Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/OrvGbXuS9d_4azmds7T5v57aikk.roa
File: OrvGbXuS9d_4azmds7T5v57aikk.roa (raw, json)
Hash identifier: qYZSrb6Ro30qRHh5A5awrkCiBz4rLCrZzsV+YjO6bEs=
Subject key identifier: 3A:BB:C6:6D:7B:92:F5:DF:F8:6B:39:9D:B3:B4:F9:BF:9E:DA:8A:49
Certificate issuer: /CN=41a59b0960ea65d6b92393ee0347a1a832f9b984
Certificate serial: 01897245880000CCE278939A44009A0307AF
Authority key identifier: 41:A5:9B:09:60:EA:65:D6:B9:23:93:EE:03:47:A1:A8:32:F9:B9:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/OrvGbXuS9d_4azmds7T5v57aikk.roa
Signing time: Thu 20 Jul 2023 07:48:26 +0000
ROA not before: Thu 20 Jul 2023 07:48:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29668
IP address blocks: 2a01:90:200::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:45:88:00:00:cc:e2:78:93:9a:44:00:9a:03:07:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41a59b0960ea65d6b92393ee0347a1a832f9b984
Validity
Not Before: Jul 20 07:48:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3abbc66d7b92f5dff86b399db3b4f9bf9eda8a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2f:7d:ac:6e:f1:ba:af:6d:68:7d:8c:84:d0:
3f:07:f4:4a:04:33:86:c9:e9:3b:5c:07:9c:5c:26:
25:77:6b:1e:69:f2:52:b7:67:cd:e4:9a:a1:33:55:
ed:67:fd:37:e5:3d:05:32:0f:73:6d:4d:df:76:f3:
95:6e:eb:7d:5a:b2:28:c0:23:7b:cf:6b:ad:8e:d6:
e5:33:a3:d9:4a:be:5a:78:cf:54:09:f7:31:79:88:
77:8b:08:19:95:c1:29:d1:b6:25:f7:46:b2:b2:0c:
02:d6:fa:cb:cc:70:96:27:78:79:3c:51:c2:05:06:
91:8c:71:f5:1a:a0:b0:2f:55:89:d3:23:b7:56:36:
80:84:4f:de:24:f8:63:69:73:09:71:09:bc:83:a2:
f2:6d:59:03:45:49:09:2c:01:69:cc:92:71:b5:81:
50:fe:4c:47:a1:5e:58:62:35:85:fb:46:e5:0b:2a:
04:f7:d5:58:f4:d2:cb:08:a0:b2:c4:d7:48:77:12:
34:d7:45:e4:35:51:7a:9a:71:0a:5e:a2:7c:6d:f2:
e9:67:3e:0f:99:5b:f0:87:a0:b4:dd:5d:4a:9a:f9:
1a:78:90:6a:48:27:15:5e:b3:be:05:34:5a:37:14:
0d:fc:3e:65:ba:b5:f6:58:e9:c1:67:64:a6:8b:53:
b3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BB:C6:6D:7B:92:F5:DF:F8:6B:39:9D:B3:B4:F9:BF:9E:DA:8A:49
X509v3 Authority Key Identifier:
keyid:41:A5:9B:09:60:EA:65:D6:B9:23:93:EE:03:47:A1:A8:32:F9:B9:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/OrvGbXuS9d_4azmds7T5v57aikk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/QaWbCWDqZda5I5PuA0ehqDL5uYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:90:200::/40
Signature Algorithm: sha256WithRSAEncryption
56:ba:6e:13:d3:1a:93:cf:32:ec:13:e6:95:ba:b4:43:07:23:
4b:e4:9f:7e:e8:3b:97:69:0d:c3:0b:4d:1f:e7:a2:13:46:6d:
b7:46:89:61:30:37:46:66:4c:44:95:c6:23:9d:0a:52:0c:c0:
4c:33:2b:63:dc:b4:0c:92:46:7e:79:b1:e5:4d:a9:46:be:5d:
ae:7f:f3:91:da:8f:10:8e:94:59:91:41:89:31:c5:cd:34:4b:
33:66:b0:80:c7:28:0b:c6:43:32:68:a0:9a:36:87:c6:ec:d7:
38:5e:3a:17:0a:81:79:86:1c:0b:ab:3d:6e:12:7f:20:ee:a7:
73:88:37:53:c7:08:3b:66:8c:90:84:6f:13:8c:6c:8b:9a:ee:
a4:56:18:5b:f2:c4:59:86:ca:36:5f:2c:a2:27:94:4d:be:9d:
6e:36:b9:e8:c7:0a:b2:6f:2c:ad:2c:d1:9f:44:92:bc:63:00:
5e:a0:9b:ff:d4:8c:31:ce:80:00:4f:b4:77:91:f5:dd:3b:47:
44:f0:c2:5a:91:fd:c1:c9:c7:5f:95:96:c5:f3:2a:20:31:9a:
dd:39:d9:94:2b:ae:b6:07:89:a7:9a:2a:6a:1c:e3:c5:67:9d:
4a:ca:91:cd:c3:76:fa:61:1d:11:bb:e9:44:22:3d:a9:dd:d1:
95:46:87:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:13 2024 by rpki-client on console-ams.rpki-client.org