8c:09:2b:cb:af:2a:bb:c9:e4:fb:db:5b:64:e8:c7:bb:ab:23:
95:06:9b:e5:b1:28:9b:b7:ab:18:7f:6f:17:ab:d2:da:bf:d0:
84:99:46:35:b7:c3:43:bc:61:8c:cb:85:3d:73:4c:56:f3:07:
7d:dc:f4:82:ae:19:2a:36:b0:e4:cb:25:3a:2e:fb:8e:2a:eb:
3b:56:35:db:c4:0c:97:a6:56:dd:2b:ec:87:c0:d3:dc:f0:28:
8c:43:89:ed:93:d2:79:fd:03:13:9f:08:90:8e:1f:fd:64:67:
4a:aa:e2:33:ff:2f:0a:75:2a:7a:6c:1c:2f:a9:f1:66:77:4e:
fb:8d:2b:f3:72:7d:a1:a0:d3:d5:2a:a2:52:4a:de:77:67:df:
11:e4:fb:62:a8:9c:e2:69:1f:41:fa:8a:a0:4a:8c:72:3e:8e:
fc:5c:62:48:fb:d2:a5:af:a0:1d:6d:fb:09:7b:9f:d7:59:cd:
0d:83:a3:b8:85:c3:95:7f:5c:3a:2b:23:88:7d:ae:d9:3e:c3:
6a:d0:ab:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:43 2024 by rpki-client on console-ams.rpki-client.org