Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/jHnfvSyJQFgkoPVznEcUi-8Pj18.roa
File: jHnfvSyJQFgkoPVznEcUi-8Pj18.roa (raw, json)
Hash identifier: wZhyjQiHWa7kE4RdpyRjWqrKr74bjPPJ6UbD6THeS+4=
Subject key identifier: 8C:79:DF:BD:2C:89:40:58:24:A0:F5:73:9C:47:14:8B:EF:0F:8F:5F
Certificate issuer: /CN=2fcb30fd7d6e449493ec7cb0d9f78600458be21b
Certificate serial: 018D4AD52708A0D9F1F099BDF50018261F10
Authority key identifier: 2F:CB:30:FD:7D:6E:44:94:93:EC:7C:B0:D9:F7:86:00:45:8B:E2:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8sw_X1uRJST7Hyw2feGAEWL4hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/jHnfvSyJQFgkoPVznEcUi-8Pj18.roa
Signing time: Sat 27 Jan 2024 12:11:39 +0000
ROA not before: Sat 27 Jan 2024 12:11:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212516
IP address blocks: 2a0d:b287:ec30::/46 maxlen: 46
2a0d:b287:ec40::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 21 Apr 2024 14:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4a:d5:27:08:a0:d9:f1:f0:99:bd:f5:00:18:26:1f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcb30fd7d6e449493ec7cb0d9f78600458be21b
Validity
Not Before: Jan 27 12:11:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c79dfbd2c89405824a0f5739c47148bef0f8f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:56:27:8d:7c:22:9e:2b:12:d9:5f:01:60:5d:
15:24:28:b0:aa:b5:1a:a9:52:d3:43:0a:16:91:2a:
e9:d5:95:a0:1b:cc:ac:d5:2a:ff:80:86:1e:b8:6a:
1f:df:23:94:f9:1a:49:f9:cd:d5:ff:56:b8:5c:ca:
f0:44:60:a2:ae:13:f3:49:aa:f2:ca:e7:cf:ef:d9:
75:cd:de:b9:7d:3f:31:08:da:67:0e:eb:6d:d5:0b:
29:a9:1d:32:e6:9a:bd:45:0a:5b:da:7b:30:13:14:
ac:df:08:be:94:5b:b0:cf:5f:62:a3:aa:d5:7d:90:
0e:02:5e:50:41:97:81:40:11:ba:ec:60:17:16:40:
ce:e3:36:44:f9:30:41:81:91:d0:a1:6f:d9:36:89:
10:cd:1c:a5:5f:77:0f:c2:aa:35:0b:5e:a0:d4:a1:
3b:fb:74:cf:e1:2c:b5:c4:3d:9f:71:f2:9c:3c:58:
74:82:92:6c:17:1c:f5:9e:eb:88:07:83:fe:83:46:
95:8d:ff:f0:d1:3e:ed:68:b0:d0:39:fb:e5:ba:86:
26:23:b5:e8:1c:91:40:8d:f1:55:37:46:d3:99:a3:
41:8c:33:73:b7:be:1a:ef:0e:a7:9b:f1:6e:93:bc:
8a:8c:51:54:6e:65:87:14:97:19:bd:14:3f:7a:97:
98:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:79:DF:BD:2C:89:40:58:24:A0:F5:73:9C:47:14:8B:EF:0F:8F:5F
X509v3 Authority Key Identifier:
keyid:2F:CB:30:FD:7D:6E:44:94:93:EC:7C:B0:D9:F7:86:00:45:8B:E2:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8sw_X1uRJST7Hyw2feGAEWL4hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/jHnfvSyJQFgkoPVznEcUi-8Pj18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/L8sw_X1uRJST7Hyw2feGAEWL4hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:b287:ec30::/46
2a0d:b287:ec40::/48
Signature Algorithm: sha256WithRSAEncryption
55:11:93:1c:e5:ac:3c:4e:86:65:cc:b5:55:23:69:b2:df:aa:
f1:c0:b2:e8:53:9b:36:3c:b7:8f:6f:40:12:a8:55:82:bd:25:
8f:bd:fc:ea:e9:57:82:5b:69:db:c9:e6:4b:13:ff:d1:fb:59:
3c:8e:ad:ed:50:90:3b:c9:d4:39:68:8b:dc:5a:2f:f0:d8:63:
1b:71:66:02:ca:a1:f2:26:61:06:0c:29:9f:f6:5e:99:53:ee:
d5:6b:26:f1:0c:fd:3b:f6:fa:75:d4:36:ba:c8:0b:0b:bc:0a:
6b:c5:71:eb:fa:e2:42:68:28:ef:54:0f:17:a0:c9:b9:bb:0c:
47:ff:f7:1c:4e:9b:a4:99:c9:18:7a:8f:f7:65:7d:39:86:ae:
7b:06:7d:8f:f2:78:25:ca:7e:c8:7a:c0:29:f0:3a:29:6a:9c:
90:58:fa:d4:13:d6:b6:d3:76:84:bf:99:a5:52:97:7d:b3:12:
fe:63:be:d7:fa:f5:1c:26:a0:ea:c8:87:9d:06:3c:5e:d8:ad:
e9:f3:39:d2:60:66:14:b4:e2:e7:d4:e9:4f:0d:e2:0a:35:7d:
7e:98:90:a5:81:b9:e7:3c:a7:c2:94:d0:7d:51:ff:36:e5:87:
cc:52:a7:ff:98:65:3b:9e:2c:a7:45:44:cb:c3:ca:82:06:01:
24:9f:2d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:07 2024 by rpki-client on console-ams.rpki-client.org