Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/tLNWubtqNIGR2OAR-cVO3xGnCCs.roa
File: tLNWubtqNIGR2OAR-cVO3xGnCCs.roa (raw, json)
Hash identifier: qNshwatlPyfchaQtXK3ZGlyLRVnrQ94GVSg0ykZPbwo=
Subject key identifier: B4:B3:56:B9:BB:6A:34:81:91:D8:E0:11:F9:C5:4E:DF:11:A7:08:2B
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186C4B8396BECAB4600552F3F61127068CF
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/tLNWubtqNIGR2OAR-cVO3xGnCCs.roa
Signing time: Thu 09 Mar 2023 04:54:13 +0000
ROA not before: Thu 09 Mar 2023 04:54:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203069
IP address blocks: 2a0a:280:1e00::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c4:b8:39:6b:ec:ab:46:00:55:2f:3f:61:12:70:68:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 9 04:54:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4b356b9bb6a348191d8e011f9c54edf11a7082b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:65:f3:d3:d8:73:86:30:76:61:ce:0c:f1:
ad:87:31:df:99:9f:46:c1:a2:42:6f:df:20:52:3e:
65:18:aa:37:a4:29:a1:e6:5c:79:98:5a:9e:08:39:
54:37:0f:dd:6a:30:45:12:96:6f:45:35:b3:f5:ba:
71:e0:74:9d:2a:e1:c0:30:ff:92:43:59:58:9c:3f:
34:97:91:39:9a:fb:6b:c0:55:06:d2:80:63:68:87:
65:90:c8:19:87:36:bc:41:1a:3f:de:79:2b:6e:f4:
b6:d5:db:69:75:ca:7a:a0:dc:9b:ac:92:57:93:d4:
6d:cd:1e:43:8d:16:f1:cf:f1:7a:aa:ac:c9:21:37:
79:09:66:9e:b2:91:7a:60:78:36:6e:c1:8d:cc:6f:
4a:12:4b:f8:69:f1:d5:e9:7f:c8:96:70:d5:02:8e:
18:3f:82:f0:0e:58:66:08:ef:10:24:45:01:de:0c:
82:7a:2e:c8:d4:7d:82:50:c9:34:4a:f5:b1:e1:54:
78:4c:ba:45:48:d3:69:72:0e:84:a2:f9:ad:d1:fb:
b6:a5:b9:bd:d8:d0:af:2d:b6:09:33:26:77:17:47:
ce:b0:01:6a:34:93:4e:a8:ad:c1:e7:b4:df:33:a4:
b6:59:ee:c1:50:60:b5:84:69:24:29:45:3c:f1:56:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B3:56:B9:BB:6A:34:81:91:D8:E0:11:F9:C5:4E:DF:11:A7:08:2B
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/tLNWubtqNIGR2OAR-cVO3xGnCCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1e00::/40
Signature Algorithm: sha256WithRSAEncryption
7a:be:f3:be:87:f5:4c:e6:c2:c0:28:ab:fb:5e:22:e7:9a:15:
ab:cf:87:e8:d8:b0:49:77:a2:17:47:e2:bf:0f:74:1b:fe:de:
34:46:12:7f:94:93:e3:44:11:35:80:65:b5:d3:d8:8c:78:19:
29:05:1d:f8:2b:49:26:29:ee:20:9a:d3:e1:e0:c9:b4:2e:46:
dc:54:c4:ae:9c:a6:e3:a5:ba:23:56:6c:2f:b2:d7:84:cf:bb:
4f:6d:8d:06:99:86:1f:af:37:90:de:ab:3b:94:0b:38:c5:c8:
61:0d:06:19:8b:97:38:23:43:98:38:bd:85:89:df:e8:fb:68:
c9:38:22:38:cf:a7:f1:cb:49:98:cf:f4:7b:8e:49:60:26:30:
e6:fe:71:d7:29:d8:c8:9c:7e:3d:7b:4d:c7:83:1a:48:4e:98:
85:97:d6:2f:54:0e:01:3f:72:74:8f:41:50:da:42:20:2f:9c:
33:d2:f9:b6:b5:c1:6b:8f:6e:52:de:c0:6c:02:12:49:8b:ca:
30:51:27:f5:0b:6d:b3:3c:5b:ca:87:86:e6:a1:72:21:dd:c9:
e1:c8:96:a6:30:1a:ac:51:9b:9f:bc:c1:0d:4a:d5:3e:02:3b:
e8:7b:e2:3f:77:91:b8:03:a9:e5:5e:21:44:81:67:d9:6f:07:
93:ef:ea:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org