Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/16Li-7nZu89_d173k3YTvQbODpo.roa
File: 16Li-7nZu89_d173k3YTvQbODpo.roa (raw, json)
Hash identifier: mFraNiWiDIRoleHnQb2su/XBtW0WfgSW0X/PceNQUTw=
Subject key identifier: D7:A2:E2:FB:B9:D9:BB:CF:7F:77:5E:F7:93:76:13:BD:06:CE:0E:9A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FE09D69B802F7CBEA1CFDD8E9A372
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/16Li-7nZu89_d173k3YTvQbODpo.roa
Signing time: Sun 01 Jan 2023 21:14:46 +0000
ROA not before: Sun 01 Jan 2023 21:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60326
IP address blocks: 2a0e:aa07:f080::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Jun 2023 07:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e0:9d:69:b8:02:f7:cb:ea:1c:fd:d8:e9:a3:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7a2e2fbb9d9bbcf7f775ef7937613bd06ce0e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c8:97:0f:a4:aa:12:62:ef:32:30:a1:03:a1:
57:77:92:d3:49:93:c0:c2:5e:8e:12:77:93:14:b8:
96:76:c6:b3:51:e2:6f:6a:31:0a:88:81:94:a0:16:
55:0f:f5:a6:d3:0b:e0:dd:6e:44:83:a4:5b:3d:ed:
f6:3e:e5:6d:82:7f:fa:e4:cd:f7:ae:e2:c6:7c:38:
c4:5b:00:b9:eb:d7:3e:3e:8f:f2:3f:16:fc:14:52:
74:c0:0a:3e:94:f8:db:31:a8:23:66:85:82:81:85:
7a:8a:9e:ae:7e:34:be:a9:89:0c:a8:a9:52:fc:14:
96:1a:e3:fe:59:f5:79:06:f0:48:b5:59:f7:ac:9a:
90:88:8b:36:7d:17:34:2b:ea:dc:46:44:f1:9f:6d:
62:9e:39:09:f4:cd:8b:41:e6:e1:28:c8:26:59:d3:
9c:b0:b5:d9:5d:ff:a6:4a:6f:26:7f:cb:e8:84:09:
f6:57:12:03:1a:77:8d:0c:98:68:a6:17:3e:ff:16:
9c:39:82:75:bc:7e:c0:ba:b7:07:07:7c:41:83:66:
cd:9b:5e:f1:ee:65:16:56:2b:35:df:a1:27:1d:ba:
35:d4:15:37:ff:70:9c:78:32:f1:6b:51:a5:28:13:
91:d9:97:0d:28:20:1f:c9:9d:27:cd:3b:c6:b2:13:
b4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A2:E2:FB:B9:D9:BB:CF:7F:77:5E:F7:93:76:13:BD:06:CE:0E:9A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/16Li-7nZu89_d173k3YTvQbODpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f080::/44
Signature Algorithm: sha256WithRSAEncryption
86:e4:9e:05:df:87:bb:68:79:49:d2:8d:bd:43:1c:79:96:ec:
a2:0e:d7:73:35:78:9f:6b:0a:d1:e7:8d:82:30:5e:43:67:5d:
ff:61:fd:ba:69:50:b4:f5:1e:8e:ac:80:4d:98:2e:0e:a0:12:
20:d9:fe:6c:bb:3b:38:79:8f:93:8f:2a:05:86:4f:20:b0:fa:
f4:24:14:db:89:cb:0f:24:67:48:85:68:15:82:67:f5:ba:44:
e5:84:cd:c4:79:75:49:e9:9c:ed:06:e7:eb:43:d6:67:f7:9d:
4c:38:8c:f8:f8:11:2b:f0:c6:f9:9b:3f:62:e8:41:80:a6:fb:
0b:de:28:a6:c5:ad:c1:54:12:16:36:37:a0:17:e1:29:7b:dc:
b8:59:1d:70:97:f1:88:af:23:89:bc:95:bc:9c:39:10:7b:e0:
f7:02:fe:52:57:1b:ed:ba:a0:a2:9a:6e:e1:5f:8a:cb:7c:74:
07:49:f2:08:ed:55:d4:17:7c:ba:a7:d0:85:1e:7c:32:63:a9:
51:c9:3d:e3:e9:f0:03:f0:20:e7:19:91:90:75:e5:29:df:e2:
7b:49:63:56:9c:60:68:2f:f4:b1:5a:a4:34:99:29:b4:7a:37:
04:73:fc:f9:3a:39:c5:1f:27:49:bc:0c:30:99:fc:6d:8e:31:
99:d3:1b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org