Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/fr2XNpcImt0i73VOhdx1TvvLBIo.roa
File: fr2XNpcImt0i73VOhdx1TvvLBIo.roa (raw, json)
Hash identifier: MMHl5rmo4XLnGUGfQiKdl7uaSXV+TyA3AMLeTkRQtmE=
Subject key identifier: 7E:BD:97:36:97:08:9A:DD:22:EF:75:4E:85:DC:75:4E:FB:CB:04:8A
Certificate issuer: /CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Certificate serial: 018E27BF928ABCC85671B1B0A02F387B11B6
Authority key identifier: BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/fr2XNpcImt0i73VOhdx1TvvLBIo.roa
Signing time: Sun 10 Mar 2024 09:44:10 +0000
ROA not before: Sun 10 Mar 2024 09:44:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211521
IP address blocks: 2a0a:c743:1::/64 maxlen: 64
Validation: Failed, certificate revoked on Sun 10 Mar 2024 12:13:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:27:bf:92:8a:bc:c8:56:71:b1:b0:a0:2f:38:7b:11:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Validity
Not Before: Mar 10 09:44:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ebd973697089add22ef754e85dc754efbcb048a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b7:a6:35:49:3c:c1:4b:a8:ae:bb:15:4b:12:
32:b6:92:c4:c6:01:43:2a:c5:e2:cd:94:d8:58:1a:
93:54:8f:c3:f5:8c:63:b7:6a:97:d3:d9:a1:6e:0f:
7e:e3:83:78:3b:1b:c4:ee:09:cf:58:a5:8f:14:e2:
55:8d:f6:a0:86:a6:09:67:81:0c:ab:4d:5d:27:28:
7c:6e:1e:ae:74:31:4d:35:97:62:fb:85:b4:25:d2:
8a:d7:96:a1:1d:c7:f8:7a:1a:c7:84:29:ca:7b:97:
f5:b6:8a:17:88:4c:72:d2:b3:71:9b:b7:c0:fc:12:
c7:74:37:05:06:04:6a:9b:37:ac:d0:12:38:8c:d4:
46:b3:6b:86:24:58:17:14:7e:4b:82:a7:7b:7d:10:
71:d7:1c:37:f1:95:5c:5d:56:d4:0c:8d:f3:3a:60:
6f:2e:68:19:07:81:81:dd:e8:cf:85:cd:c9:b9:ff:
60:41:4b:7d:58:14:e5:32:d3:0f:ce:f6:a1:80:e5:
a6:33:ee:fd:0f:e6:01:31:ce:02:5a:15:02:7a:14:
d3:e7:f9:ba:38:7f:3d:ea:be:bb:f8:33:41:2d:a9:
c1:0c:b4:03:1a:02:2f:df:cf:80:eb:24:67:c7:33:
a0:e4:6e:e9:9d:f0:73:1f:76:b5:3c:24:5b:96:cd:
de:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BD:97:36:97:08:9A:DD:22:EF:75:4E:85:DC:75:4E:FB:CB:04:8A
X509v3 Authority Key Identifier:
keyid:BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/fr2XNpcImt0i73VOhdx1TvvLBIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:c743:1::/64
Signature Algorithm: sha256WithRSAEncryption
73:f8:9b:ea:33:0d:19:c8:7e:4f:5c:56:a1:1b:cf:0b:48:4c:
16:29:a2:3f:9c:7d:22:58:a8:1c:8b:d0:f4:8f:db:b7:c6:50:
65:fb:7d:41:48:94:51:1c:dc:f2:d3:28:d0:4c:5c:fb:ee:c2:
2c:9c:33:ff:b7:de:36:c8:d2:e3:f9:97:9e:9e:a2:11:db:d0:
89:16:a2:d0:4e:ad:60:44:c9:ba:34:5a:af:a3:70:fd:39:24:
5e:80:68:41:44:99:27:3b:4b:a9:30:cd:c4:64:4d:2f:eb:97:
60:fd:bb:e2:de:d9:3e:35:94:f9:c1:5d:77:25:8c:dd:56:97:
42:e8:94:12:63:21:94:e0:50:38:23:a7:ce:36:7d:56:2a:41:
70:be:36:c3:0d:b9:06:8b:9b:06:84:c0:f4:95:fb:3f:0b:fb:
84:6b:4c:9a:b9:46:01:c0:4c:02:3e:3a:0a:3c:6e:b3:52:0a:
0b:88:94:fd:59:f6:01:80:8d:c7:67:b4:79:0c:98:d4:b8:02:
9e:ce:82:d7:a6:66:4e:be:ed:81:6e:2f:21:cb:82:b2:0a:5b:
f1:a7:48:02:bd:cf:64:d8:9f:71:f3:7d:77:91:26:5f:d3:74:
c6:2b:cf:0b:5f:c6:e5:26:0c:41:92:12:69:11:fd:ca:27:dc:
9f:7d:9f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org