Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/JNYdHWnYm8p6FxgufeTJgakeH-Q.roa
File: JNYdHWnYm8p6FxgufeTJgakeH-Q.roa (raw, json)
Hash identifier: zReosTAdBV+ihtfZr9zMXQEUmadQAWjM7xPEK8N0B7Q=
Subject key identifier: 24:D6:1D:1D:69:D8:9B:CA:7A:17:18:2E:7D:E4:C9:81:A9:1E:1F:E4
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C417707A1748D255D25D94E4EAAEC8A
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/JNYdHWnYm8p6FxgufeTJgakeH-Q.roa
Signing time: Sun 01 Jan 2023 07:35:07 +0000
ROA not before: Sun 01 Jan 2023 07:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213115
IP address blocks: 2a0d:2586::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:77:07:a1:74:8d:25:5d:25:d9:4e:4e:aa:ec:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24d61d1d69d89bca7a17182e7de4c981a91e1fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:77:88:27:15:ed:0f:94:fc:cd:d7:ce:af:54:
65:2b:87:3e:df:d4:d9:e3:85:48:36:cb:54:8a:2d:
66:c7:c6:99:8f:20:4d:51:24:ce:e5:08:ed:78:93:
36:20:ef:70:b1:10:a8:36:18:d9:a7:b2:fb:40:07:
2c:28:fc:39:7e:69:c5:41:87:56:09:63:b7:ff:0e:
32:14:56:8a:31:15:53:31:53:71:ed:ed:3a:3d:8e:
b3:a8:96:35:a1:5c:32:05:ae:b9:e3:e1:84:5d:f9:
e1:f3:6d:09:7d:eb:27:db:5d:5d:06:c9:ff:57:e8:
75:1c:38:a4:24:47:90:7a:4c:90:29:0a:61:14:17:
89:c8:5a:30:56:a6:41:69:43:5a:cb:8b:b2:49:f9:
54:49:d9:eb:27:7a:2c:c6:97:ed:92:9c:30:a1:a0:
8e:f5:fd:db:fb:f4:89:c5:ab:70:32:63:d9:e8:ae:
e4:37:45:8a:0c:47:50:1e:ba:25:72:5d:8a:92:f0:
af:1f:96:fa:5b:78:c9:53:6a:d7:9b:98:13:c3:ef:
70:f7:33:1c:99:03:d8:76:15:5d:09:4a:67:e2:cf:
19:65:8b:12:27:88:46:06:f4:da:3e:37:8e:98:43:
33:11:bb:ca:a8:78:dc:7e:42:16:56:5b:83:69:f4:
6b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D6:1D:1D:69:D8:9B:CA:7A:17:18:2E:7D:E4:C9:81:A9:1E:1F:E4
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/JNYdHWnYm8p6FxgufeTJgakeH-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2586::/32
Signature Algorithm: sha256WithRSAEncryption
ac:7a:19:1e:d8:ae:54:f8:1e:c7:c4:ce:ee:8c:ad:f5:15:74:
4e:51:8b:a9:13:3f:cf:b3:11:44:69:5a:e2:58:25:d9:45:d2:
c9:e6:9a:a2:c0:a5:9d:e7:8f:59:e3:b5:ed:7a:26:a1:20:62:
40:dd:b0:3e:f2:59:cd:f1:60:1b:14:ee:3c:60:8d:dc:7d:76:
10:67:a4:dd:c1:d8:a1:84:47:e6:7e:bd:aa:f3:ac:cc:d9:fd:
f6:a3:65:44:03:79:46:39:49:88:26:5c:c4:3d:b8:dd:64:62:
a5:bc:4c:ca:4d:6d:a7:b9:25:08:6a:10:f4:21:8c:41:70:fd:
ca:2f:17:6c:96:c4:b8:69:3f:3b:70:b2:fd:3e:2a:c1:aa:36:
0e:31:b7:c4:ae:8f:95:9e:96:c8:11:3a:a9:15:ee:fd:d3:c4:
ca:62:75:d2:b0:3f:66:62:70:a5:ff:2d:a3:ce:5e:01:76:1a:
3a:4e:71:08:44:3d:ed:7f:01:44:3f:d1:f8:80:89:f4:77:9c:
07:29:b9:c0:9b:4b:52:ff:02:d9:f1:15:50:aa:a0:f1:bd:34:
54:4b:7a:99:6a:5d:a1:34:2c:d9:68:56:e0:5d:6a:67:c5:c7:
cf:7d:ca:f2:23:3c:c0:cd:68:5b:c6:c9:c0:c8:ca:c6:82:19:
4a:78:9c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org