Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/SSI2FVM2MxztabMxwbCMQJzpAyc.roa
File: SSI2FVM2MxztabMxwbCMQJzpAyc.roa (raw, json)
Hash identifier: zry7Ot5MtWDJeX1FNfLbquF7v3W8piWPTI+JELyLotE=
Subject key identifier: 49:22:36:15:53:36:33:1C:ED:69:B3:31:C1:B0:8C:40:9C:E9:03:27
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0189F5873C262FAF0AAB9CB88BC61B90D1B7
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/SSI2FVM2MxztabMxwbCMQJzpAyc.roa
Signing time: Mon 14 Aug 2023 19:30:27 +0000
ROA not before: Mon 14 Aug 2023 19:30:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a0a:b384::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f5:87:3c:26:2f:af:0a:ab:9c:b8:8b:c6:1b:90:d1:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Aug 14 19:30:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=492236155336331ced69b331c1b08c409ce90327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1f:67:13:2a:e2:75:fc:08:54:c8:a3:7b:7f:
ad:d7:fb:1c:9f:10:a6:c0:07:90:56:0b:2f:84:cb:
54:5b:93:d8:f3:ae:7f:b1:c0:ed:9b:95:d8:e2:67:
30:09:10:7e:c9:0e:6c:4a:ba:8b:c0:44:14:e3:f6:
76:45:10:a9:8b:ac:49:53:8f:35:b3:0f:61:ed:9a:
04:ca:fb:bf:50:94:85:ab:09:76:6b:8a:80:4b:c5:
06:a2:32:1a:a6:c0:98:46:49:29:45:b2:cf:40:8a:
8e:75:67:8e:cf:04:ac:cf:35:1c:19:51:97:c3:d5:
fe:13:13:88:dd:88:a8:e1:55:54:51:a9:1c:3a:9a:
3d:82:a5:ee:2c:d5:09:c7:e4:e0:32:c1:6e:fe:36:
78:c4:6e:7c:eb:05:40:9f:d9:78:4c:80:b4:da:80:
2b:01:c0:3c:c7:b0:72:62:e8:87:49:ab:e2:e0:e7:
4e:a9:9d:1a:aa:09:cd:fc:77:f1:36:0a:5c:4f:ac:
0d:20:82:00:dc:9e:4b:91:a1:be:b5:0d:09:0d:30:
a5:fd:c5:4e:e7:12:4e:09:5f:f0:f6:3e:e5:76:99:
c0:82:50:ab:c6:83:63:0a:b3:f7:3a:fb:b3:81:61:
f3:5e:7a:54:29:f4:3f:d5:67:ff:eb:7f:e9:45:20:
8f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:22:36:15:53:36:33:1C:ED:69:B3:31:C1:B0:8C:40:9C:E9:03:27
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/SSI2FVM2MxztabMxwbCMQJzpAyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:b384::/32
Signature Algorithm: sha256WithRSAEncryption
9e:c9:6d:e0:5f:78:9b:54:10:b1:44:75:8e:24:54:56:44:f4:
13:53:d3:5f:2e:f6:e3:5e:0a:d6:8e:b7:59:bb:ff:aa:df:18:
4c:1b:2d:21:a1:af:89:65:d3:b2:ee:84:2d:13:4e:c9:aa:73:
06:b9:09:cf:d5:8b:08:56:d3:ff:aa:12:88:cc:78:24:f7:46:
25:18:30:d9:36:e5:27:a9:64:53:d0:ab:f3:13:cc:e0:13:8e:
df:67:04:d9:eb:42:da:ab:bb:44:35:f6:c0:34:f2:dd:7a:da:
cd:ef:18:e5:76:d2:37:35:05:0a:8c:b7:a3:ba:f2:35:e3:2d:
2f:9b:e2:13:92:7f:3b:bf:23:6a:f5:93:0d:8b:60:5a:09:72:
4b:14:a9:f9:a5:ed:19:e6:14:cf:89:c8:1f:34:1c:b9:0b:c8:
f1:00:84:5d:44:78:e8:b4:be:d2:35:d8:34:7e:c7:0f:9d:15:
f3:ac:85:97:94:bd:24:73:7a:da:f6:1f:fa:e3:60:28:13:b5:
70:23:1b:b8:fd:ed:d6:bc:99:7b:80:0b:72:63:98:62:c1:5e:
3c:ff:b2:72:e1:4c:8e:a1:b6:19:52:4f:6f:1a:27:3c:b4:5a:
9a:6f:f0:52:ed:7f:f8:0c:ab:9d:c5:09:2c:43:e6:01:b0:a5:
1c:a5:c3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:17 2024 by rpki-client on console-fra.rpki-client.org