Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Cc6m3QiA0IgQFi-g_3Vvy2VM2Ik.roa
File: Cc6m3QiA0IgQFi-g_3Vvy2VM2Ik.roa (raw, json)
Hash identifier: MKHm1O3a0WwKo52e0+CdhChDulZvmjWWjRdQZ/mw3Z8=
Subject key identifier: 09:CE:A6:DD:08:80:D0:88:10:16:2F:A0:FF:75:6F:CB:65:4C:D8:89
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF87D385D1AF21B93269ADED9D40724
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Cc6m3QiA0IgQFi-g_3Vvy2VM2Ik.roa
Signing time: Sun 01 Jan 2023 10:55:02 +0000
ROA not before: Sun 01 Jan 2023 10:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210715
IP address blocks: 2a07:22c1:38::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:7d:38:5d:1a:f2:1b:93:26:9a:de:d9:d4:07:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09cea6dd0880d08810162fa0ff756fcb654cd889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:81:88:8c:07:9a:21:ea:41:5a:2a:1b:93:42:
d8:90:a3:73:ab:b4:c4:e4:6f:d3:8c:64:0b:ed:e5:
44:79:d7:d3:7b:41:56:90:11:e5:14:92:ee:67:33:
c8:ff:57:00:dd:cc:a9:87:3a:b5:27:b7:26:c3:15:
eb:60:ee:64:c5:08:d6:df:84:63:56:d8:9a:d9:6a:
02:6c:63:7d:3b:a1:e0:20:24:12:c1:b5:8d:cc:ad:
4f:b4:23:de:c0:89:10:a8:8d:ab:25:df:32:11:00:
53:da:01:55:61:53:ea:5b:b0:75:6e:18:24:41:f5:
2a:01:a6:8e:3a:e7:2f:bd:b0:47:2f:09:28:91:09:
d7:ca:59:96:9a:63:be:93:0a:28:59:7d:4a:00:b0:
bb:bb:8c:d0:62:1e:76:d3:b4:e7:66:0d:90:7b:e0:
b4:6d:97:63:43:7e:1d:31:3a:87:c3:6e:3e:06:bc:
bd:3e:1e:31:26:af:cf:ba:ea:68:5c:cb:fa:c8:2d:
3b:60:51:3b:ad:90:07:b1:85:7f:1d:20:c5:23:da:
1c:e9:4b:34:be:2f:44:cc:4f:78:54:2a:0b:49:56:
96:5c:3f:48:ee:fa:85:49:95:89:0d:ed:2c:32:31:
7f:11:cf:f5:30:ca:a8:43:53:43:0d:ab:a1:a3:bd:
fe:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CE:A6:DD:08:80:D0:88:10:16:2F:A0:FF:75:6F:CB:65:4C:D8:89
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Cc6m3QiA0IgQFi-g_3Vvy2VM2Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:38::/48
Signature Algorithm: sha256WithRSAEncryption
b5:4a:d9:23:04:02:4f:c7:57:bc:c5:17:2e:20:af:2f:9b:9c:
50:7b:1c:ee:ca:18:41:36:bb:bb:d3:0b:bc:6d:04:e0:70:1b:
38:77:4c:24:f8:5c:0a:03:c5:d2:32:22:d3:6f:db:c6:ba:75:
56:75:63:62:78:02:24:4d:b1:b9:eb:ce:74:76:0f:d6:aa:ec:
0b:57:87:c0:b4:af:91:93:f2:1c:b4:cd:b6:2e:df:6c:3c:2c:
85:e9:d5:6d:50:3c:17:54:97:15:f6:80:2f:9a:ec:0b:0b:c0:
94:12:22:ac:11:74:9b:73:c7:a0:83:ae:4b:74:99:7b:8e:80:
f6:c6:7f:69:19:7e:db:55:3d:bb:7b:34:68:16:12:e9:de:c9:
3b:c3:e3:63:f4:5f:f6:bc:0b:be:a8:37:ee:20:8d:0e:c9:53:
ed:4d:a2:8c:c4:3a:33:2b:e8:10:2e:33:d7:b5:c0:33:c7:ab:
3f:b1:9f:fe:cc:c1:e4:2f:a6:59:b9:ab:81:c0:c1:a1:5b:fe:
fd:64:b4:ef:be:a0:9d:84:2d:72:8d:e7:e6:cc:cc:5b:d5:7d:
00:64:25:50:bd:9a:ee:24:c0:d7:23:5d:c0:b2:24:ef:3b:83:
83:55:76:71:e2:b2:8b:84:df:19:a4:83:0a:4f:83:ad:c6:eb:
7b:92:1e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org