Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/6X5hw5noR8pQJvUNQ8rla5-M7eU.roa
File: 6X5hw5noR8pQJvUNQ8rla5-M7eU.roa (raw, json)
Hash identifier: UR2BDlQ02jTMzvb8pb97Ndm0PtXkOKNOPOSU6LzyU9M=
Subject key identifier: E9:7E:61:C3:99:E8:47:CA:50:26:F5:0D:43:CA:E5:6B:9F:8C:ED:E5
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 0192B9A1BB6C9C427D5E5D70EB9DC9909B0A
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/6X5hw5noR8pQJvUNQ8rla5-M7eU.roa
Signing time: Wed 23 Oct 2024 13:47:16 +0000
ROA not before: Wed 23 Oct 2024 13:47:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a09:9443::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 31 Oct 2024 19:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b9:a1:bb:6c:9c:42:7d:5e:5d:70:eb:9d:c9:90:9b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Oct 23 13:47:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e97e61c399e847ca5026f50d43cae56b9f8cede5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0b:7b:85:4c:55:ba:cd:59:4d:d2:08:9d:c5:
fc:e6:7e:94:44:fe:85:1b:d6:de:28:13:0c:64:f5:
37:64:21:9d:2e:14:b2:5e:08:f0:e4:e8:88:ae:b2:
f4:23:24:40:0a:fa:1a:9e:73:0f:6d:2c:45:98:da:
ba:54:c3:ce:33:e5:d7:af:63:a3:27:19:c9:56:3f:
d7:43:ac:2f:c1:49:f0:94:ec:5e:09:e5:a2:8b:7d:
f4:a3:1e:ac:80:f6:4d:5f:e8:bc:57:9c:37:10:7e:
e5:2e:71:c4:98:ea:80:10:cf:ab:af:dc:f0:81:86:
15:a0:c1:5e:29:64:2e:64:bc:a0:74:9c:a7:7c:ba:
9a:4e:f7:6b:b7:ee:34:df:4e:7c:62:20:02:23:71:
80:df:8a:fc:47:9e:40:38:22:76:bd:11:76:9b:b4:
36:e9:7e:7b:69:02:a5:37:9b:70:2b:cb:34:a7:7e:
fe:76:ad:5f:9c:d3:01:82:59:0f:7e:86:92:87:00:
82:35:75:95:b7:36:95:ae:48:dc:84:78:41:87:31:
df:fa:96:db:ec:de:a8:a5:af:ef:fe:26:d6:a6:cf:
ac:e6:47:2a:cb:04:dd:a0:1f:97:10:18:db:3d:a2:
12:7e:80:35:42:21:0a:2c:74:36:3e:a7:d9:cd:26:
f6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7E:61:C3:99:E8:47:CA:50:26:F5:0D:43:CA:E5:6B:9F:8C:ED:E5
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/6X5hw5noR8pQJvUNQ8rla5-M7eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9443::/32
Signature Algorithm: sha256WithRSAEncryption
28:41:cc:df:bb:64:5d:44:e2:c8:30:bf:ab:43:72:b0:bc:28:
68:e7:79:47:98:94:ff:a3:05:96:ad:b0:9b:be:44:a1:1b:1c:
96:a2:5a:d6:e1:e5:3c:ac:7b:81:2c:59:68:fa:80:51:1c:5a:
96:9e:0f:09:14:e4:16:17:08:4c:5f:8c:bb:c4:ce:f0:ff:4a:
2a:69:3b:3c:5a:97:97:76:de:6e:9e:85:31:62:b7:4e:3d:3f:
2b:18:da:8d:56:55:52:4f:bf:c5:58:b4:d6:6a:0f:d6:c3:b2:
69:a3:e5:c0:6c:12:3a:f3:45:15:29:9d:dd:a3:c7:68:63:68:
f7:ff:5e:c7:04:a5:59:50:40:d9:88:fe:5b:31:95:da:d0:df:
0a:3e:59:a0:14:f3:37:ff:11:57:aa:bc:8a:e8:e7:04:49:cc:
5a:f7:71:6b:84:8b:27:25:55:70:d4:a7:d0:ff:e9:41:75:aa:
f0:94:d3:fb:14:cc:c5:ca:0a:19:d7:7e:8e:cc:c5:93:bf:0e:
2e:f5:3a:db:01:5c:a0:b9:9b:42:db:19:63:57:ba:0c:3b:bd:
ba:ae:c1:d9:a5:91:cc:cb:e0:88:ab:c5:28:05:ba:c9:7f:1a:
68:42:1e:45:a4:e2:da:21:1e:43:a4:cd:32:60:0b:cc:80:80:
da:2d:36:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 20:35:53 2024 by rpki-client on console-fra.rpki-client.org