Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/OVb_JpxqIsU7VEepJS81ovvqA1M.roa
File: OVb_JpxqIsU7VEepJS81ovvqA1M.roa (raw, json)
Hash identifier: JwuiVBKMfexKpAKTqITKbMxaubNP/pUIHulwGkPpxrk=
Subject key identifier: 39:56:FF:26:9C:6A:22:C5:3B:54:47:A9:25:2F:35:A2:FB:EA:03:53
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186C17719BE06E0DB38D9981EAEA9D2C8D1
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/OVb_JpxqIsU7VEepJS81ovvqA1M.roa
Signing time: Wed 08 Mar 2023 13:44:13 +0000
ROA not before: Wed 08 Mar 2023 13:44:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200676
IP address blocks: 2a0a:280:1c00::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c1:77:19:be:06:e0:db:38:d9:98:1e:ae:a9:d2:c8:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 8 13:44:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3956ff269c6a22c53b5447a9252f35a2fbea0353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c5:78:f4:c9:09:4e:6f:80:86:da:4f:d1:10:
80:c2:e7:75:8e:d8:4c:d2:c8:22:fe:14:06:af:5f:
99:82:1c:af:16:ce:98:a1:9d:61:29:52:93:a4:2b:
80:c7:52:f3:4f:22:d5:0b:3c:8d:4c:28:b0:c4:90:
4c:d6:42:f4:72:38:e1:b4:ac:09:d7:0e:e4:be:db:
98:7d:c0:02:2c:28:9c:d8:82:83:17:e3:0f:88:88:
f8:3b:b1:ee:66:cc:e8:19:19:bb:94:60:95:76:6c:
f0:5e:be:f7:49:d7:7c:cc:37:21:ad:45:3f:df:09:
ae:34:7c:cf:bc:15:90:24:21:21:f4:6c:3f:80:73:
0f:07:13:72:75:d6:9c:8a:70:8b:4c:74:fe:da:e3:
22:d6:ce:77:58:e6:d8:d7:45:cc:56:ab:3d:c6:e9:
70:72:a8:4d:e4:d7:4c:4b:ec:5c:14:fe:2b:72:db:
1f:2b:a1:2d:d9:9a:f3:fb:1a:27:6d:6e:f2:0a:45:
c1:5a:43:17:24:31:59:1a:d3:dc:0f:c3:37:7e:ab:
41:2f:24:a0:e7:f7:dd:a6:bc:f9:60:3d:45:15:00:
81:de:34:e4:f9:ee:de:f5:fa:a6:d0:39:e9:34:36:
19:e1:a3:02:63:5d:ea:45:52:ca:e3:be:5b:cb:6d:
6b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:56:FF:26:9C:6A:22:C5:3B:54:47:A9:25:2F:35:A2:FB:EA:03:53
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/OVb_JpxqIsU7VEepJS81ovvqA1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1c00::/40
Signature Algorithm: sha256WithRSAEncryption
50:e7:ab:3d:db:db:76:e9:e7:2b:68:32:b8:1a:86:ac:2b:86:
06:3c:b6:d8:d6:41:d2:50:86:24:5f:30:c8:b2:80:84:d8:19:
cc:44:e6:ca:79:ce:53:95:22:e4:78:9e:0c:2e:10:16:4f:f4:
29:c5:38:cc:11:5d:51:fc:ab:0e:34:17:75:3c:07:ce:28:fa:
3a:ab:b1:1a:91:5c:21:41:e0:9f:83:2d:b8:d3:fb:2a:85:a0:
03:5f:53:a3:e7:5b:04:eb:99:f0:38:c7:ad:e4:6b:2d:59:9f:
bc:4a:97:12:d6:40:54:b2:bb:5f:9e:68:be:36:51:91:21:e3:
56:74:87:1a:79:1a:08:9f:d3:18:66:ca:fb:8a:10:1d:04:17:
5e:1f:0e:b6:58:97:0b:42:3b:2c:c5:f7:3d:3e:f0:50:76:d6:
03:62:2f:d5:36:f5:1b:69:bd:7f:ce:f2:3c:9d:6c:73:17:35:
db:f1:5c:19:1c:07:ec:e5:74:03:fe:65:19:ff:fd:e5:5d:27:
e7:f9:3a:03:60:90:38:c9:2f:f3:fc:03:2b:7e:ec:02:14:50:
7b:d3:07:a7:6f:86:e5:75:5b:94:28:82:c6:c5:fb:91:41:8b:
cd:ba:7d:40:02:6b:ff:dc:26:9d:ad:ee:2c:a3:6a:95:a6:d7:
25:96:c4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org