Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/C7ahTULaNqdU6KvjUEvvWXUKqwM.roa
File: C7ahTULaNqdU6KvjUEvvWXUKqwM.roa (raw, json)
Hash identifier: Ii/MikedLvYnODolpgya0b/KiMZkfvJPyK5euuyRDK4=
Subject key identifier: 0B:B6:A1:4D:42:DA:36:A7:54:E8:AB:E3:50:4B:EF:59:75:0A:AB:03
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 018A7FE81B7C22FA5C059374499308B8F914
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/C7ahTULaNqdU6KvjUEvvWXUKqwM.roa
Signing time: Sun 10 Sep 2023 16:23:52 +0000
ROA not before: Sun 10 Sep 2023 16:23:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207902
IP address blocks: 2a0e:7900::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7f:e8:1b:7c:22:fa:5c:05:93:74:49:93:08:b8:f9:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Sep 10 16:23:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bb6a14d42da36a754e8abe3504bef59750aab03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f1:87:35:e8:4a:9d:13:2f:40:e4:f5:8b:59:
45:15:a4:6e:e9:87:0a:ff:32:52:ee:13:dd:a2:7b:
80:b6:21:b5:46:b2:03:77:cc:a4:e8:57:b0:8b:83:
9c:92:6c:d5:f7:4e:78:28:12:81:30:5e:2c:80:99:
18:46:b4:be:ed:c9:2e:ae:1a:7b:97:6b:07:35:8a:
9e:c1:af:30:bc:c8:11:7d:e1:84:6a:d1:38:91:5b:
06:b1:61:ab:6f:80:c2:bf:77:62:8c:8e:bb:c5:9a:
17:cb:d3:46:44:c0:90:5f:98:e6:53:ab:cd:18:cb:
c6:c0:80:35:c8:3b:a6:70:59:ee:31:34:01:2b:06:
7d:c4:5b:3f:2c:eb:a7:c6:e0:7d:63:74:d4:3e:72:
9e:82:6d:c5:70:38:89:f0:dd:b2:b6:03:8a:3a:d1:
4e:1c:2a:a2:a8:59:36:3c:9c:5e:24:99:7c:a9:51:
99:80:b0:4e:51:0e:e7:85:f6:1e:cd:fc:bc:f9:7f:
2e:10:6a:49:27:d8:7c:fa:c7:c2:cb:21:11:d7:da:
e3:a8:2a:4c:7c:41:51:3b:37:e9:3c:cb:59:05:53:
c1:c4:bc:97:31:75:8c:2f:a6:3b:9b:da:80:bb:f2:
bf:b5:7e:ee:db:68:d5:b6:37:4b:66:c8:9e:09:a2:
05:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B6:A1:4D:42:DA:36:A7:54:E8:AB:E3:50:4B:EF:59:75:0A:AB:03
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/C7ahTULaNqdU6KvjUEvvWXUKqwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7900::/29
Signature Algorithm: sha256WithRSAEncryption
29:b5:1c:a8:d2:c4:6c:4f:23:b1:a9:87:36:d3:93:2c:d2:61:
6c:39:3a:88:e5:44:b4:ff:c0:65:1f:2d:9d:8f:e0:39:55:9b:
03:ef:48:51:e4:9b:08:c2:b4:d3:38:ab:77:a0:c9:3f:34:9f:
d7:42:4f:75:73:34:ff:0b:0f:c1:df:d3:3a:c1:94:09:a1:e4:
3a:f6:b5:77:fe:d2:5d:72:48:20:29:7f:ed:6f:e3:7d:36:fe:
33:9d:53:d8:ed:3f:37:ab:07:c1:7e:92:ad:fe:ea:d7:a2:24:
49:70:e6:c0:bb:f0:66:af:83:b4:c5:07:29:af:47:b0:ba:d0:
bb:a6:27:0b:44:e7:0c:8f:76:b9:61:14:89:2a:ce:2c:5b:7b:
85:82:61:31:09:c8:57:05:7d:da:92:b8:2a:b4:60:89:26:dc:
d4:51:87:d0:d4:9c:07:7e:04:fd:b8:28:8b:bc:3f:5e:47:74:
76:0f:2a:e2:3f:3a:7f:fa:f6:2a:8e:dd:c7:20:af:8b:ed:f0:
f6:72:32:d3:c0:a9:a4:54:40:3a:cd:87:9e:41:27:3f:68:df:
cd:f1:8a:b0:9a:46:a0:7d:f9:51:fe:7c:7f:33:97:d4:79:ae:
4e:b8:5b:41:c0:1f:92:58:97:7b:9d:77:52:48:68:f6:4d:7a:
3b:52:bf:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:46 2024 by rpki-client on console-ams.rpki-client.org