Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/LfDkwWNDsO09LD3oRfHbmGgMclA.roa
File: LfDkwWNDsO09LD3oRfHbmGgMclA.roa (raw, json)
Hash identifier: zjlRDzoSFuPyBJBwhZ/xebIO/46rAB/WfbfgpnRpVgU=
Subject key identifier: 2D:F0:E4:C1:63:43:B0:ED:3D:2C:3D:E8:45:F1:DB:98:68:0C:72:50
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018B4849771BCDCA5BE4374171BFAF7FA627
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/LfDkwWNDsO09LD3oRfHbmGgMclA.roa
Signing time: Thu 19 Oct 2023 14:14:15 +0000
ROA not before: Thu 19 Oct 2023 14:14:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216393
IP address blocks: 2a0a:280:3000::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:48:49:77:1b:cd:ca:5b:e4:37:41:71:bf:af:7f:a6:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Oct 19 14:14:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2df0e4c16343b0ed3d2c3de845f1db98680c7250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:93:92:d3:2e:70:ec:39:df:cd:17:3b:ef:02:
12:39:e9:05:d9:f4:35:f2:c1:cf:9d:4e:1f:04:28:
02:fa:cd:91:f8:ed:8b:e2:1c:d9:a4:17:b2:56:54:
bb:ef:3a:23:fc:2e:e6:3a:62:66:f6:ce:52:de:1d:
9c:b4:5a:38:6b:64:43:e6:0a:03:90:fb:a7:bf:d7:
21:b6:3d:1d:fd:3a:32:08:51:16:63:81:6c:21:5d:
a5:cb:a9:43:56:66:06:59:e4:5c:eb:02:ea:6d:b3:
ac:53:d0:c9:be:dd:f4:44:cd:63:8c:31:89:0d:b9:
09:c1:1c:79:94:ea:a4:1d:dc:b3:36:f9:18:5b:96:
e5:b7:a1:8a:24:99:51:ba:cf:5e:b3:9d:ae:ad:6a:
af:eb:15:41:e3:4f:cf:c6:ec:83:73:bf:55:5a:6f:
65:e0:d5:82:46:4e:16:a5:a0:39:1c:e9:f1:64:f4:
e9:2d:95:10:35:0f:2e:18:3b:27:2b:22:4a:6f:2a:
4e:d8:09:88:01:4b:db:9b:c6:48:cb:0e:f6:a2:40:
34:41:5e:1b:e5:b4:e5:40:9f:0d:a5:46:cd:3e:c4:
20:4b:40:72:6e:a9:d6:32:4e:4c:37:15:96:29:7d:
cc:8c:ea:18:b8:ad:cc:a2:ac:2a:c1:08:56:1c:48:
5d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F0:E4:C1:63:43:B0:ED:3D:2C:3D:E8:45:F1:DB:98:68:0C:72:50
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/LfDkwWNDsO09LD3oRfHbmGgMclA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:3000::/40
Signature Algorithm: sha256WithRSAEncryption
76:aa:57:d5:4c:4a:db:fa:8c:15:fe:50:b1:3b:67:2e:9f:d1:
19:41:c6:55:5f:18:ae:ef:2a:7b:39:1b:dd:03:4f:5a:01:39:
ea:af:11:4b:bd:e2:2b:46:85:d2:e8:88:87:60:a6:ff:e6:3b:
19:5b:21:27:52:73:08:d3:9a:5f:15:65:ff:80:50:b6:2e:52:
94:64:01:32:8b:0b:c6:65:0d:7d:06:82:b6:5c:fb:97:13:2c:
c9:d3:7a:7e:c1:1a:64:4d:3a:13:e1:91:7a:c9:ff:83:32:d8:
bd:69:9d:87:f8:50:36:17:ba:bd:7f:2d:7d:0f:75:d8:74:32:
34:8b:d7:6f:0e:43:08:97:ac:0a:35:d6:1d:47:af:08:81:75:
d3:43:52:f8:b4:ad:a3:10:09:53:cc:5d:bc:b7:f0:3d:50:2e:
ce:ad:83:af:a9:3b:96:ea:c6:aa:27:c3:2a:6f:c3:e2:0f:ca:
24:c3:8c:48:8f:93:db:6d:d4:46:51:13:13:09:89:35:cc:af:
7d:02:ff:16:a2:b6:55:ad:66:bb:7e:5b:da:1f:38:47:67:fa:
db:44:79:b5:cf:37:5d:8d:4a:20:7e:d6:9c:99:4a:55:be:ae:
e3:69:54:35:ba:8a:ba:52:75:e8:82:c9:21:a4:24:30:89:63:
23:04:be:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org