Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/84NMy55-bh9R3jiA9wJG3dA2zyw.roa
File: 84NMy55-bh9R3jiA9wJG3dA2zyw.roa (raw, json)
Hash identifier: 7x3wMzlPAjwigj5G2IxuYHz7oFi/LZv0kdJ7rsKdBeo=
Subject key identifier: F3:83:4C:CB:9E:7E:6E:1F:51:DE:38:80:F7:02:46:DD:D0:36:CF:2C
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF87E10F10D856DD3CB961D84C8298F
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/84NMy55-bh9R3jiA9wJG3dA2zyw.roa
Signing time: Sun 01 Jan 2023 10:55:02 +0000
ROA not before: Sun 01 Jan 2023 10:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212437
IP address blocks: 2a07:22c1:9::/48 maxlen: 48
2a07:22c1:30::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:7e:10:f1:0d:85:6d:d3:cb:96:1d:84:c8:29:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3834ccb9e7e6e1f51de3880f70246ddd036cf2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0c:fe:71:0d:62:9a:b4:4b:df:8b:3f:70:d5:
87:65:36:ae:2b:5c:46:a8:85:21:80:8d:25:35:7f:
9f:12:52:89:e8:03:b7:fe:27:9f:79:a2:d8:2f:47:
ca:6d:50:1e:b3:af:fc:21:3c:dd:bf:32:f6:2d:f7:
37:bd:8f:63:f9:58:ef:38:82:14:e1:d2:ff:83:5f:
b1:02:f4:c6:74:a5:39:b5:65:9d:0e:43:f7:a3:68:
5c:5a:cd:b4:6c:8b:88:94:b1:a8:c4:b7:ac:96:82:
95:35:77:d4:ec:ef:99:58:9d:32:7a:da:ed:0a:60:
a4:23:17:10:6b:9b:c6:ce:87:e0:3b:ad:bc:3d:1c:
6c:66:fd:09:cb:28:78:45:61:58:21:8b:2d:0a:f1:
3a:d8:8f:0d:39:a0:83:7d:06:73:e4:1a:29:24:5d:
c6:57:a2:07:d2:d5:80:1b:b5:1c:44:dc:49:09:10:
24:e4:92:85:3c:ea:69:89:38:a6:f7:17:44:dd:f5:
85:32:bb:b9:65:69:e4:51:3f:64:98:63:66:5e:67:
58:3f:2b:86:bd:8f:7c:9a:55:69:1c:99:1d:eb:cf:
31:69:eb:64:e0:8b:d9:99:64:f8:43:9b:dc:51:c9:
cc:23:af:4f:a1:93:54:c0:d1:d3:62:86:fe:13:9b:
cf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:83:4C:CB:9E:7E:6E:1F:51:DE:38:80:F7:02:46:DD:D0:36:CF:2C
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/84NMy55-bh9R3jiA9wJG3dA2zyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:9::/48
2a07:22c1:30::/48
Signature Algorithm: sha256WithRSAEncryption
9c:91:bd:05:cb:83:16:7b:dc:96:4c:db:38:27:df:ea:72:c7:
93:2f:57:26:13:02:21:22:dc:2d:58:cc:ee:a0:e1:be:38:a1:
84:1d:05:00:21:30:c0:0b:ee:cb:1e:a7:01:39:fe:12:a1:9f:
63:ef:aa:e4:a6:11:5a:a6:16:0d:e6:b1:a9:84:4a:8f:54:98:
18:f8:1b:ca:8c:db:1b:8e:4a:b9:9e:73:de:13:53:1b:34:c7:
e6:6c:d9:35:51:eb:21:2a:0c:3a:c3:0a:19:9b:8b:7e:84:6e:
13:64:dc:32:c9:df:97:bf:6b:23:f2:23:89:7c:5a:8a:a8:25:
b0:ae:e9:ab:8e:12:6e:63:76:46:ed:5e:fa:0e:aa:c8:90:08:
00:9e:70:97:50:a2:a4:17:e7:6b:15:e1:d7:e4:da:c1:12:da:
b7:2b:a2:bb:6a:0a:24:e0:5b:a2:f8:95:c1:bf:dd:59:14:04:
37:0d:4b:95:9a:63:43:c6:db:ec:ad:ef:2f:71:2c:79:c2:f5:
78:a4:e0:67:a5:06:d8:cf:4e:ea:c7:36:70:08:cb:84:c8:59:
64:af:9d:23:09:c2:dd:fe:02:df:be:d5:a2:63:ce:af:5b:09:
ff:bb:3c:7c:8a:b4:e1:8d:89:bf:38:79:c0:83:af:0c:7a:fe:
25:32:86:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org