Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/e7Mf4chBbAQWcUHbtw2rT0q8nc4.roa
File: e7Mf4chBbAQWcUHbtw2rT0q8nc4.roa (raw, json)
Hash identifier: uiZTJOEr/gJYP7BmjGe2I8u44rAhmi5Aadi9jwQBaUo=
Subject key identifier: 7B:B3:1F:E1:C8:41:6C:04:16:71:41:DB:B7:0D:AB:4F:4A:BC:9D:CE
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018757FA6CBF3FA29FD31B25564CEC38A202
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/e7Mf4chBbAQWcUHbtw2rT0q8nc4.roa
Signing time: Thu 06 Apr 2023 19:10:42 +0000
ROA not before: Thu 06 Apr 2023 19:10:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199656
IP address blocks: 2a0a:280:2700::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:57:fa:6c:bf:3f:a2:9f:d3:1b:25:56:4c:ec:38:a2:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Apr 6 19:10:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bb31fe1c8416c04167141dbb70dab4f4abc9dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:ab:5f:98:ff:9a:90:17:ab:b4:98:56:ca:
6f:c0:a0:74:75:6a:07:63:0b:77:0d:c7:54:90:0a:
2c:09:7a:cf:78:1a:56:c6:d2:6f:20:7f:27:0c:0c:
79:13:bc:2e:c2:b3:ac:e4:5b:49:5f:45:cd:43:c7:
63:c9:29:33:30:4c:01:4a:6b:e8:46:a3:ba:4a:92:
48:ce:a6:3d:86:be:53:df:a3:2f:3b:b9:dc:ec:b6:
35:bb:30:76:ff:9c:d2:62:a1:b9:a1:5e:82:ba:d4:
b1:c0:67:95:7a:a5:86:9f:36:23:7e:9f:82:01:13:
0e:45:b2:ed:e0:1e:b5:0f:34:68:77:7c:1e:d8:47:
e1:17:32:31:a1:c3:96:cb:d4:b8:49:e3:2f:62:06:
54:2c:8f:d6:77:77:93:86:66:2f:96:e9:23:45:b6:
b3:a5:6e:11:b0:e9:13:fc:5d:84:b5:ff:64:a5:c4:
ee:a4:0b:10:0f:e9:e0:0e:8c:26:da:2e:dc:1b:34:
85:19:e3:f4:a4:82:8f:5d:b7:1f:5f:43:d7:1d:44:
8d:eb:ea:8c:0e:ae:f6:ff:17:96:13:a6:06:a0:15:
0d:8d:cb:15:56:7a:24:d3:1f:61:52:3c:28:e0:2c:
bf:12:ed:9e:4b:ed:ff:1c:c8:46:49:0c:e2:64:dd:
2b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B3:1F:E1:C8:41:6C:04:16:71:41:DB:B7:0D:AB:4F:4A:BC:9D:CE
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/e7Mf4chBbAQWcUHbtw2rT0q8nc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:2700::/40
Signature Algorithm: sha256WithRSAEncryption
2f:a7:cc:88:15:e3:ba:5f:1e:fd:94:ae:96:1c:ad:26:77:35:
9f:b0:f6:b3:44:ca:1a:db:e7:54:ca:eb:c2:5b:ad:ae:26:5f:
92:e0:07:1d:16:b2:60:d1:5c:12:b0:ea:be:95:82:5b:f8:73:
30:1e:9f:6b:14:7c:95:cc:d6:82:20:29:e4:a1:15:c6:01:5f:
4b:14:83:05:5a:76:76:db:73:51:90:c4:95:a8:5f:bf:ef:55:
f5:05:bb:59:a3:5d:9d:ea:11:73:e5:8d:18:b5:67:59:da:bc:
9e:9f:3f:a9:45:36:6d:da:a5:70:9c:26:97:a5:d7:f8:7e:e6:
7c:eb:fe:31:fe:ff:53:c3:b5:81:2f:eb:44:84:ec:ca:99:fd:
3e:b2:e9:a3:b4:4e:2a:ae:3b:e1:b2:4a:af:c8:9c:7a:a2:61:
bb:ae:cc:55:e6:be:70:5a:c4:2b:35:7e:36:53:cd:94:7e:0b:
2a:f0:49:47:97:2a:db:69:2c:1b:3b:fe:22:19:0b:df:73:44:
65:2a:31:75:ed:5a:17:94:2a:f2:74:6b:33:88:8d:a9:43:91:
f5:af:1e:9d:7c:c1:8c:46:24:e6:81:5a:ad:d8:99:ab:1a:ca:
3c:a2:4a:4a:77:bf:7a:f8:24:a5:b1:0e:e0:37:4b:87:5b:05:
4d:95:d5:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org