Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/t8Vk7pRS6fYNDBbtco1AnrBFlPk.roa
File: t8Vk7pRS6fYNDBbtco1AnrBFlPk.roa (raw, json)
Hash identifier: iQsCv496M6VAniotEVb3dSveRUmcK3q3FxPBqlSu738=
Subject key identifier: B7:C5:64:EE:94:52:E9:F6:0D:0C:16:ED:72:8D:40:9E:B0:45:94:F9
Certificate issuer: /CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Certificate serial: 0191E66A68246E4DB64F4C4EA78E91007A5B
Authority key identifier: D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/t8Vk7pRS6fYNDBbtco1AnrBFlPk.roa
Signing time: Thu 12 Sep 2024 13:26:58 +0000
ROA not before: Thu 12 Sep 2024 13:26:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57928
IP address blocks: 2a14:6c40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 24 Sep 2024 12:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e6:6a:68:24:6e:4d:b6:4f:4c:4e:a7:8e:91:00:7a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Validity
Not Before: Sep 12 13:26:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7c564ee9452e9f60d0c16ed728d409eb04594f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b8:10:42:3d:3e:58:08:d2:eb:09:5e:c1:b3:
36:7a:8d:4d:9d:62:ea:ac:74:0c:c7:fb:9f:f6:8d:
05:30:b0:aa:99:d9:7d:c6:21:f3:ee:cb:79:2d:2f:
00:91:78:e8:78:43:c8:d9:8a:b6:6d:dc:74:b4:95:
5c:1a:28:cc:7d:f5:67:77:2f:c2:57:a7:8d:fe:eb:
20:6c:7b:cc:fc:85:0b:b5:f8:81:8b:52:01:7d:3b:
f5:5a:d1:a6:4f:70:37:40:1f:bf:bf:4d:cc:91:34:
12:61:3a:50:d2:a5:4a:4a:27:ea:96:e6:48:80:02:
54:6f:00:d7:a6:19:20:7b:f1:aa:4a:f6:87:81:86:
80:fe:52:38:46:7f:8c:bb:8a:8f:af:11:4e:86:5f:
9a:21:32:06:67:e8:80:3f:e3:cb:8b:41:5e:df:76:
a1:b0:46:5b:2d:5b:39:db:20:fe:e3:02:99:1d:d8:
20:c8:ac:68:7d:10:97:2e:58:f0:2d:0c:49:b1:a9:
72:4f:9b:45:24:e4:14:89:12:05:22:7d:b1:f9:e6:
69:75:64:fb:ce:22:6d:34:68:7e:e8:16:de:9c:aa:
64:f7:10:75:40:c0:f2:2b:8d:07:50:f5:1a:49:32:
6e:cb:9a:5c:4c:32:59:8c:3e:50:6d:b8:2f:7c:c8:
1f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C5:64:EE:94:52:E9:F6:0D:0C:16:ED:72:8D:40:9E:B0:45:94:F9
X509v3 Authority Key Identifier:
keyid:D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/t8Vk7pRS6fYNDBbtco1AnrBFlPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6c40::/29
Signature Algorithm: sha256WithRSAEncryption
0a:cf:75:61:08:b8:96:cc:e2:94:2d:58:0d:ce:53:ef:3f:1f:
f3:ba:c6:4a:3d:4a:11:24:64:55:ef:57:84:e3:6f:81:ca:07:
9f:60:5a:ca:38:69:49:7c:45:01:91:dd:85:8c:02:58:fb:0a:
37:47:b0:df:08:21:b6:08:3b:ce:85:03:19:d6:93:3d:42:c1:
da:2a:96:6a:cd:03:a8:4e:66:58:79:aa:39:f1:10:d3:a2:d8:
fe:bb:f0:d9:99:74:92:38:ea:db:85:5c:b6:84:cb:6b:94:c2:
de:6b:e1:74:55:1d:16:75:11:16:fe:bb:60:f8:ff:58:c3:5d:
91:18:e3:a4:c0:36:0c:44:31:d4:fa:98:43:52:a7:44:13:4c:
03:f1:58:ee:6e:59:59:23:36:1e:fc:f9:00:30:82:30:71:4f:
4c:ee:f9:e0:17:57:d0:cf:8f:f9:92:6f:65:df:d7:9c:df:ee:
31:63:e0:3b:32:75:80:a4:84:1f:88:96:db:a4:6d:17:e2:e2:
b5:c7:ec:87:eb:9c:71:91:64:80:89:df:00:24:ce:df:8f:95:
ae:34:42:ca:7b:da:16:e1:09:01:42:98:65:6c:d2:91:5d:09:
cf:c7:86:e7:12:46:56:09:b5:fd:2a:a4:e6:fa:7b:c9:10:d4:
23:c3:bc:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 14:45:34 2024 by rpki-client on console-fra.rpki-client.org