Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/tml47Hal2F7s0n3D0JflyZJRl9E.roa
File: tml47Hal2F7s0n3D0JflyZJRl9E.roa (raw, json)
Hash identifier: y5i6+Eg/rvkTwUtM5zfy3BttjAJLZ3XAAic7EptW6jY=
Subject key identifier: B6:69:78:EC:76:A5:D8:5E:EC:D2:7D:C3:D0:97:E5:C9:92:51:97:D1
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186C60B261BF19E677D61D0B246CD287CAE
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/tml47Hal2F7s0n3D0JflyZJRl9E.roa
Signing time: Thu 09 Mar 2023 11:04:24 +0000
ROA not before: Thu 09 Mar 2023 11:04:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208510
IP address blocks: 2a0a:280:2000::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:0b:26:1b:f1:9e:67:7d:61:d0:b2:46:cd:28:7c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 9 11:04:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b66978ec76a5d85eecd27dc3d097e5c9925197d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:90:35:26:0d:0a:a0:f5:89:42:6d:d6:ef:5f:
8d:ee:72:3b:a0:51:39:07:5b:00:57:a5:69:a5:87:
cc:83:92:68:3d:52:3a:f6:d3:8d:e0:96:b5:58:0a:
8f:e3:1f:f5:fc:3f:f8:4a:14:e6:3a:05:84:4f:5e:
92:ad:af:47:eb:f6:1a:39:7d:74:58:c3:3e:d5:5e:
ff:cb:ce:fb:56:7f:b1:91:2a:fd:ed:c0:c6:75:84:
2f:66:80:e1:1b:5a:cb:86:a7:5b:64:c8:c9:b0:16:
5e:33:6e:5f:bd:92:6a:3e:f3:c5:b4:f3:3c:26:c2:
db:4a:51:7e:3b:eb:01:83:ac:7c:7b:9f:7a:99:b0:
55:e0:b2:dc:35:ec:ce:a4:16:d7:6e:d4:6a:5a:16:
4c:d1:72:34:8a:14:aa:e6:09:79:8d:b3:86:d2:e9:
d0:02:7b:75:1d:70:17:dd:58:a0:62:0e:ad:3c:97:
85:1e:e3:f7:42:24:a5:69:18:c7:2f:d6:36:7b:8e:
86:cc:35:a5:2d:2e:0c:d0:f9:f3:b9:91:9b:54:29:
c1:11:d0:71:48:c3:95:fd:2e:1b:3b:fd:5f:d0:3a:
17:54:ac:6a:79:a5:42:25:30:df:77:0e:7c:df:10:
f5:cb:2b:d1:fc:e5:a1:e1:b8:61:17:c3:a1:67:16:
fc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:69:78:EC:76:A5:D8:5E:EC:D2:7D:C3:D0:97:E5:C9:92:51:97:D1
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/tml47Hal2F7s0n3D0JflyZJRl9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:2000::/40
Signature Algorithm: sha256WithRSAEncryption
7d:bf:88:d3:e8:1b:8e:fc:e1:1e:e7:55:96:7e:51:48:d7:28:
fe:49:62:e6:c3:f3:91:30:75:d7:27:ee:77:c2:cb:7b:d5:c6:
61:bd:21:83:a9:79:a9:6c:5b:ad:ce:1b:97:94:c4:77:12:34:
7a:7a:a0:df:19:10:47:e5:b3:80:bb:ef:e8:cf:8b:82:5d:9d:
9b:26:90:9f:2c:38:fe:dd:26:6f:48:ee:75:4c:99:24:b2:a7:
a2:dc:ca:a2:e1:3d:14:8e:b2:b0:69:29:57:35:68:a0:d1:b8:
d6:0c:ca:8f:db:a8:32:da:da:10:74:a5:8d:48:7c:bc:a7:23:
75:fe:67:9b:ba:f6:61:d2:c1:a0:df:fe:12:94:e2:95:59:88:
49:a3:a6:85:4e:9f:a1:64:f6:9d:5a:07:2b:00:b8:79:b6:5c:
73:a2:e6:e6:57:11:e4:4a:b5:fe:f9:43:b4:bc:4f:a9:42:65:
c2:b8:e4:c4:46:03:52:11:1b:39:86:b3:f2:31:00:3e:91:8f:
17:f8:ef:11:d0:cc:f7:48:9a:0a:d7:91:c6:68:d6:0e:52:d6:
9a:57:db:e0:bd:9a:9e:ed:28:0b:20:e1:14:bd:9e:36:08:94:
72:5d:fc:d6:71:c2:0c:bf:56:cb:39:6c:f5:ac:ae:31:50:65:
24:b8:ba:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org