Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/o0sZrVn0yBCugh0E0SH5qlNjh2Y.roa
File: o0sZrVn0yBCugh0E0SH5qlNjh2Y.roa (raw, json)
Hash identifier: HJ6cZIgk04SPCUb3fiPlDPggd9/8QOM0FtQGgZq9BpY=
Subject key identifier: A3:4B:19:AD:59:F4:C8:10:AE:82:1D:04:D1:21:F9:AA:53:63:87:66
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 0186CBB6FF4FF24CA8D406642E4AA27E79B6
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/o0sZrVn0yBCugh0E0SH5qlNjh2Y.roa
Signing time: Fri 10 Mar 2023 13:30:13 +0000
ROA not before: Fri 10 Mar 2023 13:30:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a09:9441::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:b6:ff:4f:f2:4c:a8:d4:06:64:2e:4a:a2:7e:79:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Mar 10 13:30:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a34b19ad59f4c810ae821d04d121f9aa53638766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:80:a8:12:ba:cb:23:b3:4c:69:8b:0f:51:ab:
b8:9a:40:e8:95:31:c8:34:54:6d:ef:ad:73:16:9a:
9f:67:70:cc:22:9f:54:1a:8d:d7:c7:31:ea:cd:d9:
d6:97:df:e9:f1:12:a1:9c:50:8c:c5:a8:21:74:9c:
0d:de:4d:72:8b:b3:99:38:e4:c7:32:e0:70:a9:94:
05:93:d0:4e:eb:d1:ce:52:d8:1d:79:85:22:f9:e9:
e0:85:12:57:94:16:06:e7:ab:09:79:0e:73:5b:e4:
dc:3c:73:3a:2e:95:59:e1:e3:95:28:a5:0e:e3:d4:
b4:b3:0e:08:49:42:de:38:f7:ca:13:77:ea:99:c8:
f7:4d:1d:14:36:80:26:05:6f:97:8e:1f:0a:a2:1a:
ae:af:f1:ec:5a:f1:0c:1f:27:20:9b:9c:b8:eb:34:
47:b9:02:d2:10:b5:e4:7f:bb:b9:23:2b:47:cb:c4:
40:87:43:98:4a:31:e6:3c:39:35:06:b0:9b:8b:76:
9f:2e:0c:12:fd:3e:d1:ff:9d:cb:5a:9a:64:b5:ab:
89:2a:d6:88:d3:23:dc:9e:f3:e5:f9:a4:85:87:20:
e5:4f:82:da:4c:6e:f1:1c:d6:44:55:16:96:4a:1a:
7f:f0:f4:20:02:33:3a:d8:16:4f:e9:70:72:fb:cd:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4B:19:AD:59:F4:C8:10:AE:82:1D:04:D1:21:F9:AA:53:63:87:66
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/o0sZrVn0yBCugh0E0SH5qlNjh2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9441::/32
Signature Algorithm: sha256WithRSAEncryption
b9:ae:f2:34:5a:a9:0b:7b:de:a8:a1:7d:c6:20:7c:55:44:d9:
4f:7b:26:78:5c:a7:04:50:f8:3c:1c:aa:8d:1d:a3:c5:03:e3:
85:27:6f:60:e5:91:17:02:bd:63:a9:28:83:5e:b0:17:b0:a1:
d1:fa:b0:fb:56:a9:ff:0a:bf:3e:4d:8e:35:82:73:85:40:c2:
69:c8:ee:c4:8d:32:7b:84:eb:57:22:21:ee:fa:6c:85:3a:2a:
a5:5a:81:00:c5:6f:d7:4e:71:39:a8:f3:29:97:bd:4d:ac:a2:
08:3d:dc:6b:b7:24:eb:00:ac:0b:6a:d7:e2:06:b4:a5:54:c9:
35:7d:c1:35:d0:aa:13:47:83:ef:73:83:40:a7:09:93:0f:26:
01:5c:75:81:96:4c:ee:95:c0:0f:68:0c:8f:a2:ea:b0:96:b0:
67:e4:a4:c8:81:33:16:4b:f3:52:ee:50:0b:2c:de:70:96:e3:
4a:67:41:55:c4:c9:23:22:c4:08:01:7f:66:62:38:43:bc:36:
df:84:72:d2:d3:b8:a8:2c:78:8c:ae:2e:ff:73:e8:d7:d9:d3:
ca:9a:7c:b0:b4:32:45:03:a9:dc:68:e8:48:b6:91:db:4f:da:
a8:b4:55:36:c8:69:85:8d:be:a1:9e:02:c7:3d:c1:93:a4:a1:
d9:19:4a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org