Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/MGH2aWUd5l__QmSsg_Ksf7Mtv5I.roa
File: MGH2aWUd5l__QmSsg_Ksf7Mtv5I.roa (raw, json)
Hash identifier: lhz3L7Dj8xlscriawee1crOmncnpA2s4jgHpAxVSjRM=
Subject key identifier: 30:61:F6:69:65:1D:E6:5F:FF:42:64:AC:83:F2:AC:7F:B3:2D:BF:92
Certificate issuer: /CN=923a2b3dd7667275f09886df7da079f755ceed59
Certificate serial: 01856C53AF6C709CE9D606E12D314AE252BE
Authority key identifier: 92:3A:2B:3D:D7:66:72:75:F0:98:86:DF:7D:A0:79:F7:55:CE:ED:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjorPddmcnXwmIbffaB591XO7Vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/MGH2aWUd5l__QmSsg_Ksf7Mtv5I.roa
Signing time: Sun 01 Jan 2023 07:55:01 +0000
ROA not before: Sun 01 Jan 2023 07:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13030
IP address blocks: 2a11:8b80::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:af:6c:70:9c:e9:d6:06:e1:2d:31:4a:e2:52:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923a2b3dd7667275f09886df7da079f755ceed59
Validity
Not Before: Jan 1 07:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3061f669651de65fff4264ac83f2ac7fb32dbf92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:53:5b:a9:ab:8a:6c:1c:f4:63:35:f9:07:3f:
5c:09:d9:89:72:2d:ae:f8:be:b2:bf:b9:66:0b:3a:
6f:c5:e8:90:d0:c1:a7:e0:bf:4e:d3:f5:c6:8c:bf:
9c:fa:72:8d:d9:74:0e:58:cf:69:c0:ae:3f:fe:f8:
00:e9:41:a4:76:d5:54:f1:6c:21:2b:92:2b:01:84:
2a:3e:be:a9:46:f4:1a:b3:c3:95:a9:11:a6:dc:42:
ab:01:8a:12:a8:b4:f4:25:47:99:59:d2:d7:ef:65:
ae:61:e6:e4:36:fc:15:cf:a2:c4:a0:c1:44:de:dc:
d2:e5:fd:44:6f:4b:87:81:1b:23:e4:80:10:85:6e:
2d:9d:64:c8:8c:2d:b4:e5:df:fd:a4:c2:c0:d6:32:
ed:4e:0b:48:6b:94:31:a7:b8:7e:d9:f9:07:14:97:
c6:79:58:65:a8:7e:80:7a:75:75:9e:36:5f:48:bd:
05:96:f7:d4:d8:a2:e6:7c:72:46:e9:2e:df:88:99:
1d:87:7a:93:e3:11:ac:20:1f:1c:bf:72:33:7e:8e:
df:a7:a4:de:4e:fe:bf:85:35:83:d5:8d:11:a2:9f:
5f:62:0f:5e:12:35:b8:57:4e:9c:f0:c5:e2:8e:64:
1b:5b:01:70:41:13:8c:dd:70:d8:bf:7e:84:eb:a3:
82:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:61:F6:69:65:1D:E6:5F:FF:42:64:AC:83:F2:AC:7F:B3:2D:BF:92
X509v3 Authority Key Identifier:
keyid:92:3A:2B:3D:D7:66:72:75:F0:98:86:DF:7D:A0:79:F7:55:CE:ED:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjorPddmcnXwmIbffaB591XO7Vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/MGH2aWUd5l__QmSsg_Ksf7Mtv5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/kjorPddmcnXwmIbffaB591XO7Vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8b80::/32
Signature Algorithm: sha256WithRSAEncryption
84:c2:2d:79:7d:72:e2:1d:06:21:b3:7b:6a:62:42:c1:25:7a:
c2:58:60:c9:5b:d9:bd:01:de:26:ef:44:aa:ac:20:66:ec:c9:
e3:89:a7:b0:45:af:af:2d:3c:bf:d8:15:a6:84:85:5d:1f:8a:
f5:d7:ad:e8:9a:e5:f9:53:9f:24:da:00:e7:b7:67:31:0b:ff:
58:ae:ef:86:40:8b:b1:82:36:20:14:0b:ef:8a:f9:3f:1f:6a:
fe:93:3b:da:9c:d6:1a:65:53:6d:8e:cc:15:d8:3e:8b:ae:ff:
fb:ef:a1:8f:6c:50:6d:0a:57:25:b1:f7:22:b1:00:6c:f5:91:
68:6e:b4:1d:55:30:39:50:6a:03:fe:85:25:24:c7:ce:73:4f:
57:85:30:6d:92:13:30:49:50:b9:de:9d:3b:a4:db:8e:94:70:
7e:cd:40:ba:35:9a:b0:0d:fd:fc:0b:13:1d:5d:0f:93:25:ef:
46:7f:c3:9d:ea:dc:90:12:7d:9d:c0:00:57:26:66:49:ea:c1:
75:ad:27:23:4d:57:b5:03:ef:7e:3c:ee:9b:80:1b:5e:8a:9e:
cd:c7:ac:a0:2c:75:47:ef:b1:60:95:d7:6e:df:5c:d5:3b:cc:
d6:1e:ff:0c:60:f9:73:2f:92:e6:a9:2c:59:a2:04:18:85:cf:
9e:88:ba:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:52 2024 by rpki-client on console-fra.rpki-client.org