Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/94MZDdFlc4zE4OA8up9R-60dsiA.roa
File: 94MZDdFlc4zE4OA8up9R-60dsiA.roa (raw, json)
Hash identifier: td4gSthKPZuvA9UHlQJwK5pYByAqXmVfeqF+Jd9t1hc=
Subject key identifier: F7:83:19:0D:D1:65:73:8C:C4:E0:E0:3C:BA:9F:51:FB:AD:1D:B2:20
Certificate issuer: /CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Certificate serial: 0190928C02FCD41A217EF1E06747FC5035AA
Authority key identifier: F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/94MZDdFlc4zE4OA8up9R-60dsiA.roa
Signing time: Mon 08 Jul 2024 13:32:47 +0000
ROA not before: Mon 08 Jul 2024 13:32:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 2a14:11c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 28 Aug 2024 16:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:8c:02:fc:d4:1a:21:7e:f1:e0:67:47:fc:50:35:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Validity
Not Before: Jul 8 13:32:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f783190dd165738cc4e0e03cba9f51fbad1db220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:02:50:f8:6e:c0:b0:11:96:d3:91:af:f7:b3:
81:f7:49:c7:be:a5:e7:1d:f4:7a:0d:e7:77:6a:9d:
87:de:bb:49:55:b9:44:c3:00:04:9c:d5:5f:68:7e:
70:13:c6:41:5c:32:81:45:fd:41:bd:35:c7:fd:c5:
ba:80:18:e4:d3:4b:4f:5b:c9:c1:d3:1a:72:ee:99:
81:2c:cc:ad:d4:72:0d:b4:0a:ae:ea:9b:d5:24:85:
cd:a1:5c:8e:14:eb:29:89:ba:52:5f:23:7c:d7:25:
8d:de:24:7a:14:7b:99:b5:c1:f3:8a:80:9c:09:2c:
09:aa:f3:c0:e0:13:04:cd:ac:cc:38:82:4d:e1:e0:
50:62:84:08:27:59:f8:7c:9a:63:8a:13:90:f2:fe:
58:03:2c:70:5d:cf:ec:cb:6d:63:eb:c5:2f:c4:9e:
21:c9:a9:9f:70:cc:35:10:2b:38:b5:07:34:73:1d:
a2:fa:d7:f8:d4:9a:8c:7f:3b:b7:e2:0f:7e:82:fd:
69:00:ed:12:57:50:d0:16:3e:d9:c7:08:b3:9d:11:
c1:c9:89:ad:bd:3e:04:d0:d7:f9:a9:f2:9e:95:dd:
00:33:c1:8d:ea:b5:2d:3a:2c:ae:c2:d6:a9:54:e9:
61:ff:ad:e6:d1:ff:70:eb:01:e1:ef:b6:ba:e9:cc:
d9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:83:19:0D:D1:65:73:8C:C4:E0:E0:3C:BA:9F:51:FB:AD:1D:B2:20
X509v3 Authority Key Identifier:
keyid:F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/94MZDdFlc4zE4OA8up9R-60dsiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:11c0::/29
Signature Algorithm: sha256WithRSAEncryption
55:27:b4:14:da:ad:f2:19:f5:ca:1d:ff:cc:9a:16:35:8b:9f:
ad:62:f5:d4:47:a6:d7:91:7d:7c:87:5c:30:b3:98:b3:59:2a:
12:dd:df:8d:43:5c:85:5c:e7:46:52:68:87:7d:00:ac:df:53:
4f:b5:f6:0a:6a:a3:08:e8:4f:79:3a:55:af:5f:fe:77:31:bb:
5e:de:c4:6a:71:b2:e0:8e:b0:8a:b0:2f:ab:9c:47:3f:c4:f0:
69:98:34:bf:ec:e8:2f:ad:28:7e:94:00:24:18:63:4c:1f:19:
13:3e:24:7b:96:03:34:33:f1:bd:5c:40:ed:9d:18:5d:1e:53:
dd:cd:e6:48:dc:bc:0c:c4:04:67:14:7c:9d:c9:c0:fd:da:95:
2e:74:1c:b1:5b:57:94:6d:5c:09:3b:86:78:19:35:95:51:43:
b5:f2:f3:b7:43:b7:bb:62:98:cb:9b:56:03:0d:65:8d:7d:be:
1f:19:0b:a4:a3:fa:21:b2:ea:80:c3:49:f6:5b:6c:0e:17:5c:
0d:12:f8:be:02:b9:87:fa:2a:c7:50:65:fc:a0:0a:e5:a2:f3:
97:38:f2:d4:89:36:9c:92:70:71:d0:0c:67:e5:c9:50:8f:a4:
17:46:f5:ca:5e:37:1b:c1:5c:17:4e:6a:34:6c:08:ad:0c:2a:
bb:05:52:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 17:52:54 2024 by rpki-client on console-fra.rpki-client.org