Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/7XgKpKEExmdJiUlg9NYWOcLDcpY.roa
File: 7XgKpKEExmdJiUlg9NYWOcLDcpY.roa (raw, json)
Hash identifier: oXFMP2K0BjxsPl7jsQw+nYg2s8KZogTQNhSzJWWYqHM=
Subject key identifier: ED:78:0A:A4:A1:04:C6:67:49:89:49:60:F4:D6:16:39:C2:C3:72:96
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 018CC49373AC0BD6078DEDE9D67598ED261C
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/7XgKpKEExmdJiUlg9NYWOcLDcpY.roa
Signing time: Mon 01 Jan 2024 10:30:46 +0000
ROA not before: Mon 01 Jan 2024 10:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209864
IP address blocks: 2a0d:2146:8040::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 12 Sep 2024 12:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:73:ac:0b:d6:07:8d:ed:e9:d6:75:98:ed:26:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 10:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed780aa4a104c66749894960f4d61639c2c37296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6a:25:0f:28:7a:f7:4f:3c:c9:5e:b7:d1:27:
e8:43:d7:85:62:e5:62:fd:0d:8d:e7:4b:74:76:f3:
9d:ff:f3:fc:65:ed:08:91:ea:06:ee:67:cc:82:ac:
2c:e7:e2:11:b4:6d:3c:d5:8f:3e:cf:75:db:0a:30:
6c:4b:08:52:48:a0:99:3e:de:d3:d4:b7:b2:0c:26:
e2:dd:56:2c:d1:f8:3f:1b:6b:b7:b5:66:f0:91:c1:
05:84:c1:4e:d6:af:4c:30:c3:e2:44:9e:31:be:ba:
38:2d:43:e0:f1:1b:9c:00:4b:04:77:8b:a1:06:be:
9b:32:8f:92:83:5a:84:d5:0f:5c:ce:01:3d:2e:2d:
81:26:56:f6:7e:ec:5b:88:44:9a:ca:94:d3:aa:a2:
2b:b7:57:eb:62:85:37:5e:6d:5c:36:e9:19:90:cd:
45:2e:24:2e:36:b0:6c:cd:29:39:8c:39:38:54:45:
18:9d:4f:26:c7:56:78:71:e2:18:21:d0:79:65:36:
34:81:4d:32:93:ba:e2:8b:e1:dd:2b:fa:d4:57:a8:
28:f1:40:d8:99:13:8c:29:10:53:74:1f:e1:ce:ab:
be:db:e5:5c:78:e5:3d:f9:64:22:83:09:64:77:12:
96:3d:c7:f0:37:b0:3e:f3:6f:16:6f:60:64:2e:4d:
3f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:78:0A:A4:A1:04:C6:67:49:89:49:60:F4:D6:16:39:C2:C3:72:96
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/7XgKpKEExmdJiUlg9NYWOcLDcpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:8040::/48
Signature Algorithm: sha256WithRSAEncryption
32:04:20:17:37:a1:fb:ed:00:e1:d2:d2:20:d0:2a:bb:a3:7d:
75:ab:60:ad:5e:75:36:3c:c3:bd:f6:fa:50:29:b9:a4:cb:9a:
d7:85:ab:95:8b:f9:75:2a:cc:1f:fd:a4:7f:d4:91:b3:15:be:
87:7d:1b:21:b7:a1:3c:02:e5:9f:7a:43:01:fb:e1:f2:70:15:
0c:d6:51:57:b3:40:5e:87:08:0c:d9:09:09:46:c2:9b:c7:5d:
64:4f:5b:d7:db:d3:14:bd:22:2a:1a:4b:cf:fd:ff:a9:01:56:
06:9b:e8:af:0d:d1:4d:83:9a:0d:47:b9:2a:73:1e:a9:89:57:
97:6b:47:a4:66:21:32:da:fd:7d:9c:07:8a:38:37:03:43:24:
ce:6e:2e:06:07:f3:56:fc:ae:46:cc:8a:ee:06:78:f3:52:5f:
e8:db:a3:0f:08:a5:50:9c:36:c9:93:99:d9:53:1c:2e:56:ec:
74:66:0f:0c:c9:71:22:44:68:21:16:00:27:4e:82:01:08:79:
44:4b:5d:a1:f5:55:66:36:1a:bc:c0:3f:61:0e:bf:dd:05:07:
ac:f1:de:82:60:56:ca:b3:45:c6:51:36:6d:e0:1c:6a:ea:fa:
29:60:d4:4d:02:69:5f:f7:ee:6e:a9:53:46:79:bd:3f:ea:20:
d3:21:31:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 14:04:23 2024 by rpki-client on console-ams.rpki-client.org