Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/clIClHRAmHK55Ct12WmmoRkMvks.roa
File: clIClHRAmHK55Ct12WmmoRkMvks.roa (raw, json)
Hash identifier: HRRIk74jZS1zTKH1dd1RdqJksHIoyjPUHEUGJBnc/ds=
Subject key identifier: 72:52:02:94:74:40:98:72:B9:E4:2B:75:D9:69:A6:A1:19:0C:BE:4B
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C416BE3ED9C8E9654A0AD6E15F18A28
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/clIClHRAmHK55Ct12WmmoRkMvks.roa
Signing time: Sun 01 Jan 2023 07:35:04 +0000
ROA not before: Sun 01 Jan 2023 07:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203635
IP address blocks: 2a05:1084:c00::/40 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Jun 2023 21:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:6b:e3:ed:9c:8e:96:54:a0:ad:6e:15:f1:8a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7252029474409872b9e42b75d969a6a1190cbe4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3e:67:44:9b:d3:80:2b:40:28:ab:15:d9:0e:
67:34:1f:e5:9e:ce:db:ce:64:f8:68:10:21:ea:c7:
d8:1b:91:dc:6c:dd:1a:82:f6:55:3f:20:ca:00:90:
89:b3:4e:56:ba:cc:8f:b3:fe:ae:8d:6f:a5:15:f0:
c2:be:08:96:04:b1:d6:84:5d:10:59:b7:a1:34:39:
96:98:98:ed:be:f5:a9:00:6a:4f:b8:11:bd:f9:98:
42:72:59:0b:75:75:dc:fb:95:e0:7f:2d:e8:53:71:
77:72:db:d9:4d:7b:c5:bd:8e:b8:61:44:99:59:f0:
5e:5f:f7:14:7a:df:62:7c:3e:b3:c5:e3:b6:12:9c:
28:f7:92:7f:cd:32:28:e9:d1:ad:74:c2:0b:d0:54:
51:6c:d3:25:5e:de:f6:60:1e:c0:d6:a0:d8:46:ab:
d5:25:7b:71:a6:68:28:56:e3:ba:b2:47:c1:ef:05:
e9:f9:b7:09:1c:50:ef:e0:d0:5b:cc:4c:af:04:56:
df:24:80:ab:d5:31:64:95:5d:f3:07:43:f0:98:6e:
8f:95:d7:c6:f8:7c:66:53:8f:c2:bb:20:2c:98:9c:
8d:09:18:b1:eb:8a:29:c8:c2:0a:d6:4a:92:91:ef:
b4:84:c4:99:f6:c7:45:ef:a6:7a:61:a9:11:18:78:
d0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:52:02:94:74:40:98:72:B9:E4:2B:75:D9:69:A6:A1:19:0C:BE:4B
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/clIClHRAmHK55Ct12WmmoRkMvks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1084:c00::/40
Signature Algorithm: sha256WithRSAEncryption
a0:f5:e8:7c:c3:07:b2:c8:fd:a9:9d:8f:ef:82:01:c8:a2:cc:
ae:6e:71:43:10:11:41:3f:57:f5:83:56:da:a2:45:77:62:61:
bb:80:96:65:0a:b3:45:58:2b:b6:71:9b:79:c9:10:b0:19:8e:
80:c2:57:4f:54:67:79:14:61:37:a9:ad:a5:9a:67:4a:6d:a5:
a9:af:1a:25:b4:9d:a8:19:b5:21:98:a6:e5:8a:a1:fd:78:1c:
2a:07:92:0a:19:32:07:59:33:82:47:a3:f6:16:6e:47:74:da:
69:29:18:41:99:a0:aa:d6:35:61:8d:8c:72:22:01:ec:05:ba:
06:ce:29:5c:5f:c4:26:9c:03:6e:a2:c0:9f:d7:0c:bc:e7:0e:
47:1d:76:70:fb:e3:94:db:db:18:28:07:e5:39:f9:d9:45:94:
e4:c4:48:3e:75:5a:72:69:59:5c:29:5d:5b:6c:98:2c:c0:6c:
9c:10:ea:c6:56:3c:e0:94:8b:99:88:3b:e6:03:bb:8e:95:76:
49:25:d0:20:f4:09:df:c4:85:e4:2a:7b:93:ed:56:6d:08:eb:
e2:bb:f6:01:50:ca:95:5b:c6:5d:19:41:b9:fb:ac:40:16:df:
80:ae:a0:65:80:7a:ba:ce:13:05:99:38:e0:13:be:8b:06:29:
12:cf:ab:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org