Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/dIymtOYMECeNWn8wfPDi5mKZPDk.roa
File: dIymtOYMECeNWn8wfPDi5mKZPDk.roa (raw, json)
Hash identifier: 2kfMmL+JqY/kOQD9II3imhfU4r5Nkgn93S9CEO0CrG4=
Subject key identifier: 74:8C:A6:B4:E6:0C:10:27:8D:5A:7F:30:7C:F0:E2:E6:62:99:3C:39
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186EE9C02D3B9BD1ED50EE78B5C47168A20
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/dIymtOYMECeNWn8wfPDi5mKZPDk.roa
Signing time: Fri 17 Mar 2023 08:07:27 +0000
ROA not before: Fri 17 Mar 2023 08:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199376
IP address blocks: 2a0a:280:1200::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:9c:02:d3:b9:bd:1e:d5:0e:e7:8b:5c:47:16:8a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 17 08:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=748ca6b4e60c10278d5a7f307cf0e2e662993c39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b9:e8:83:1a:d1:75:17:2a:7d:ab:2b:e8:af:
bf:e9:7c:0f:76:9a:93:f8:d0:c2:fb:3e:74:b9:f9:
33:53:24:31:ea:c4:26:44:f0:20:d6:e0:34:ff:b8:
49:e5:dd:ac:b3:82:f4:61:b2:4b:1b:a9:b4:e9:7e:
08:b5:5c:43:b4:5a:8e:d0:7a:23:68:4b:27:fb:f9:
a7:48:f7:a1:fb:90:ec:e1:49:8c:1f:8f:11:00:15:
73:55:dd:28:0f:26:e6:7b:88:8a:14:6e:2c:e8:46:
97:61:7f:e9:72:40:ac:bb:22:69:e2:4d:84:f8:3b:
ed:11:17:e0:cd:2d:a6:39:55:be:58:52:06:a4:0e:
96:3e:3c:4c:04:d9:81:d6:a0:48:99:10:02:a4:cc:
ba:ff:3d:ad:2d:d3:8b:55:63:ef:38:03:65:6c:44:
3b:71:57:d9:74:18:08:af:48:21:e8:f1:be:6d:2b:
6c:a7:7b:cb:b0:0e:f8:65:a4:24:60:e1:5f:4e:e0:
a3:7b:3f:02:38:bb:83:84:d8:d1:db:c4:ef:25:79:
29:66:0e:97:5f:23:ab:8b:1b:08:31:9a:2b:c1:6d:
cb:1a:41:ba:85:5d:39:5c:4f:bd:8d:47:08:e9:64:
bf:0d:df:ea:be:7c:ff:7a:60:07:42:41:0c:7a:8a:
b2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8C:A6:B4:E6:0C:10:27:8D:5A:7F:30:7C:F0:E2:E6:62:99:3C:39
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/dIymtOYMECeNWn8wfPDi5mKZPDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1200::/40
Signature Algorithm: sha256WithRSAEncryption
1e:4b:7c:95:89:5f:4f:ef:2b:a2:69:a5:a8:58:af:bb:0d:99:
5c:44:18:9e:bf:06:e8:6f:0b:64:74:6a:78:81:8b:8e:25:49:
9e:3f:6f:28:da:13:4e:88:37:b3:93:44:1b:58:cf:d2:c3:39:
76:33:f0:69:c5:ed:34:4a:72:51:12:ae:e7:ea:47:65:35:e8:
46:e6:d8:e5:d3:c9:2d:2f:85:54:87:db:38:ce:1c:a5:4d:ee:
be:12:29:b4:da:7d:d6:b2:55:b5:44:de:f0:88:67:aa:c1:32:
14:43:b2:f6:8c:70:10:10:1e:47:f0:85:cb:bf:24:35:fa:a9:
eb:37:db:de:9c:5d:48:01:17:24:18:cb:7a:1c:57:7f:5d:a5:
d5:64:ff:05:00:38:d4:6a:ee:6b:5f:37:11:99:99:70:9c:4d:
bb:62:e4:75:bd:d8:e4:bb:11:ae:50:0e:6e:47:e3:5e:4f:ec:
11:7c:b2:1d:57:48:b2:a6:6b:82:79:85:79:97:ea:b9:9e:df:
b2:ab:35:f3:16:fc:98:79:e4:de:ab:e2:57:6c:9f:d4:a4:15:
0f:37:9a:b3:8b:0b:f5:d6:03:5d:a1:0e:78:95:a8:a1:fc:0b:
74:e0:a7:f7:ee:97:48:02:cd:87:85:e5:34:32:e0:a0:ba:d3:
0e:f8:a4:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org