Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/9d414e-0009-4c76-aaa8-0cf4cb136e16/1/8xMT7Chtsb84kx7cAdLhp2xIgEA.roa
File: 8xMT7Chtsb84kx7cAdLhp2xIgEA.roa (raw, json)
Hash identifier: QqySyO+vIdWgtKwN9VcWsdoAK9t0C7JxXRomtsIkW4c=
Subject key identifier: F3:13:13:EC:28:6D:B1:BF:38:93:1E:DC:01:D2:E1:A7:6C:48:80:40
Certificate issuer: /CN=e55b664c92b3e7210c2b0ed453c64ea7f5e876f7
Certificate serial: 01856BE5990DB99C0BA70E5AD2910620BBFC
Authority key identifier: E5:5B:66:4C:92:B3:E7:21:0C:2B:0E:D4:53:C6:4E:A7:F5:E8:76:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5VtmTJKz5yEMKw7UU8ZOp_Xodvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/9d414e-0009-4c76-aaa8-0cf4cb136e16/1/8xMT7Chtsb84kx7cAdLhp2xIgEA.roa
Signing time: Sun 01 Jan 2023 05:54:46 +0000
ROA not before: Sun 01 Jan 2023 05:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7007
IP address blocks: 2a0c:d2c6::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:99:0d:b9:9c:0b:a7:0e:5a:d2:91:06:20:bb:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e55b664c92b3e7210c2b0ed453c64ea7f5e876f7
Validity
Not Before: Jan 1 05:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f31313ec286db1bf38931edc01d2e1a76c488040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:24:5e:5c:53:fd:90:68:74:44:9e:c2:6a:46:
3a:5f:e8:96:b7:d4:49:2f:7e:9e:44:f5:51:c8:21:
3d:7d:ce:e5:7a:93:59:6a:a0:af:33:bb:fa:7a:68:
19:10:58:8d:ec:55:22:35:e1:46:f1:d7:2d:00:1a:
c6:b9:03:cd:be:7e:61:9e:51:a0:25:90:4f:9b:ff:
9d:f0:8e:0c:73:5e:50:44:24:98:0b:8c:68:81:2a:
12:7d:8b:9a:2f:f8:02:0f:1a:02:6c:63:1a:ea:dd:
cd:93:96:61:b1:1c:af:25:e6:59:73:61:e0:df:97:
2e:79:bd:66:5d:5f:64:29:3b:1e:47:2d:62:c1:f3:
20:cc:f6:af:09:24:38:f4:bd:80:fe:41:58:88:39:
82:62:b9:5c:c0:4d:57:19:c1:47:68:93:8e:d7:95:
06:d9:8a:df:41:9a:e1:1f:ea:82:cf:8c:a8:73:b9:
1b:08:1f:d9:99:b9:63:0e:24:94:0c:fa:4d:a8:1f:
c5:1e:c5:4d:be:b3:b7:9d:6c:99:cb:04:3e:0f:9f:
28:ba:4e:81:e3:90:c7:82:a2:81:e9:b8:0e:fe:dc:
8c:09:e7:d3:d6:a1:fd:84:c9:b2:d7:0a:51:9f:83:
07:84:24:fa:d2:4f:cb:25:f3:7f:28:58:51:7a:6d:
5c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:13:13:EC:28:6D:B1:BF:38:93:1E:DC:01:D2:E1:A7:6C:48:80:40
X509v3 Authority Key Identifier:
keyid:E5:5B:66:4C:92:B3:E7:21:0C:2B:0E:D4:53:C6:4E:A7:F5:E8:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5VtmTJKz5yEMKw7UU8ZOp_Xodvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9d414e-0009-4c76-aaa8-0cf4cb136e16/1/8xMT7Chtsb84kx7cAdLhp2xIgEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9d414e-0009-4c76-aaa8-0cf4cb136e16/1/5VtmTJKz5yEMKw7UU8ZOp_Xodvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:d2c6::/32
Signature Algorithm: sha256WithRSAEncryption
92:fd:90:8b:bd:b4:97:8a:e0:b6:3f:c5:6d:7d:80:3f:b3:09:
63:ab:ea:8e:04:56:aa:b6:67:3a:e4:6a:25:ad:5d:b9:04:0c:
c4:29:98:a3:65:c1:f3:d5:c3:8a:48:36:ca:d1:3f:6b:af:6c:
43:7d:73:cb:a4:89:c1:45:17:e1:84:44:7f:cc:6b:15:09:7c:
9c:92:3f:82:bf:52:35:40:39:2d:d4:f2:18:5c:29:11:64:6c:
aa:0b:d7:b0:38:ec:b8:f2:39:6a:d4:21:cf:f3:e3:ef:89:05:
c7:46:73:da:5f:3a:92:fc:08:67:5b:a1:19:de:a6:02:03:a4:
ff:80:b1:35:d7:22:08:74:54:67:36:4e:21:b6:f7:07:3c:da:
8d:04:cf:8d:84:f8:3b:d3:0f:e4:f0:79:e3:e5:03:8e:1c:31:
6e:99:04:04:2e:bb:8f:6a:9c:ae:b0:15:95:04:a0:4e:41:b9:
15:83:cf:d5:e0:e3:38:2c:eb:d4:5a:39:d0:66:43:6f:ba:18:
9a:6f:65:21:1c:af:c4:fa:1b:de:31:28:91:f3:9b:44:48:03:
77:d1:87:4e:29:59:0a:8c:42:78:44:a2:cb:20:e6:e0:20:76:
a2:e5:19:59:d0:6e:23:95:be:f1:f8:f2:b4:eb:dc:49:bc:2b:
b2:2f:e4:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:14 2024 by rpki-client on console-ams.rpki-client.org