Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/HcM3FVOn49FCt48URboeZIzwAZs.roa
File: HcM3FVOn49FCt48URboeZIzwAZs.roa (raw, json)
Hash identifier: bYKuCS6H20xL+RfRlz7nfwwJFDZ50+uWs0cblKHWttk=
Subject key identifier: 1D:C3:37:15:53:A7:E3:D1:42:B7:8F:14:45:BA:1E:64:8C:F0:01:9B
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 01928269E9FF7B7BE1BB5BE706C3FA47D978
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/HcM3FVOn49FCt48URboeZIzwAZs.roa
Signing time: Sat 12 Oct 2024 20:27:12 +0000
ROA not before: Sat 12 Oct 2024 20:27:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a0e:7f40::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 17 Oct 2024 19:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:82:69:e9:ff:7b:7b:e1:bb:5b:e7:06:c3:fa:47:d9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Oct 12 20:27:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1dc3371553a7e3d142b78f1445ba1e648cf0019b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:39:fd:cd:46:59:87:36:84:d3:15:12:6b:7e:
27:73:b2:ba:27:ab:64:1b:da:8f:b9:af:be:f2:6f:
f0:23:96:96:f6:8e:cd:60:42:45:58:89:b3:8e:aa:
2a:26:c1:a2:78:14:6e:4e:34:6b:fb:5c:fb:0b:9a:
6f:eb:18:9a:6b:94:dd:00:73:3b:9a:c1:91:09:1d:
f6:ca:19:e0:98:19:32:e4:36:d9:c6:81:e8:46:a5:
99:40:a9:68:f4:8d:c3:65:b4:5b:c7:6e:86:0f:09:
6f:9e:7b:18:21:14:c2:11:cd:10:41:7c:cf:f9:65:
5f:f5:d0:2e:b2:87:3b:e1:48:3f:7a:09:fa:bb:12:
89:33:b0:07:38:1c:66:c0:ce:b6:49:fb:b9:34:13:
18:bf:67:e4:cd:e4:5f:bd:22:84:a9:0a:b5:a2:fd:
fd:43:4d:cd:5c:3c:74:2a:f8:3d:c9:94:77:97:cc:
a2:cc:db:4b:3e:96:18:4b:9e:07:a0:a2:ac:f0:04:
fa:e4:04:62:20:cb:4a:45:58:37:ce:4d:dc:15:9b:
35:02:46:bd:30:65:2a:68:bf:23:f5:1f:fb:9a:cd:
1b:46:e0:50:f4:ad:99:31:db:8d:29:0c:5b:7f:ce:
d7:51:0f:32:2a:28:10:11:c6:9d:14:db:6b:77:0a:
ea:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C3:37:15:53:A7:E3:D1:42:B7:8F:14:45:BA:1E:64:8C:F0:01:9B
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/HcM3FVOn49FCt48URboeZIzwAZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7f40::/32
Signature Algorithm: sha256WithRSAEncryption
9a:ea:5a:a3:c2:33:0e:98:03:49:67:cc:ce:37:fb:4a:34:8a:
e5:e7:3c:c7:9e:e1:a4:e8:88:1e:54:52:cf:5d:0c:49:64:ff:
4d:92:82:59:85:7d:e0:d8:30:e5:06:65:4f:b1:c5:97:e0:9e:
80:65:03:1e:81:d9:58:56:da:7e:02:84:a6:42:63:38:99:08:
7f:03:db:17:cc:fe:13:75:59:7b:15:58:33:1d:ed:f4:b8:dd:
4c:b6:9b:b1:49:fd:e1:5e:0e:af:50:9c:16:6c:39:8f:2d:42:
53:94:9f:e1:06:85:1c:a4:c7:7d:dc:9c:35:b7:d1:c8:4e:59:
6b:38:ea:f0:7e:dd:ef:12:c5:59:92:25:d8:f5:5a:7f:de:70:
1c:86:fa:ed:a9:27:b0:94:8d:48:58:b4:9d:aa:ed:29:a4:a7:
c6:1b:35:9d:d8:8a:6a:33:b8:31:fd:c4:42:b5:bc:56:30:d5:
b6:3d:6a:c6:be:83:8e:18:37:bf:38:45:c2:ab:af:77:7f:65:
2f:ee:ac:9b:1a:49:1b:0a:b9:b0:34:32:f7:94:b3:b5:0c:eb:
9a:f3:4e:13:8c:71:d6:52:87:d3:e8:b5:d4:48:cb:13:06:07:
21:5a:59:99:25:7c:6f:93:b6:c5:a0:ef:bb:60:72:ee:0f:8d:
c6:33:ea:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 22:34:22 2024 by rpki-client on console-ams.rpki-client.org