Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/jikY3kgczCPYZnQe6jqpRziwEzY.roa
File: jikY3kgczCPYZnQe6jqpRziwEzY.roa (raw, json)
Hash identifier: Uvhb93I/JSIAVE0OqaJyvKKuofDnBzAi1904HmzEdpk=
Subject key identifier: 8E:29:18:DE:48:1C:CC:23:D8:66:74:1E:EA:3A:A9:47:38:B0:13:36
Certificate issuer: /CN=006b06b5d0ff1000e10c4276eea0880af209d7a2
Certificate serial: 0186EAC866130D0FCBD0707D1F3B933D5BCD
Authority key identifier: 00:6B:06:B5:D0:FF:10:00:E1:0C:42:76:EE:A0:88:0A:F2:09:D7:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AGsGtdD_EADhDEJ27qCICvIJ16I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/jikY3kgczCPYZnQe6jqpRziwEzY.roa
Signing time: Thu 16 Mar 2023 14:17:27 +0000
ROA not before: Thu 16 Mar 2023 14:17:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a04:1f41::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 26 Jun 2023 14:52:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:c8:66:13:0d:0f:cb:d0:70:7d:1f:3b:93:3d:5b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=006b06b5d0ff1000e10c4276eea0880af209d7a2
Validity
Not Before: Mar 16 14:17:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e2918de481ccc23d866741eea3aa94738b01336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:98:1d:d7:24:12:4f:4d:b0:2b:fe:2d:4d:ec:
72:78:55:18:c6:06:d4:b7:4f:56:40:1c:31:39:39:
61:9d:08:93:b9:fa:c6:13:03:3d:47:a3:0a:65:88:
9a:aa:02:cc:08:76:59:37:a2:5a:00:d8:40:81:fe:
42:b4:dc:f6:cf:2d:a7:a7:1a:70:6c:8b:22:d8:33:
59:db:35:9f:64:43:c9:b1:6d:a5:6e:75:59:1f:46:
47:5d:2a:89:db:32:5d:3d:d6:2b:39:07:0d:00:93:
c7:84:e3:55:75:d8:3c:a0:c7:8d:14:3c:8e:88:02:
9d:3f:73:05:06:73:c1:4b:b5:5a:6b:aa:0f:15:cb:
bf:56:64:1c:2e:55:d3:74:38:56:df:b5:8c:28:c1:
5e:fc:6d:92:ee:ef:86:64:be:23:b1:13:66:84:34:
de:64:09:d8:fb:9a:fd:f0:45:dd:9a:15:c8:42:f3:
12:db:3e:d2:d8:bd:4e:c5:c4:20:ec:37:91:da:3f:
48:f4:7c:6f:20:97:25:fc:bf:4e:e6:50:fd:ce:1a:
7f:f4:ad:f4:ed:82:5a:0c:e1:5c:74:20:25:d8:2b:
2a:48:42:7d:05:5d:ae:17:db:10:bc:22:81:e6:74:
b9:b2:22:67:ae:09:79:36:43:e4:84:a6:da:01:7d:
60:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:29:18:DE:48:1C:CC:23:D8:66:74:1E:EA:3A:A9:47:38:B0:13:36
X509v3 Authority Key Identifier:
keyid:00:6B:06:B5:D0:FF:10:00:E1:0C:42:76:EE:A0:88:0A:F2:09:D7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AGsGtdD_EADhDEJ27qCICvIJ16I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/jikY3kgczCPYZnQe6jqpRziwEzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/4737c9-e263-44e7-8fed-57c955c9c85d/1/AGsGtdD_EADhDEJ27qCICvIJ16I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:1f41::/32
Signature Algorithm: sha256WithRSAEncryption
77:77:e1:bd:a0:9d:58:dc:24:b8:6e:36:38:7f:9a:44:66:18:
4b:75:56:7d:30:30:25:be:39:63:78:a3:24:ef:c5:af:61:48:
db:e5:69:2e:ea:66:b0:60:5d:7e:b3:64:26:c2:87:9d:02:a1:
9a:51:ca:a9:81:22:d9:65:23:cd:5d:4a:96:0a:3d:24:23:bb:
da:2a:dd:b7:bd:bc:da:0f:ff:9b:f4:99:b6:5c:84:81:d2:11:
8a:b8:3c:cd:99:1e:c7:78:24:21:0b:df:27:90:2c:ac:dc:b4:
1f:ad:6d:60:25:fd:87:c3:46:56:57:25:a9:6d:cf:91:d5:e7:
1e:e4:f0:35:55:c1:3b:1f:74:3d:9b:7e:63:c5:a3:1a:80:67:
4c:cc:c3:6a:45:b6:9c:c9:bf:5e:36:31:61:05:89:4c:69:35:
a3:e3:fc:99:78:8a:07:49:6a:a8:d9:18:d3:1e:ab:3c:d7:37:
69:bc:66:ce:ae:17:a2:9e:a0:43:4b:fd:23:2c:3a:82:df:b4:
23:8e:30:4e:73:3c:aa:38:c8:45:ad:80:b8:0d:5c:5b:bb:0e:
a0:29:1d:06:5d:5d:a4:d4:e6:e9:82:a3:dd:b1:2d:1e:60:3f:
cf:56:0e:fb:4f:a4:d7:dd:f2:5b:5a:01:5b:0c:17:25:d1:2c:
00:66:0c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:26 2024 by rpki-client on console-ams.rpki-client.org