Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/6nGSDpt3p9ziF31teopOu5KhoEY.roa
File: 6nGSDpt3p9ziF31teopOu5KhoEY.roa (raw, json)
Hash identifier: js21VBFRlz4ppZquaxSyzq5mbVgkK8GVXZq8iX6sZXU=
Subject key identifier: EA:71:92:0E:9B:77:A7:DC:E2:17:7D:6D:7A:8A:4E:BB:92:A1:A0:46
Certificate issuer: /CN=dc1089c942b68033683b4dd506c0c36f74be0ea3
Certificate serial: 0185BC61C3EEDD35392BD81C49E725D898AD
Authority key identifier: DC:10:89:C9:42:B6:80:33:68:3B:4D:D5:06:C0:C3:6F:74:BE:0E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BCJyUK2gDNoO03VBsDDb3S-DqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/6nGSDpt3p9ziF31teopOu5KhoEY.roa
Signing time: Mon 16 Jan 2023 21:00:01 +0000
ROA not before: Mon 16 Jan 2023 21:00:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26073
IP address blocks: 2a09:a446:1337::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bc:61:c3:ee:dd:35:39:2b:d8:1c:49:e7:25:d8:98:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc1089c942b68033683b4dd506c0c36f74be0ea3
Validity
Not Before: Jan 16 21:00:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea71920e9b77a7dce2177d6d7a8a4ebb92a1a046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3b:db:23:4a:2c:6e:34:eb:c7:25:0c:58:e9:
28:b6:f8:7d:ee:75:84:78:f8:7a:8d:c4:7a:8a:03:
6d:60:d5:dd:69:01:de:8f:6f:03:94:a4:9a:a1:b9:
9b:06:a9:b4:97:c4:14:e5:da:55:3b:ce:96:20:14:
42:d5:8e:47:8e:fe:09:90:1c:14:fc:6a:8d:72:db:
a6:62:e9:d7:ed:4c:79:9a:01:6f:89:02:3b:9d:bd:
8f:a9:08:62:7c:1b:96:cc:66:72:29:4b:5b:bc:41:
5e:c2:46:65:9d:03:a1:11:e8:05:bd:aa:41:13:e7:
39:e8:81:22:30:94:10:37:06:9e:2b:db:f4:e8:bc:
01:3c:a0:82:01:6c:04:27:12:ef:4a:7a:ea:1b:28:
b7:b6:e5:ce:a7:01:60:5f:19:c7:0c:ff:68:5b:fa:
36:d7:c1:d1:a8:78:03:ed:24:dd:b2:8f:56:61:1d:
43:5a:17:2c:a0:d5:76:af:2f:19:7b:ee:7d:97:d4:
68:ba:bc:8e:6f:10:57:29:7d:55:46:9c:75:4d:64:
e5:7b:96:a4:97:4a:a0:b1:40:0e:84:9c:b6:14:b9:
14:4d:ba:20:ce:a2:79:92:65:9e:e7:e3:44:19:7e:
82:f6:68:83:9a:41:b6:9e:a3:53:df:20:08:ab:b5:
df:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:71:92:0E:9B:77:A7:DC:E2:17:7D:6D:7A:8A:4E:BB:92:A1:A0:46
X509v3 Authority Key Identifier:
keyid:DC:10:89:C9:42:B6:80:33:68:3B:4D:D5:06:C0:C3:6F:74:BE:0E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BCJyUK2gDNoO03VBsDDb3S-DqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/6nGSDpt3p9ziF31teopOu5KhoEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/24149d-d115-4330-bd49-cb56ed3ea7fa/1/3BCJyUK2gDNoO03VBsDDb3S-DqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:a446:1337::/48
Signature Algorithm: sha256WithRSAEncryption
aa:a9:f2:e1:fa:9f:0b:3b:2d:65:2a:65:67:ec:56:d6:a4:14:
a6:24:24:6f:fc:4f:23:fe:85:1f:df:7f:09:98:23:43:c4:3a:
93:30:ff:9d:c8:63:4e:1b:d3:6a:b4:bb:81:42:f0:93:cd:83:
2f:50:71:f5:81:7f:f1:09:9b:b4:a5:9c:d1:4f:92:ec:08:72:
83:5f:98:69:18:60:fc:b4:45:bf:49:ec:95:29:91:4f:44:02:
01:a2:3e:16:d6:7e:44:9c:36:d5:c0:59:01:b9:c7:96:37:8f:
92:3f:b7:b2:a5:2a:2e:4b:5c:d3:0f:03:65:5a:71:e5:cf:d8:
2f:f3:ae:af:ab:a2:fe:48:37:63:12:99:20:e2:8c:e9:ba:6a:
c1:aa:32:7d:22:a8:1d:06:69:c6:75:59:16:c8:fe:34:3c:12:
62:5f:f7:21:5d:1f:b7:e9:2f:a8:1b:56:54:13:82:05:b0:4b:
b4:bd:ab:ec:49:e8:41:50:ac:66:5d:42:7c:b2:72:90:4a:9f:
f1:c6:75:48:bd:fe:00:44:e7:16:cf:14:c1:f4:fd:bd:74:13:
82:c6:8b:7b:07:ef:5c:14:49:c8:9f:18:c3:f7:47:2d:cf:4a:
b9:61:32:12:00:d4:e5:4b:0e:7f:7b:a2:f1:54:03:f4:b1:67:
00:6b:85:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:46 2024 by rpki-client on console-fra.rpki-client.org