Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/IAEjvSS_FWFn4PnH6jtVJQlJeW0.roa
File: IAEjvSS_FWFn4PnH6jtVJQlJeW0.roa (raw, json)
Hash identifier: Wz1163+4U7WRJ8eBT3jrEck7mAXk9lbWuY8AujDsNKQ=
Subject key identifier: 20:01:23:BD:24:BF:15:61:67:E0:F9:C7:EA:3B:55:25:09:49:79:6D
Certificate issuer: /CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Certificate serial: 018993F6B8C6EADF5E41BD147393C01B379A
Authority key identifier: 84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/IAEjvSS_FWFn4PnH6jtVJQlJeW0.roa
Signing time: Wed 26 Jul 2023 20:49:27 +0000
ROA not before: Wed 26 Jul 2023 20:49:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32482
IP address blocks: 2a0f:58c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:93:f6:b8:c6:ea:df:5e:41:bd:14:73:93:c0:1b:37:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Validity
Not Before: Jul 26 20:49:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=200123bd24bf156167e0f9c7ea3b55250949796d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:23:cf:7f:fa:d9:ff:c3:ff:be:ba:43:f5:c3:
c5:0b:32:2d:32:be:e0:b9:fa:58:bd:39:65:b1:e7:
1c:81:77:b5:97:18:6b:2f:97:14:f1:18:0e:ad:95:
c8:11:cc:bd:92:75:6f:36:0d:38:27:83:2f:1c:89:
52:ab:de:37:41:4a:ac:96:d4:d6:3a:13:f0:63:ad:
89:fd:68:65:8e:81:1c:30:b0:ea:0e:aa:5c:f4:74:
56:4c:02:1e:1d:bd:76:76:9f:b4:36:64:f3:d6:ec:
45:62:bd:2c:43:75:8e:6f:07:63:f6:8f:c6:8d:71:
14:1c:3d:53:ba:4c:b6:31:f7:5b:33:ad:d8:f5:ef:
c9:40:95:c5:a7:29:2b:8d:a0:e7:5d:c2:c5:1c:af:
ae:c3:07:43:df:66:84:c4:f0:4d:fa:f2:08:c4:5b:
8c:a8:1c:4c:2f:d5:f9:a4:b9:8e:b5:2e:f7:3e:77:
15:8a:0b:10:64:6f:98:83:51:47:94:bc:73:ac:6f:
33:a5:c9:96:5e:ca:bd:1d:fa:c6:7d:3c:74:56:a7:
df:e0:da:1f:91:14:f9:8b:a6:64:49:cb:85:05:39:
32:91:a7:8e:48:74:4b:68:14:9b:26:3f:d1:cb:a5:
06:3b:8e:17:79:40:23:b4:5f:ea:8b:5c:4a:d6:2a:
ce:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:01:23:BD:24:BF:15:61:67:E0:F9:C7:EA:3B:55:25:09:49:79:6D
X509v3 Authority Key Identifier:
keyid:84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/IAEjvSS_FWFn4PnH6jtVJQlJeW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:58c0::/32
Signature Algorithm: sha256WithRSAEncryption
77:d6:ea:6e:18:c8:34:42:0d:f6:e8:96:f0:a1:94:9c:e6:41:
34:fc:16:e1:1a:e2:d0:a0:12:1e:73:6d:4a:a8:78:5a:83:3c:
4f:b1:09:06:4a:f4:d9:bc:36:81:67:cc:65:04:46:1a:23:28:
a4:cd:be:97:34:91:9a:42:e5:90:2e:4d:5f:d6:83:57:34:d4:
fc:b7:f3:f8:ee:28:57:0c:f9:fa:2a:f6:2e:2e:2c:03:7d:ad:
26:48:d1:8e:ad:c3:9f:99:56:a8:d1:75:92:b6:1c:4e:63:14:
42:0a:f7:f9:ff:2b:a7:ef:f2:0d:27:51:bb:30:b6:68:a2:64:
a8:8a:36:f6:4a:d0:6a:c4:d7:d3:40:d9:fd:04:3d:68:98:bf:
26:2a:9e:5a:02:19:a5:0b:9d:c7:fc:8d:32:17:05:cc:22:92:
f9:7c:fb:fd:af:0e:de:a4:72:65:ae:32:a7:1d:ff:13:d0:47:
cd:b8:63:4d:bd:f5:8a:8b:6f:96:f3:60:3f:51:58:b4:e6:70:
c3:0c:1d:b7:3c:e5:3e:d4:b9:c2:d1:b3:33:12:66:be:71:ce:
2d:31:32:57:e4:56:9f:e1:4c:ca:60:03:2e:58:3c:f9:b5:3e:
22:69:a4:17:a1:9f:8b:2f:84:28:9d:3d:95:36:63:98:c7:40:
78:2d:a8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:07 2024 by rpki-client on console-fra.rpki-client.org