Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/8cS6uYFnCrs1wZ2bmziPeQtzgq8.roa
File: 8cS6uYFnCrs1wZ2bmziPeQtzgq8.roa (raw, json)
Hash identifier: LfSPZoRejv9CiGEalBKBuy4LlGydcKn1Jm79jSqE/hw=
Subject key identifier: F1:C4:BA:B9:81:67:0A:BB:35:C1:9D:9B:9B:38:8F:79:0B:73:82:AF
Certificate issuer: /CN=8a28ff310da7df8309cfab4dcf9a235842b60872
Certificate serial: 0190CB4B9681E88364CC13AED8E65917A2C5
Authority key identifier: 8A:28:FF:31:0D:A7:DF:83:09:CF:AB:4D:CF:9A:23:58:42:B6:08:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iij_MQ2n34MJz6tNz5ojWEK2CHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/8cS6uYFnCrs1wZ2bmziPeQtzgq8.roa
Signing time: Fri 19 Jul 2024 14:00:46 +0000
ROA not before: Fri 19 Jul 2024 14:00:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214569
IP address blocks: 2a06:b700::/48 maxlen: 64
Validation: Failed, certificate revoked on Sun 01 Sep 2024 06:17:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cb:4b:96:81:e8:83:64:cc:13:ae:d8:e6:59:17:a2:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a28ff310da7df8309cfab4dcf9a235842b60872
Validity
Not Before: Jul 19 14:00:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1c4bab981670abb35c19d9b9b388f790b7382af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:21:35:4b:db:ee:a6:67:98:d1:34:ee:14:d3:
95:ac:12:55:31:a0:e8:77:3b:b3:77:61:ee:0a:95:
e2:6b:9e:71:d5:d7:b2:94:b5:0b:e2:51:29:8c:8c:
5c:38:34:22:52:35:83:5d:74:0f:c3:83:bb:8f:9a:
c1:dc:a1:de:5e:88:cd:3f:eb:4f:8a:42:c5:7a:26:
19:8a:b3:83:f2:c5:4e:86:15:93:82:0d:a8:e2:96:
33:00:09:29:a3:aa:bf:98:84:4c:6e:f2:70:b5:ea:
ff:33:50:ba:ba:e6:d2:f1:7e:c9:f4:a1:f3:03:26:
e0:a3:74:1c:f7:84:18:b1:d6:75:15:c3:57:c5:27:
b8:61:c7:5a:d3:12:10:2a:84:0e:ca:97:e4:8a:17:
37:56:bb:20:a1:f5:4f:1b:78:26:39:e9:46:f9:8e:
03:17:8d:8a:6a:f1:29:dd:b2:58:e0:a4:56:3f:76:
c9:7b:ce:e6:f3:83:93:8a:60:8a:b1:04:86:d9:07:
70:c6:ec:b0:c4:78:91:2f:bb:cc:80:88:f4:24:bb:
24:36:3f:ec:8c:fb:f8:9e:7d:9f:0b:81:6d:47:16:
a5:6a:cd:88:dc:aa:14:b0:d0:22:1f:0a:1f:cd:97:
ef:92:63:a2:84:1c:6a:ec:d5:b7:bc:aa:a4:3f:09:
f9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C4:BA:B9:81:67:0A:BB:35:C1:9D:9B:9B:38:8F:79:0B:73:82:AF
X509v3 Authority Key Identifier:
keyid:8A:28:FF:31:0D:A7:DF:83:09:CF:AB:4D:CF:9A:23:58:42:B6:08:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iij_MQ2n34MJz6tNz5ojWEK2CHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/8cS6uYFnCrs1wZ2bmziPeQtzgq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a5d286-8670-47e4-97b4-24cf8a61d7e8/1/iij_MQ2n34MJz6tNz5ojWEK2CHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b700::/48
Signature Algorithm: sha256WithRSAEncryption
15:9a:c3:c6:8d:6d:fe:c5:b6:5f:f4:97:91:1d:09:ad:f7:49:
21:32:66:10:82:37:1e:04:15:77:bb:88:1f:5d:05:54:08:d0:
05:25:f6:51:d5:53:bd:4c:bc:93:8c:7e:7d:65:70:3c:21:b3:
34:17:af:21:83:6c:1f:38:8f:2e:91:d3:c2:6a:44:46:de:e2:
e6:9e:d9:97:54:7a:58:74:0a:3e:fa:d4:d1:08:f0:43:af:b3:
d2:24:77:b1:20:7d:3a:34:02:35:e7:d2:51:23:a9:0e:88:b6:
cb:c9:59:56:c1:d7:5f:34:b8:53:d7:1f:8b:11:97:9a:0a:60:
80:e4:98:a0:00:56:f4:da:87:84:d0:c5:40:49:1c:b7:a2:41:
0e:5a:04:40:06:a7:2e:d7:0b:a4:db:b3:f8:2a:7b:f1:de:f8:
6d:22:ab:d5:43:67:95:17:38:f4:9f:b1:52:94:d8:ae:54:7c:
a1:9d:f1:5c:e9:ff:f0:55:f2:e3:31:17:a8:92:f2:f4:1a:4f:
92:55:6f:05:8b:dd:ca:96:65:04:a9:63:23:f3:1c:86:7e:97:
62:80:c0:eb:40:3d:2c:b5:81:98:99:01:ba:1c:10:a9:63:8c:
f9:3a:8c:2d:84:4b:c2:f5:0b:63:c0:2d:f6:40:04:5d:68:63:
5b:7a:8c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 07:39:54 2024 by rpki-client on console-ams.rpki-client.org