Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/Ht8W5BDvNygaUWXHM-LP1avSGvM.roa
File: Ht8W5BDvNygaUWXHM-LP1avSGvM.roa (raw, json)
Hash identifier: nGjryiK0ud81DJHG+kECRl8/XVp2R6JNNUwkp9rGdwM=
Subject key identifier: 1E:DF:16:E4:10:EF:37:28:1A:51:65:C7:33:E2:CF:D5:AB:D2:1A:F3
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018E477B95EB643B92BDF63D3A4F8D85D45C
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/Ht8W5BDvNygaUWXHM-LP1avSGvM.roa
Signing time: Sat 16 Mar 2024 13:37:45 +0000
ROA not before: Sat 16 Mar 2024 13:37:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215633
IP address blocks: 2a09:2b80:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 16 Mar 2024 17:38:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:47:7b:95:eb:64:3b:92:bd:f6:3d:3a:4f:8d:85:d4:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Mar 16 13:37:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1edf16e410ef37281a5165c733e2cfd5abd21af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a5:3d:49:18:b9:38:67:a7:ad:d9:97:28:33:
df:b1:8a:e4:8c:c1:41:c3:52:1d:dc:00:5a:32:ae:
71:4c:88:97:e6:fb:2d:6f:1e:6b:49:aa:01:0c:46:
b8:67:ed:96:04:d2:27:24:5c:29:94:6c:ef:d2:15:
af:88:8f:c3:bc:54:3d:4a:c7:93:23:13:46:3c:76:
8a:e4:24:13:d2:52:c8:67:4e:95:41:17:a4:dc:e6:
38:bf:48:c6:73:dd:dc:43:45:0c:31:63:b5:3b:ac:
94:ca:32:ad:32:f9:a5:09:3b:c3:68:73:36:4f:af:
19:d3:36:12:2f:55:53:8d:9d:5c:0a:2f:80:90:d0:
61:d6:e5:2b:cc:ac:4a:b2:b2:05:ec:53:0c:c1:01:
37:a5:10:d7:c7:29:bd:f2:e5:36:57:dd:a1:07:85:
d8:f4:ae:1a:ba:e1:e3:b0:22:62:c4:64:14:69:a0:
10:61:ec:8d:92:0d:71:db:91:84:bc:23:46:73:69:
f2:e0:db:09:78:cb:c3:b8:f6:df:99:bf:3d:88:c1:
7c:23:bb:f9:b5:9c:b9:c1:f2:7c:e0:c4:25:49:50:
3a:8c:2a:63:3d:6e:9c:dd:3f:69:2d:21:f0:bc:5f:
20:c8:16:ed:c2:9e:64:13:4f:84:f8:13:aa:db:2c:
ed:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DF:16:E4:10:EF:37:28:1A:51:65:C7:33:E2:CF:D5:AB:D2:1A:F3
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/Ht8W5BDvNygaUWXHM-LP1avSGvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80:1::/48
Signature Algorithm: sha256WithRSAEncryption
38:99:62:36:4d:38:66:c8:6b:56:bd:06:4d:8c:94:99:e0:c4:
b1:d6:64:8a:95:09:a1:02:7b:53:53:7c:5e:54:8d:08:d8:df:
21:9a:53:bd:ec:2e:8d:42:05:00:50:a0:0b:e2:cd:b6:5b:84:
ce:29:6d:40:01:a7:e1:3f:86:6d:c3:0e:12:da:19:b8:78:62:
3b:87:b6:ea:df:03:83:b8:e6:3d:fb:08:99:2d:eb:4c:67:eb:
5c:c8:c3:7c:e1:df:40:26:70:99:c2:5c:8b:0f:d8:c3:7f:ac:
48:6a:25:c2:e2:5d:34:01:f0:7d:1d:a1:fe:1c:41:52:42:94:
a9:8b:56:63:38:91:2b:61:e0:27:9b:97:ec:0d:0b:2e:30:47:
e2:d5:02:44:45:cc:85:c7:dd:52:09:35:40:48:4a:a2:81:b1:
3b:45:5f:a4:9f:f7:d1:9f:94:5b:7d:0a:33:3b:1a:de:96:a7:
98:47:25:5d:42:f9:05:d6:d1:c5:ba:c7:21:96:4e:be:82:9b:
98:40:d5:f9:03:27:d5:0d:59:10:d5:d1:1a:68:80:1f:67:9d:
10:90:d6:5d:2f:24:df:21:86:d9:34:e5:87:87:43:02:d1:fd:
b8:79:e9:33:72:21:21:53:9e:b1:2d:66:69:9c:7e:89:94:38:
9f:5d:15:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:09 2024 by rpki-client on console-ams.rpki-client.org