Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/9aLJIhiHoe8aQryZF4bSABy5MjY.roa
File: 9aLJIhiHoe8aQryZF4bSABy5MjY.roa (raw, json)
Hash identifier: K3n0vqa5rFXn8FQSAAMV+UD3FXtiYFKXnj/LviUC0po=
Subject key identifier: F5:A2:C9:22:18:87:A1:EF:1A:42:BC:99:17:86:D2:00:1C:B9:32:36
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 01856F428A9028B06B9E69D2E765E894B0EA
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/9aLJIhiHoe8aQryZF4bSABy5MjY.roa
Signing time: Sun 01 Jan 2023 21:35:09 +0000
ROA not before: Sun 01 Jan 2023 21:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203279
IP address blocks: 2a0a:4540:101::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:8a:90:28:b0:6b:9e:69:d2:e7:65:e8:94:b0:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Jan 1 21:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5a2c9221887a1ef1a42bc991786d2001cb93236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c3:f4:d2:c8:99:22:ca:43:a3:e1:e3:2f:77:
20:c7:9b:1d:40:c8:59:f0:77:13:d9:94:67:9b:c3:
ff:3e:30:55:f6:4e:aa:7e:75:a9:3a:d1:c4:ae:91:
0b:4a:21:a2:20:3a:27:3c:31:32:b4:9a:05:61:ae:
2e:75:6c:c2:34:17:4d:4a:80:9e:a9:7e:40:48:d9:
97:63:65:3c:7d:ec:00:0a:03:89:60:bd:38:47:5e:
58:d8:60:84:17:80:de:5b:ea:ff:82:57:fe:eb:c1:
ae:b9:f3:4a:e6:aa:74:52:b1:86:c5:72:86:c4:f9:
22:d8:a1:bc:8e:c1:dd:e4:e1:44:eb:6d:86:e6:32:
4e:f9:c9:75:d0:62:86:08:68:55:33:1b:83:81:1a:
7f:8e:55:08:ae:7c:ab:87:88:ed:b1:07:69:30:fa:
88:69:49:40:89:ee:c4:d0:6e:b5:f4:d7:8f:ab:ed:
40:7f:38:52:4c:ff:17:da:5a:c8:2b:46:42:d9:c5:
4e:0b:8a:a3:9c:f5:9a:d5:4d:cc:14:c3:1c:78:6c:
31:3a:8d:d5:b5:09:ae:9c:4f:33:71:61:7b:3a:20:
e6:3c:24:81:e1:91:a3:33:02:4a:60:75:78:8b:02:
06:48:4e:4f:9b:ec:42:04:5a:93:a4:92:ff:29:81:
d3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A2:C9:22:18:87:A1:EF:1A:42:BC:99:17:86:D2:00:1C:B9:32:36
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/9aLJIhiHoe8aQryZF4bSABy5MjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:101::/48
Signature Algorithm: sha256WithRSAEncryption
49:3b:82:0f:90:77:b7:02:d0:52:b3:7e:5c:e7:d9:c0:93:25:
bd:43:f2:1e:63:c9:f2:93:a7:f3:78:df:7c:78:f9:66:57:90:
68:74:09:f7:d2:bf:40:3a:f7:12:35:77:d4:dd:0f:2a:d4:25:
7f:a8:7a:07:8f:e4:bf:69:6b:51:3e:d5:db:e9:26:db:ee:20:
62:0d:a2:1f:88:b1:c7:da:d8:5a:a5:e1:c9:13:e9:63:96:e2:
34:78:13:f1:69:c7:c0:b3:c7:96:27:42:58:2a:81:96:13:03:
74:e6:f9:2a:aa:f2:e0:bc:a3:cb:2c:14:0b:c6:15:88:1c:18:
5f:db:33:14:8c:7e:46:94:42:3d:a6:49:a4:d6:e4:55:6d:8a:
51:eb:4b:40:2c:cd:f4:8d:c8:d0:43:1b:56:3e:fb:0d:21:17:
83:82:11:99:98:c2:c2:77:8f:17:ce:70:e1:d6:23:84:ba:13:
03:26:1f:7d:bf:55:36:e9:5e:39:6f:c8:b7:92:09:93:30:4d:
1f:f6:0b:1f:ea:53:e3:bd:bb:53:98:da:f3:75:44:9b:72:bf:
a4:31:14:38:bd:be:92:15:03:e5:4c:83:fb:cb:3d:51:e9:c9:
27:4c:e5:fe:eb:98:b1:2a:12:d5:c0:2e:42:17:e9:9a:81:37:
a1:11:d6:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org