Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9qx1LFGU8-6QcWt_QneyfjGAD5E.roa
File: 9qx1LFGU8-6QcWt_QneyfjGAD5E.roa (raw, json)
Hash identifier: wx7FaKByVApaC4ExsflXGF3iBdNIzKmhqM78nwDWEBw=
Subject key identifier: F6:AC:75:2C:51:94:F3:EE:90:71:6B:7F:42:77:B2:7E:31:80:0F:91
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186C0B9668BBE3334C8EA3A1E87649DB4CB
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9qx1LFGU8-6QcWt_QneyfjGAD5E.roa
Signing time: Wed 08 Mar 2023 10:17:01 +0000
ROA not before: Wed 08 Mar 2023 10:17:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48818
IP address blocks: 2a0a:282::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 11 May 2023 04:44:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:b9:66:8b:be:33:34:c8:ea:3a:1e:87:64:9d:b4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 8 10:17:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6ac752c5194f3ee90716b7f4277b27e31800f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:85:29:3c:19:5a:3b:79:bf:fa:7d:35:a8:a7:
cd:ad:de:d9:90:85:20:f1:dc:7e:1f:4e:a5:34:06:
9c:b3:18:19:e5:85:43:d8:03:9a:7a:7b:03:bd:46:
12:12:4f:70:dd:7f:59:2f:10:c4:9c:94:a0:51:fc:
f3:8e:fb:64:21:ca:0c:0d:8a:e3:74:54:55:f9:6f:
34:12:ef:ea:20:4c:b6:9a:4d:07:bd:0c:f7:9f:f3:
aa:d8:aa:61:fd:46:1c:6f:72:cf:be:6c:bf:b2:71:
90:22:d1:8e:76:53:7f:22:47:e8:c5:be:76:be:e1:
02:0b:5d:6c:63:8f:24:74:84:2a:2b:00:b0:4b:f3:
fc:54:78:da:a9:95:1d:f9:d7:aa:76:36:16:62:5e:
5e:60:f3:51:b9:0d:ac:2d:a9:1b:cb:03:0e:38:e8:
31:0c:d9:40:1f:70:8e:8a:98:53:71:96:5e:cf:cc:
7b:a0:14:a6:ec:cc:81:ce:d0:91:67:12:d7:29:7d:
e1:a4:71:dc:5f:aa:60:6d:f8:79:14:cf:ac:96:89:
59:b8:37:a8:37:9f:8f:8f:a9:7b:b0:5f:df:90:c1:
3e:fa:6d:6d:ee:2b:c4:4e:83:a8:7d:b1:dc:e9:fc:
4b:36:40:04:26:4b:5a:c0:90:9a:b3:04:c7:2b:fc:
67:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AC:75:2C:51:94:F3:EE:90:71:6B:7F:42:77:B2:7E:31:80:0F:91
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9qx1LFGU8-6QcWt_QneyfjGAD5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:282::/32
Signature Algorithm: sha256WithRSAEncryption
23:f7:79:80:14:6f:fa:26:e2:51:1a:b4:48:8d:a5:57:fa:39:
f6:83:67:25:07:66:23:f5:56:d0:7a:49:3d:50:dc:03:13:0f:
f6:0b:54:06:65:af:51:58:26:d4:22:91:f1:74:1f:35:3c:2d:
ea:14:26:5a:6b:a9:64:60:5b:b6:a0:8a:13:49:47:ce:6d:b6:
d8:4c:62:f3:1a:d0:4b:fd:f6:38:95:af:a1:4c:1f:ff:fb:ea:
86:3e:47:cb:2c:96:50:59:89:70:65:31:4c:30:51:38:45:7e:
e9:95:23:ab:06:d4:49:79:1c:1f:ad:d1:52:68:42:0e:88:dd:
4e:7d:1e:be:ed:b1:73:4f:69:a2:73:67:de:66:67:69:50:e7:
60:b4:2b:17:68:97:8f:8a:97:9b:20:e8:69:9b:0c:04:66:72:
52:8c:59:14:ab:2f:80:cc:fa:ed:5e:a5:c7:74:c6:5e:ba:60:
62:82:24:86:77:70:8d:fe:ef:38:1d:b4:82:49:2c:ef:8d:3b:
24:70:c6:9e:2a:df:92:99:fc:b0:94:e8:19:6c:f1:48:e8:21:
0b:38:98:10:e8:33:aa:b3:3a:50:37:9c:65:d0:b0:af:03:f6:
4c:b1:e9:00:02:2c:53:d7:09:78:0e:13:5e:43:84:fc:a1:ae:
66:da:50:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org