Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/aACIf5nM7vShSVa-Pa7da_MoeCE.roa
File: aACIf5nM7vShSVa-Pa7da_MoeCE.roa (raw, json)
Hash identifier: m6fjf5Fxw6d6SjS4LVfh0Wyu2syl2tpsNL0WTxLLd3g=
Subject key identifier: 68:00:88:7F:99:CC:EE:F4:A1:49:56:BE:3D:AE:DD:6B:F3:28:78:21
Certificate issuer: /CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Certificate serial: 019053EA2EA94592C803F3EDE76594ABFBDC
Authority key identifier: 2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/aACIf5nM7vShSVa-Pa7da_MoeCE.roa
Signing time: Wed 26 Jun 2024 09:39:34 +0000
ROA not before: Wed 26 Jun 2024 09:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42375
IP address blocks: 2a06:7840::/29 maxlen: 29
2a0b:2a80::/29 maxlen: 29
2a0d:4440::/29 maxlen: 29
2a0f:f00::/32 maxlen: 32
2a0f:f02::/32 maxlen: 32
2a0f:f03::/32 maxlen: 32
2a0f:f04::/30 maxlen: 30
2a0f:59c0::/29 maxlen: 29
2a0f:a380::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 26 Sep 2024 17:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:ea:2e:a9:45:92:c8:03:f3:ed:e7:65:94:ab:fb:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Validity
Not Before: Jun 26 09:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6800887f99cceef4a14956be3daedd6bf3287821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6d:2f:c5:14:55:64:05:91:66:a5:e6:c3:b5:
04:e6:b1:de:a1:a1:03:5a:e9:f7:75:ef:93:57:b1:
83:0d:cb:fe:82:c5:f2:ab:db:b5:e9:c2:26:44:c3:
81:b4:c4:ef:fa:38:0d:34:c8:18:eb:ee:86:20:39:
50:8f:65:1c:6f:7a:d6:a2:1f:31:ac:81:0b:39:87:
e0:49:31:b8:41:db:be:5f:a2:e0:17:96:0a:25:11:
78:3e:6e:0d:0e:38:17:cd:0f:2b:ab:5d:52:5a:6a:
e5:c9:7f:2a:21:43:d1:c7:50:b3:9a:11:ce:1b:84:
62:55:c2:0f:1e:95:71:d4:0a:fa:34:f2:da:55:20:
17:34:54:b2:b8:86:41:41:77:8f:db:8e:1a:f7:76:
5b:f0:b3:f9:18:81:65:e5:e7:26:fd:4a:3b:4f:6d:
ca:bf:06:1e:b3:eb:8c:04:0f:b5:4b:14:4d:48:d2:
fe:60:5d:4c:3c:48:29:1b:cb:65:c0:2d:7f:da:75:
1a:8d:90:d3:2b:3e:0b:f7:89:c6:34:14:18:2b:a1:
ea:64:db:e0:e9:9d:33:f6:c7:c4:85:b7:8a:dd:6b:
3b:e9:10:f5:8b:5a:6d:b4:d5:61:d6:fc:32:22:af:
b1:c8:13:b1:d3:3e:63:cc:5a:95:62:ef:19:97:6c:
74:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:00:88:7F:99:CC:EE:F4:A1:49:56:BE:3D:AE:DD:6B:F3:28:78:21
X509v3 Authority Key Identifier:
keyid:2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/aACIf5nM7vShSVa-Pa7da_MoeCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/LhFkqbUBPWLwUTRPbfkfE7x-yw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:7840::/29
2a0b:2a80::/29
2a0d:4440::/29
2a0f:f00::/32
2a0f:f02::-2a0f:f07:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:59c0::/29
2a0f:a380::/29
Signature Algorithm: sha256WithRSAEncryption
0d:97:e5:81:9c:d0:e8:8a:f1:dd:03:30:e2:6b:c1:6a:aa:f3:
67:6e:7a:c7:b6:e6:15:3a:e5:28:f0:f2:b4:3c:f0:eb:36:48:
d9:2e:c6:1b:74:48:ba:e6:b8:e6:cb:46:61:5f:ec:c8:16:82:
f3:83:c9:de:d6:22:7e:db:8b:61:d3:cd:c5:e6:67:ba:65:69:
fd:c8:b6:22:6b:07:0f:11:37:90:de:39:aa:be:3f:56:95:d3:
d0:c5:2d:e4:1b:c8:ae:08:8e:89:9c:e8:71:8d:64:7d:f8:00:
f8:b2:64:20:e1:ef:1f:7c:5b:95:3e:05:dd:07:81:bf:19:38:
6b:cd:e0:51:83:13:6d:e7:d4:c7:e3:a5:ab:46:f8:8a:07:18:
14:27:ac:ee:eb:7e:13:06:4d:67:bc:3f:e2:45:67:0d:8e:a8:
04:95:e1:b0:86:06:70:98:9b:81:e9:c4:19:1f:b5:e4:00:5a:
1b:42:15:4a:45:d4:2a:6c:22:3e:84:8b:56:12:ac:6c:45:b8:
b3:e4:d9:34:cd:dc:b6:05:96:25:95:e8:db:37:f2:5c:40:b1:
c7:ac:33:3e:20:e0:c2:84:b6:ff:79:5f:91:48:0b:fa:42:27:
49:fc:24:a6:cb:24:b7:72:0e:66:83:21:7e:28:f2:a5:45:75:
f1:4d:51:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 26 19:18:10 2024 by rpki-client on console-ams.rpki-client.org