Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/tDXgNYl8yLsHE9pKj4B7NBHMQtc.roa
File: tDXgNYl8yLsHE9pKj4B7NBHMQtc.roa (raw, json)
Hash identifier: x/P297ltgdNiEkARaijo6JQgaXIqqEp49Hxlb6dytSQ=
Subject key identifier: B4:35:E0:35:89:7C:C8:BB:07:13:DA:4A:8F:80:7B:34:11:CC:42:D7
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 0186F36FF9CF4B310EBF5F5CBE8F1BD29B6C
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/tDXgNYl8yLsHE9pKj4B7NBHMQtc.roa
Signing time: Sat 18 Mar 2023 06:37:27 +0000
ROA not before: Sat 18 Mar 2023 06:37:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24940
IP address blocks: 2a0e:4206::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:6f:f9:cf:4b:31:0e:bf:5f:5c:be:8f:1b:d2:9b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Mar 18 06:37:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b435e035897cc8bb0713da4a8f807b3411cc42d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6f:09:7d:4b:4b:56:9a:60:46:28:12:e5:dd:
2a:32:46:d1:e5:fc:e1:51:1b:07:bf:cd:07:5c:2f:
ed:4b:43:ec:c8:90:d6:05:e5:e2:12:f2:8c:9a:de:
29:af:de:c3:db:bb:8c:29:4d:e8:c7:bc:a6:7a:d4:
56:f8:28:48:16:7e:c4:34:b5:d0:7e:57:b3:2d:a6:
50:c6:23:f1:d2:cd:82:43:ab:dd:d4:0c:f2:3f:d6:
64:c2:35:24:73:e6:a3:6b:c5:f2:82:7e:8c:24:78:
02:5a:d2:c0:5b:f3:32:a9:6f:6d:a3:c5:aa:49:76:
57:27:2b:1e:b6:28:f4:bc:d0:96:0f:61:7b:e1:84:
a3:38:48:8c:d7:91:ee:b0:06:9f:0d:39:57:58:8f:
76:f9:5e:c2:f3:d6:ee:7a:20:08:10:a4:0d:8a:7c:
67:a5:01:ba:8c:81:6c:bd:b8:49:43:09:2f:f4:0a:
4e:bf:a5:00:1b:6e:74:81:76:01:59:a6:f7:e7:11:
30:15:d6:d3:8a:b9:f9:22:d6:b1:7e:b2:0a:fe:43:
21:03:11:fc:aa:93:4c:1c:f0:eb:2b:f0:69:35:be:
c1:63:ce:ce:5c:42:0a:7e:80:35:30:a6:58:61:05:
be:0b:66:52:46:eb:84:39:b5:c5:af:14:80:db:f7:
8c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:35:E0:35:89:7C:C8:BB:07:13:DA:4A:8F:80:7B:34:11:CC:42:D7
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/tDXgNYl8yLsHE9pKj4B7NBHMQtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4206::/32
Signature Algorithm: sha256WithRSAEncryption
39:66:c2:e8:6d:83:a6:2c:1f:36:96:6f:32:3f:28:61:46:28:
21:b1:82:bf:b1:0c:fe:a9:57:5c:6a:aa:c6:59:29:bd:28:eb:
0b:21:45:26:d5:7d:e9:4f:3e:ac:df:6c:dc:8c:af:87:58:80:
7c:4a:07:32:8e:dd:6c:51:0a:84:86:7c:46:aa:cc:42:71:2e:
7e:b9:3b:41:50:4d:73:de:b6:f0:0a:52:43:fe:df:22:ac:80:
6b:2a:a7:ac:39:3c:9e:f3:76:63:d3:48:d6:05:74:5a:fd:3f:
13:ff:e6:90:9b:c4:d7:64:91:b5:fe:c0:9e:fd:cd:94:3d:9c:
5f:55:9d:2d:2d:f2:99:70:1b:eb:a3:72:a6:ab:55:31:63:a9:
b7:f5:3f:ca:5c:14:27:c3:3b:66:50:2d:df:9f:5f:ea:b7:81:
a4:15:3f:ae:80:55:77:c2:6a:e7:11:ee:2a:a9:31:76:5e:5b:
6e:31:2f:5e:62:f4:34:d1:5e:3e:10:00:9e:92:91:fd:5d:3e:
27:f7:89:c0:1e:b4:c0:11:89:5b:48:43:e3:cf:e9:38:1c:89:
3b:a2:e0:6a:95:c8:70:ef:ea:24:2b:94:95:ae:a7:ea:8c:3b:
a8:fb:56:3a:1b:c2:81:03:1d:c7:10:ae:47:0d:13:ad:7e:5a:
3a:d2:76:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org