Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/mrkQCvFTqGGB6Q4zHzcTNmVc2-k.roa
File: mrkQCvFTqGGB6Q4zHzcTNmVc2-k.roa (raw, json)
Hash identifier: RCXGkCrlR4ehUkGfnzZuznmbSrkxhvzG+yQxwuB2XfY=
Subject key identifier: 9A:B9:10:0A:F1:53:A8:61:81:E9:0E:33:1F:37:13:36:65:5C:DB:E9
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018572A7E742C27A78905AF7238CE4E53FFA
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/mrkQCvFTqGGB6Q4zHzcTNmVc2-k.roa
Signing time: Mon 02 Jan 2023 13:24:44 +0000
ROA not before: Mon 02 Jan 2023 13:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 2a0a:f585::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:e7:42:c2:7a:78:90:5a:f7:23:8c:e4:e5:3f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Jan 2 13:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ab9100af153a86181e90e331f371336655cdbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9c:c7:f5:7b:d1:82:8e:bd:4e:c9:f8:b0:65:
05:01:ca:19:dc:23:1d:1e:d2:27:42:c7:a2:1e:27:
a9:fd:c9:b9:f7:7a:56:d6:82:6c:10:16:a0:7d:80:
59:4c:ec:fc:05:35:84:93:8c:55:e9:24:8e:31:6a:
1b:92:b4:1d:86:ab:aa:91:98:d2:e7:81:0a:39:82:
63:7c:6a:a8:f0:86:a2:b5:35:9f:dc:98:51:5e:15:
17:b7:09:1c:9a:73:5f:db:c8:8e:9a:7f:49:52:43:
91:a6:55:61:6d:c6:de:26:4a:39:6d:9e:b3:02:cf:
dc:55:63:06:2c:b1:6e:7d:00:a4:5a:d8:93:b8:34:
e0:eb:34:7f:49:fc:96:28:62:71:df:94:a1:ce:12:
38:88:1b:44:3f:63:51:93:75:cd:55:5f:6c:95:da:
e2:07:66:b7:1a:81:15:82:93:3b:76:04:b0:e2:98:
90:68:70:b0:69:33:c1:32:88:fc:8d:48:a3:d9:a1:
4b:b8:fa:bf:9d:a2:2b:c6:67:49:05:38:b5:b6:e0:
be:4a:cc:29:d8:d9:a9:30:d2:79:9f:2f:27:b1:6d:
5f:95:29:1d:d9:72:85:e1:7d:2d:b8:d2:42:1a:e6:
00:69:f6:fa:83:7d:63:52:05:7c:16:b3:8a:5e:69:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B9:10:0A:F1:53:A8:61:81:E9:0E:33:1F:37:13:36:65:5C:DB:E9
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/mrkQCvFTqGGB6Q4zHzcTNmVc2-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:f585::/32
Signature Algorithm: sha256WithRSAEncryption
6c:23:ed:a2:92:dd:12:24:6b:82:14:50:81:e6:c5:b8:6a:f0:
f4:8e:e6:e4:92:3b:45:c8:da:34:8d:a4:28:0b:9c:c1:15:19:
7c:ff:16:4e:30:fe:9f:47:45:0a:05:ea:2b:56:e4:d6:20:81:
43:b5:c5:f5:5b:0c:72:d9:41:1d:5a:f0:a5:bf:b3:22:e1:2f:
e1:7b:4d:d6:f3:80:91:8b:70:72:7f:cf:cc:64:90:a5:22:a5:
4d:d4:ad:ce:eb:07:a7:fc:99:ad:3a:42:e7:88:34:3b:85:b4:
b9:6c:ad:94:2e:8d:1d:0d:e6:a8:9c:39:32:5a:27:84:22:9a:
ba:90:3d:6a:1a:fe:52:96:da:e6:06:57:6c:a9:4b:e2:86:4c:
16:2e:d3:03:b9:c5:ea:d2:00:26:34:93:d6:77:fd:df:f6:04:
37:04:b0:77:ac:31:dd:1c:86:2c:9b:16:30:75:42:85:85:2c:
e5:a1:3e:bf:fb:f6:75:8f:95:c7:35:e9:67:f5:fc:9d:49:f7:
a1:be:e6:1f:9e:a4:8b:40:a1:9e:07:8d:0b:77:7c:74:53:c5:
93:eb:c3:19:6f:80:f7:ca:7b:c2:14:52:84:90:1c:d8:d7:25:
ca:34:ee:72:e6:40:cb:ba:37:61:09:23:e7:e3:3e:3b:34:63:
98:6e:af:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org