Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/iJ2qOx3fMAPuqQ83o-gkfLH6YOY.roa
File: iJ2qOx3fMAPuqQ83o-gkfLH6YOY.roa (raw, json)
Hash identifier: 9P9jb5RmM7m3VNU2r4NFS0k4h6/84XZCva8ATOyTw4c=
Subject key identifier: 88:9D:AA:3B:1D:DF:30:03:EE:A9:0F:37:A3:E8:24:7C:B1:FA:60:E6
Certificate issuer: /CN=70fee176f51ce8fd81424ff73a5417341279c0f1
Certificate serial: 018B66EDB3C8037CAEC38E6B6F17D58808E8
Authority key identifier: 70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/iJ2qOx3fMAPuqQ83o-gkfLH6YOY.roa
Signing time: Wed 25 Oct 2023 13:02:15 +0000
ROA not before: Wed 25 Oct 2023 13:02:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41354
IP address blocks: 2a05:b100::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:ed:b3:c8:03:7c:ae:c3:8e:6b:6f:17:d5:88:08:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70fee176f51ce8fd81424ff73a5417341279c0f1
Validity
Not Before: Oct 25 13:02:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=889daa3b1ddf3003eea90f37a3e8247cb1fa60e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7d:22:3d:4a:be:cd:45:5c:b5:70:8b:ad:b0:
e9:12:70:1a:25:fc:7b:37:b2:ec:54:54:7b:b7:d9:
6f:dc:b6:29:06:5b:66:6e:f1:61:10:23:a6:4c:a6:
77:40:a9:b5:a6:ae:84:8d:78:96:d6:fd:4f:90:6e:
fe:86:cf:4e:62:59:aa:cc:60:39:c1:cb:3b:0e:6c:
d3:81:b7:14:b2:1c:06:3c:7f:50:4f:f6:bb:f0:54:
71:bb:74:e9:ee:58:58:bf:9d:45:86:79:17:97:30:
a4:0e:99:bf:86:96:89:44:78:5e:0a:bb:1f:d3:4d:
61:ec:62:b7:f9:94:b7:9a:b0:a3:5a:9b:60:d5:b4:
0d:47:d0:c8:1c:46:f9:ca:39:7d:46:0e:fe:f8:c7:
d3:94:cb:d1:e9:98:fd:87:36:ef:0e:7f:72:df:3f:
f3:4c:e7:5b:05:b3:ad:62:c6:77:8e:a5:fa:df:ed:
26:d8:d2:e6:53:3d:f2:a4:e3:c6:5c:df:d9:2d:a2:
2b:2e:33:6e:b8:86:0c:1c:c1:40:11:81:83:53:b4:
71:9c:94:0e:78:2b:ec:34:2f:05:b7:e8:57:56:9e:
ed:40:f0:5d:be:ae:4c:3b:67:17:f0:aa:d1:3d:a5:
2a:bb:07:01:f1:f6:ea:6f:56:b2:31:d1:bd:98:c0:
e8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9D:AA:3B:1D:DF:30:03:EE:A9:0F:37:A3:E8:24:7C:B1:FA:60:E6
X509v3 Authority Key Identifier:
keyid:70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/iJ2qOx3fMAPuqQ83o-gkfLH6YOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b100::/36
Signature Algorithm: sha256WithRSAEncryption
3c:22:28:31:5f:39:90:33:b8:d1:1f:b6:fa:da:be:d5:ed:e6:
a5:84:d3:a7:d3:6d:8b:a0:4a:cd:cd:32:f6:44:c0:01:f5:05:
fc:0f:0d:d5:b3:cb:0e:30:2c:50:cc:cd:64:a8:e9:8a:33:d3:
c4:1d:50:17:c4:d1:5f:a2:fd:b9:ca:fc:77:72:2b:28:90:0e:
ab:a0:f1:64:37:b7:b2:35:39:7e:f9:4e:6a:49:7e:d2:61:59:
d7:be:21:63:2c:a1:ad:8b:16:59:7a:30:bf:23:ad:e1:ea:4d:
9a:35:fb:39:6a:dd:c1:c4:f0:f9:39:b9:ca:4e:a1:0e:38:df:
4e:b2:3b:71:a4:7a:32:ef:23:14:1e:8e:4a:2f:fb:e9:55:39:
f4:2c:5e:c3:a6:a2:3c:4c:c4:4f:74:a3:f7:30:12:4c:a4:62:
7a:7a:a2:6f:a9:ab:b0:b9:a6:76:29:3b:f6:2c:50:e2:97:42:
a8:e7:7c:d9:25:e1:4a:07:17:64:7a:6e:12:1c:0e:a3:02:4a:
65:ac:f9:ca:df:ec:2d:55:22:65:9e:f5:d2:59:b8:99:20:5b:
cf:e4:8b:90:8e:d9:7e:f2:4d:87:0a:f7:02:32:d8:c3:c2:cc:
d5:e4:08:90:37:30:77:db:d9:0f:0b:ef:03:0a:56:7b:67:9c:
e2:1a:bb:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:12 2024 by rpki-client on console-fra.rpki-client.org