Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/J9Ik-IjX1ceAiuPI-m9-km2csJk.roa
File: J9Ik-IjX1ceAiuPI-m9-km2csJk.roa (raw, json)
Hash identifier: ZlKMcCDnoYDBhlnfLIZOEpg9yrhJ9JTxRsrO0gABycg=
Subject key identifier: 27:D2:24:F8:88:D7:D5:C7:80:8A:E3:C8:FA:6F:7E:92:6D:9C:B0:99
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 01868C459188D02972E81AAA307CE57B2498
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/J9Ik-IjX1ceAiuPI-m9-km2csJk.roa
Signing time: Sun 26 Feb 2023 05:50:14 +0000
ROA not before: Sun 26 Feb 2023 05:50:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150249
IP address blocks: 2a0a:280:1000::/40 maxlen: 48
Validation: Failed, certificate revoked on Sat 05 Aug 2023 14:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8c:45:91:88:d0:29:72:e8:1a:aa:30:7c:e5:7b:24:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 26 05:50:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27d224f888d7d5c7808ae3c8fa6f7e926d9cb099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d5:0b:e0:7a:49:68:49:cf:f9:08:27:d2:91:
2f:2d:b3:1e:4c:b0:c3:ae:9d:8d:99:0d:c6:48:fc:
6e:59:71:6a:3e:a6:73:a1:e9:5d:23:ce:96:b1:c1:
27:11:bd:4f:f5:12:a4:82:2f:2e:2e:e5:4f:9e:cf:
3a:c9:d5:3e:7d:4c:d0:fc:74:a7:bc:2f:75:e1:76:
f6:4e:d5:96:99:75:26:5d:e5:6d:34:5a:0f:34:87:
9f:64:dc:33:2d:55:57:00:c6:d2:c7:dc:09:c6:a0:
aa:0a:8d:50:8e:50:60:d1:5a:92:f5:74:df:f7:e4:
36:30:a4:c9:87:ed:20:81:65:9c:13:f2:ca:5d:65:
41:16:7e:08:44:4a:0c:69:3f:96:51:42:07:d5:2a:
02:a7:0c:7b:d7:27:4b:f2:87:3a:ba:1a:09:37:fa:
68:0f:7e:ab:af:7a:3d:41:4c:99:15:91:66:06:f0:
21:49:64:26:a6:b9:41:6e:9e:be:47:28:2c:6d:b4:
10:48:f8:50:bd:4b:2d:a7:f6:02:3f:06:1a:d5:33:
85:4d:a8:94:22:6c:1a:6f:f6:3b:4b:11:48:7a:70:
1b:c9:25:dd:81:6f:9f:3c:27:89:6d:a6:8b:a0:88:
66:2f:9e:35:f3:2c:17:9a:93:61:b9:50:e8:76:34:
26:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D2:24:F8:88:D7:D5:C7:80:8A:E3:C8:FA:6F:7E:92:6D:9C:B0:99
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/J9Ik-IjX1ceAiuPI-m9-km2csJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1000::/40
Signature Algorithm: sha256WithRSAEncryption
06:f9:08:2d:70:83:d2:90:ac:67:2e:23:c4:47:be:8b:d9:f4:
78:27:cd:39:dc:a6:49:d1:15:4c:23:aa:cb:1c:5b:32:12:7f:
ae:13:58:b8:8c:d5:00:d2:70:29:38:41:23:a4:fb:71:a1:4b:
2f:a3:0d:69:aa:6e:38:c9:cc:2a:27:db:a8:8d:ae:66:1a:5b:
8d:77:44:3b:ed:05:1e:b9:81:c0:53:3f:95:25:18:6d:c2:f4:
84:aa:71:fa:cd:8d:df:ba:a8:a3:f2:8a:d4:06:96:c3:ad:39:
55:fa:90:4b:9f:6f:3f:0a:1d:0c:94:bd:8a:75:9a:66:08:81:
e7:79:2e:97:57:3d:f5:9e:93:4e:2e:55:0b:45:75:b4:0b:ec:
f5:70:b8:12:12:1c:19:86:84:e3:d1:2c:aa:35:07:f2:2e:6f:
91:ac:8c:40:56:30:70:c0:cf:ba:dd:5f:b4:2e:7d:8c:26:e4:
05:7f:6c:e7:33:22:57:60:26:8c:13:da:2a:7b:3d:76:48:dd:
fe:7d:9a:e8:6e:0a:f7:e2:61:85:6d:59:a9:f1:33:87:33:2a:
b4:01:29:07:d4:49:98:76:4b:69:48:fe:3a:23:67:e8:22:c1:
57:46:ed:87:07:91:c2:8c:f7:05:f0:ec:8d:de:86:4c:6d:7e:
c1:70:49:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org