Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/itS9oU2N1f9sxgaYaNvpVseJ-kY.roa
File: itS9oU2N1f9sxgaYaNvpVseJ-kY.roa (raw, json)
Hash identifier: mj4iJ1FrJJv0TocM2oCPHf1kVxqMDsEzECUTrA6Ru8U=
Subject key identifier: 8A:D4:BD:A1:4D:8D:D5:FF:6C:C6:06:98:68:DB:E9:56:C7:89:FA:46
Certificate issuer: /CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Certificate serial: 0187E27D6B6EDAEE5F526B13287353DDF268
Authority key identifier: 95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/itS9oU2N1f9sxgaYaNvpVseJ-kY.roa
Signing time: Wed 03 May 2023 16:41:22 +0000
ROA not before: Wed 03 May 2023 16:41:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62651
IP address blocks: 2a03:efc0:2300::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 18 May 2023 19:39:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:7d:6b:6e:da:ee:5f:52:6b:13:28:73:53:dd:f2:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Validity
Not Before: May 3 16:41:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ad4bda14d8dd5ff6cc6069868dbe956c789fa46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e5:2a:b0:e6:e9:c9:aa:05:e2:67:4f:79:45:
d8:fb:6e:0b:4e:cc:03:4b:19:2f:5c:72:f7:a1:af:
5a:d8:24:71:be:6c:01:04:f4:92:58:17:88:9e:ad:
a9:36:10:eb:15:fc:88:91:b1:a7:0a:2e:bb:88:06:
8e:bd:41:d5:9a:aa:08:96:86:9c:16:13:76:35:b9:
53:40:c6:93:25:de:85:98:27:ed:b9:2a:e2:5d:24:
ea:bd:63:02:cc:45:c1:31:49:19:eb:a0:1c:ac:06:
5f:b5:df:cf:11:95:ee:34:ac:de:65:e7:ec:30:c8:
57:4a:34:2f:82:9c:02:07:fc:18:4c:92:c2:98:4e:
37:92:9c:aa:54:ee:22:d8:14:61:aa:51:5c:e6:ec:
ed:b3:ba:9f:12:f7:37:a1:18:82:7a:05:91:d2:6b:
7f:a5:cd:59:cc:04:1a:76:e9:a0:8d:bd:b2:33:93:
37:ca:09:1a:3d:62:ad:f5:9b:69:dc:19:e7:56:be:
d0:4a:75:14:35:6b:e9:73:a2:58:af:f3:ee:74:28:
13:40:19:49:33:8c:27:31:84:cb:20:9c:81:0b:f3:
d2:34:99:6a:1a:6d:8e:f8:7d:28:f8:d8:68:ae:dd:
8d:e2:2a:18:55:49:26:ca:6a:87:d4:ff:6c:ec:70:
18:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D4:BD:A1:4D:8D:D5:FF:6C:C6:06:98:68:DB:E9:56:C7:89:FA:46
X509v3 Authority Key Identifier:
keyid:95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/itS9oU2N1f9sxgaYaNvpVseJ-kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:efc0:2300::/40
Signature Algorithm: sha256WithRSAEncryption
08:ea:07:d1:8a:d7:b5:4f:da:93:70:9f:13:e8:4a:f0:d7:08:
68:9d:8e:2e:9d:20:c8:7d:2b:00:92:b5:07:e1:bf:5d:62:97:
0d:14:38:66:a9:3c:9e:bc:fb:12:0e:11:39:8c:43:1a:da:03:
35:94:08:57:e2:84:72:34:fb:b9:bb:21:0c:6e:f7:44:d6:4c:
aa:af:d5:32:08:fc:27:cc:40:62:60:18:6a:f5:30:4a:93:63:
13:c8:db:66:5a:16:65:e0:f4:ad:81:5b:2f:83:43:1b:9e:23:
db:21:8d:e6:03:bc:0c:ae:0c:c9:73:5f:ee:04:bc:ac:9a:d0:
99:26:51:4a:1e:fe:e6:ab:52:03:c4:d6:80:ec:5d:1e:08:cc:
12:85:b6:93:40:6b:e6:a8:2f:ca:bf:e6:1a:c0:04:e8:47:f2:
95:e2:48:89:89:8d:ec:13:f5:af:d5:fd:d1:d1:63:28:ac:c1:
27:50:21:b1:21:92:6e:d8:fd:5c:75:fe:e9:5f:4b:f6:cc:c4:
fb:18:8c:59:80:d2:e0:09:97:36:43:b8:25:0a:9e:63:f5:46:
71:20:d6:15:1e:6a:55:17:d3:31:9b:4f:94:b4:02:a6:39:94:
b4:61:e0:d6:3e:5b:b2:01:ad:40:18:46:67:b7:2b:c4:06:25:
1a:a2:36:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:01 2024 by rpki-client on console-ams.rpki-client.org