Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/N91z4AgIFZ1qo-H-OMdAALdD9PE.roa
File: N91z4AgIFZ1qo-H-OMdAALdD9PE.roa (raw, json)
Hash identifier: shUK2W/LSYDVwwYBX+iINYmfYXIVSvmYtCAe1YW8vXA=
Subject key identifier: 37:DD:73:E0:08:08:15:9D:6A:A3:E1:FE:38:C7:40:00:B7:43:F4:F1
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018CC79475A48AA0F967A5DE03ADAF0D5286
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/N91z4AgIFZ1qo-H-OMdAALdD9PE.roa
Signing time: Tue 02 Jan 2024 00:30:44 +0000
ROA not before: Tue 02 Jan 2024 00:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199669
IP address blocks: 2a11:f187::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 26 Jan 2024 15:50:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:75:a4:8a:a0:f9:67:a5:de:03:ad:af:0d:52:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Jan 2 00:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37dd73e00808159d6aa3e1fe38c74000b743f4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:82:0f:ee:b4:b2:e9:74:24:64:15:95:91:0e:
fb:6b:ee:d2:a0:f5:5c:58:e2:28:aa:9b:78:3d:3f:
9c:16:1e:59:a5:73:d0:bf:0e:94:6a:38:c7:20:cc:
40:fc:6d:a2:5d:f3:14:50:9e:05:79:15:32:9d:55:
6c:fa:b6:6e:e3:a0:05:0c:ba:01:88:83:05:bc:df:
16:63:47:83:eb:03:04:db:3a:53:fc:55:04:5c:ee:
80:15:de:51:4d:0e:6a:34:b1:ff:9f:4d:dc:18:31:
60:32:d5:a8:1f:f4:b8:8e:ec:e3:3b:c0:6c:95:15:
f5:0f:10:1b:5d:5e:d5:7c:af:96:68:70:51:65:a3:
17:b3:7e:53:7c:aa:3e:67:cb:65:d9:10:e2:88:a4:
45:39:3d:34:51:76:b2:2b:2e:7d:9d:ea:0f:08:4e:
42:9c:aa:cb:2c:e7:60:d5:c0:d5:b3:6b:dc:b1:f6:
aa:6a:18:48:f4:0e:e5:44:9d:38:e0:9d:9c:59:d2:
b2:02:e9:19:40:86:9a:f4:0e:5e:28:fc:a8:8c:04:
12:04:a6:40:5c:06:be:51:3e:01:7a:00:f8:2f:5f:
73:06:f7:85:a9:c8:fb:bb:a7:95:d5:5c:38:3f:78:
10:dc:a5:0c:77:f8:92:80:90:d2:37:c1:f2:4b:cf:
0a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DD:73:E0:08:08:15:9D:6A:A3:E1:FE:38:C7:40:00:B7:43:F4:F1
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/N91z4AgIFZ1qo-H-OMdAALdD9PE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f187::/32
Signature Algorithm: sha256WithRSAEncryption
a2:36:54:74:9c:f4:3a:53:3b:e3:7e:37:54:4a:91:61:0f:bf:
a2:eb:91:0f:e9:7a:ff:1a:b5:8e:8d:40:f1:37:4c:74:b6:49:
5b:bd:a1:5c:4c:a0:42:be:e0:5b:22:d9:80:56:48:ed:1b:f9:
70:dd:0a:86:21:15:94:d3:3c:6e:1d:18:90:12:6f:36:86:78:
e5:95:f8:97:25:9e:26:81:37:ac:ad:3b:1d:64:b6:86:45:c6:
48:67:df:87:77:5a:fe:38:fd:b6:fd:f2:6f:d0:d6:87:cd:b7:
7c:00:8d:af:a3:88:8d:71:3f:a6:79:ef:97:cf:95:8c:79:e9:
04:8c:60:dc:b6:35:74:8e:1b:55:ab:fa:af:70:f7:e2:16:17:
36:66:df:93:52:84:ab:26:f2:ac:6c:41:eb:ac:4a:5a:5a:c2:
48:99:ba:b3:31:31:9f:2a:b6:70:8b:e0:81:a3:47:4a:29:e2:
a0:61:45:2b:b2:30:89:a8:a7:90:1f:c5:cb:f6:da:4e:2d:04:
76:ef:18:4a:4b:72:2c:a0:39:13:9f:55:80:cc:9e:93:76:42:
75:6e:ee:b4:7b:69:f4:68:41:91:49:90:e4:de:35:83:a8:6f:
0e:95:b1:6b:11:44:d1:d2:9e:5c:97:3a:d7:b9:4d:9a:c8:92:
4d:43:15:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org