Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1-ZxDGakNg50Rz7EKQ1uzgeLqDhI.roa
File: 1-ZxDGakNg50Rz7EKQ1uzgeLqDhI.roa (raw, json)
Hash identifier: w3ONo7cw9r+5zLoeHA7EmmLLOSUqOnIq+2ghsX5jw64=
Subject key identifier: F9:9C:43:19:A9:0D:83:9D:11:CF:B1:0A:43:5B:B3:81:E2:EA:0E:12
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018CAF7F820D1F92721077D6181117EA3E59
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1-ZxDGakNg50Rz7EKQ1uzgeLqDhI.roa
Signing time: Thu 28 Dec 2023 08:16:58 +0000
ROA not before: Thu 28 Dec 2023 08:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44817
IP address blocks: 2a0a:280:3300::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:7f:82:0d:1f:92:72:10:77:d6:18:11:17:ea:3e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Dec 28 08:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f99c4319a90d839d11cfb10a435bb381e2ea0e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a2:c9:e2:f8:ec:98:a3:b3:97:cc:c2:32:4c:
96:d1:20:75:54:43:60:a8:78:dd:dd:c5:57:d3:38:
29:6f:f9:3d:55:81:37:91:47:2d:15:07:b2:5e:7f:
2b:ac:d3:c0:21:56:47:d0:d7:22:ff:6e:6b:09:87:
71:df:3e:dd:ad:fa:2f:ac:3a:ed:19:87:5a:9f:8f:
e0:49:ad:4d:8c:01:da:25:e9:ca:ad:ce:b6:f2:65:
0c:de:7c:8b:33:51:17:55:e1:58:d2:3d:d6:e0:58:
6f:40:2b:36:07:e7:50:9b:53:74:56:09:01:3e:2c:
67:47:d5:fe:be:d4:65:97:f2:f6:ab:8d:72:d5:7b:
71:67:a6:e4:6a:b8:47:3e:6b:7b:cd:a2:d1:b9:c9:
a6:bf:01:fb:23:99:cb:d9:61:dc:de:02:c7:2e:f5:
eb:9d:12:a0:f7:b1:7b:61:3d:1e:3a:a2:13:c5:d3:
29:13:3d:59:11:8f:30:fb:a1:04:f2:f7:96:22:16:
92:c2:27:31:2a:5a:63:0d:0c:6f:79:5b:86:3d:78:
08:ee:7d:5d:39:97:6c:a8:9b:46:0c:85:7e:1a:b6:
5e:3e:b5:9d:6c:32:33:d9:86:8c:ee:b4:86:ee:2e:
e8:be:91:ae:26:13:da:cb:fb:bb:6e:76:ea:e3:5f:
56:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9C:43:19:A9:0D:83:9D:11:CF:B1:0A:43:5B:B3:81:E2:EA:0E:12
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1-ZxDGakNg50Rz7EKQ1uzgeLqDhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:3300::/40
Signature Algorithm: sha256WithRSAEncryption
37:0d:01:ce:28:12:3f:79:e6:6c:2c:d6:ce:9f:b9:4c:cf:c2:
4b:ee:a0:08:2f:11:88:2a:3b:54:e8:7e:bc:92:30:e7:1f:b1:
e4:a1:d7:6e:1e:4a:9e:75:ae:8d:4e:d1:5a:76:79:cd:e6:be:
cb:90:ae:82:f0:3e:e4:15:0b:02:a7:94:a4:b9:b7:31:47:f3:
39:3d:bc:10:ad:ac:d4:1a:fa:a8:9b:6d:29:b9:55:85:8e:83:
74:fd:01:f2:bd:95:77:fe:10:86:82:50:7a:d5:e9:b2:18:25:
e7:f4:7a:0e:a0:2c:bb:d8:89:cf:14:6e:41:b8:ef:3b:1f:40:
52:47:92:46:95:e1:f7:ba:1b:76:c3:27:14:4a:96:77:98:dc:
6c:5f:9e:06:6c:95:f0:a6:86:bd:4a:8f:e3:c8:16:ca:79:d2:
56:31:4a:59:25:d5:31:db:9e:c8:24:ce:20:7c:85:bc:92:90:
50:6a:19:9a:1f:70:fe:e0:7b:d6:8f:05:82:d9:24:31:b8:e2:
0d:fa:c9:18:4f:4b:f7:bc:38:8a:9d:0b:7a:0c:cd:23:93:84:
1b:52:e4:bf:ab:5b:46:3a:b8:eb:a4:d8:68:bb:94:55:7c:3d:
c4:15:64:83:d4:0e:64:04:fa:97:ee:dd:fe:98:f1:cd:3f:73:
e3:fb:1a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org