Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4aa5a7-8bec-4247-a15f-5a3612352b37/1/2IPugQsLGomPJudHLJe4v_TbxCs.roa
File: 2IPugQsLGomPJudHLJe4v_TbxCs.roa (raw, json)
Hash identifier: MQDf+EUondWUdNPvIoafuT5pj1Xr1Bu5BL0rHusLyCo=
Subject key identifier: D8:83:EE:81:0B:0B:1A:89:8F:26:E7:47:2C:97:B8:BF:F4:DB:C4:2B
Certificate issuer: /CN=b360f0097be481c21bb1d51c85d44f6574158aa9
Certificate serial: 018BDC5D1B65518441148AE94958DBBEA070
Authority key identifier: B3:60:F0:09:7B:E4:81:C2:1B:B1:D5:1C:85:D4:4F:65:74:15:8A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s2DwCXvkgcIbsdUchdRPZXQViqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4aa5a7-8bec-4247-a15f-5a3612352b37/1/2IPugQsLGomPJudHLJe4v_TbxCs.roa
Signing time: Fri 17 Nov 2023 08:19:31 +0000
ROA not before: Fri 17 Nov 2023 08:19:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 2a14:2a00::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:5d:1b:65:51:84:41:14:8a:e9:49:58:db:be:a0:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b360f0097be481c21bb1d51c85d44f6574158aa9
Validity
Not Before: Nov 17 08:19:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d883ee810b0b1a898f26e7472c97b8bff4dbc42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b6:ae:01:e2:d4:6f:bd:87:fc:5f:25:ba:0c:
dc:fc:91:06:48:2b:ba:4b:e0:e8:fa:a8:53:cc:92:
82:e7:fb:34:9d:af:ab:bc:04:55:2d:e8:94:ac:20:
2f:9f:6b:99:df:d4:79:93:b2:98:83:dd:a7:7d:b8:
f5:fe:5d:2d:d0:b9:d4:d2:9e:df:02:62:70:ac:d3:
08:80:34:21:10:2d:a8:f9:16:f9:0f:64:b6:41:db:
9c:02:16:ab:bd:26:dc:e1:e0:2d:f0:5f:9e:07:a8:
0c:ac:a0:71:e3:b5:5b:fb:de:7e:e0:8c:1a:18:21:
c8:14:40:c4:61:40:7c:07:e9:a2:ed:e1:c2:79:59:
87:b8:6e:63:47:8a:98:11:1f:00:07:d3:42:b7:8a:
69:0f:41:10:ba:d4:ef:b4:3b:a9:eb:3f:af:eb:56:
31:0a:00:e5:19:e3:da:aa:fc:96:0c:d4:7e:de:e9:
1a:79:81:d1:59:4b:2a:5c:7d:21:f2:10:81:39:e7:
a7:88:71:16:bf:6c:95:c7:f4:a4:06:02:01:1a:58:
9f:2c:a7:76:5e:a3:23:37:fb:42:bf:d7:53:ef:6e:
5c:23:7c:d1:ea:82:4b:9e:39:53:a8:16:21:c7:23:
66:45:ab:10:92:60:e5:f7:0c:5d:78:24:e2:a2:bd:
06:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:83:EE:81:0B:0B:1A:89:8F:26:E7:47:2C:97:B8:BF:F4:DB:C4:2B
X509v3 Authority Key Identifier:
keyid:B3:60:F0:09:7B:E4:81:C2:1B:B1:D5:1C:85:D4:4F:65:74:15:8A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s2DwCXvkgcIbsdUchdRPZXQViqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4aa5a7-8bec-4247-a15f-5a3612352b37/1/2IPugQsLGomPJudHLJe4v_TbxCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4aa5a7-8bec-4247-a15f-5a3612352b37/1/s2DwCXvkgcIbsdUchdRPZXQViqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:2a00::/40
Signature Algorithm: sha256WithRSAEncryption
94:00:02:36:e8:05:52:bf:9a:9d:35:35:d1:80:5f:0c:94:79:
7d:7c:5d:28:b0:bc:97:a0:4d:8b:f5:06:a9:22:a2:cc:e5:ac:
32:8a:52:63:e3:c7:5d:25:22:bc:6d:d1:8a:3e:fb:b1:2e:8d:
76:e8:b4:4d:75:22:8c:0e:d5:4e:85:80:32:27:d9:cf:cc:37:
52:75:cf:2f:85:eb:28:24:6a:5c:1e:d0:e5:ee:0e:3d:9e:27:
ef:83:48:b9:ba:77:10:91:d7:e5:00:93:31:26:6a:c5:43:1a:
54:e7:e6:23:0b:9c:45:60:fb:ff:19:b8:7f:68:6a:37:d6:cd:
16:26:49:f1:58:67:d4:7b:ab:14:ed:46:6d:f2:f3:17:4a:95:
4c:99:93:35:e5:3c:e8:d1:93:ee:99:c3:ee:db:79:1a:02:bb:
75:8f:23:0d:05:18:c1:c7:cf:fa:e3:e2:06:90:d4:fb:5b:ea:
4b:1f:56:ab:46:0c:87:9c:a9:b0:7c:6d:0e:6c:da:07:a3:6b:
dd:91:19:8d:88:ef:0c:e9:f3:7a:36:06:4f:d8:cb:59:f8:32:
e5:58:6d:82:21:4f:69:99:5e:e5:c6:6f:9a:ae:ae:1c:55:cf:
6f:05:42:36:7c:e8:e5:74:94:dc:dc:ac:88:13:ef:d4:97:35:
d8:45:8c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:06 2024 by rpki-client on console-fra.rpki-client.org