Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/2dqfIiI-PY6OK-EPAEDpYmkhm_M.roa
File: 2dqfIiI-PY6OK-EPAEDpYmkhm_M.roa (raw, json)
Hash identifier: ufImWcF5GdNyES5JIJyIh2cZCLw9bdSZII3Y5AqInkM=
Subject key identifier: D9:DA:9F:22:22:3E:3D:8E:8E:2B:E1:0F:00:40:E9:62:69:21:9B:F3
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FD6692602D65929961B03C6622895
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/2dqfIiI-PY6OK-EPAEDpYmkhm_M.roa
Signing time: Sun 01 Jan 2023 21:14:44 +0000
ROA not before: Sun 01 Jan 2023 21:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7480
IP address blocks: 2a0e:aa02::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:d6:69:26:02:d6:59:29:96:1b:03:c6:62:28:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9da9f22223e3d8e8e2be10f0040e96269219bf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7d:cb:3a:74:e0:3c:ea:95:df:fa:6d:95:56:
14:15:91:23:96:ff:27:50:6b:c1:37:03:75:12:cf:
14:40:55:1c:d8:3a:20:69:1d:2f:6b:ba:89:f5:ad:
0d:ee:95:1e:0e:6d:e7:cb:ea:d6:37:2a:42:0c:e6:
09:69:1f:cd:10:53:68:c2:f1:f3:4c:5a:d6:df:0d:
11:a8:32:70:97:57:f1:56:35:0f:18:97:44:4c:28:
a6:3e:73:48:ea:a9:07:6a:a9:5f:0a:07:75:b1:b6:
0f:9e:c1:9c:13:4f:22:e3:5a:59:ed:38:66:71:6f:
7f:02:05:7e:a1:84:e2:f8:51:f7:14:9b:5a:e0:6d:
ba:df:f8:ce:80:57:25:cf:ce:0d:9d:c0:be:a3:04:
97:66:45:c0:35:34:c6:4a:86:2a:fc:4e:a8:6a:3a:
69:57:dc:c2:f3:19:69:82:cf:e9:27:2d:a6:e5:c4:
99:bd:58:2a:cb:f7:96:45:e7:5a:0d:16:13:53:78:
5b:0e:4d:ff:20:8b:fa:70:23:7f:09:25:19:0e:c8:
25:50:54:c4:3e:a7:c5:00:f4:6d:c6:a5:17:b3:69:
83:55:07:c6:5a:ef:b2:8e:ab:55:58:2e:2c:2d:40:
d3:b4:98:75:94:91:c6:ae:e6:75:1e:f6:69:0b:ac:
88:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:DA:9F:22:22:3E:3D:8E:8E:2B:E1:0F:00:40:E9:62:69:21:9B:F3
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/2dqfIiI-PY6OK-EPAEDpYmkhm_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02::/32
Signature Algorithm: sha256WithRSAEncryption
60:b5:ad:59:f2:99:91:31:7f:ae:35:f9:66:6c:28:b4:19:2b:
6c:0e:5b:09:22:a4:bc:ca:8d:97:12:ab:74:b9:1f:c9:5a:af:
d5:43:91:f4:7c:1c:49:51:82:ab:33:c5:f1:6f:51:c8:ce:3a:
93:c8:67:43:2e:0d:85:be:a9:08:6a:63:b2:21:82:6a:37:eb:
48:ea:40:8a:1f:38:61:16:1e:c2:64:05:8b:b9:66:1a:77:e3:
a9:81:b1:a4:94:7b:68:f7:ee:d2:af:73:7b:81:02:e8:d6:3f:
92:a7:8d:d7:8f:47:75:5b:00:10:b3:bb:ff:dc:80:ae:a4:ff:
4b:4a:0e:a1:61:5b:4c:a3:5d:68:a8:bc:33:c6:41:83:86:68:
8b:9c:f7:b8:21:1f:16:f6:a4:13:f1:74:5e:bc:b7:7f:86:e8:
1e:7b:5f:04:72:7e:19:8f:a6:df:13:90:ea:70:3c:7a:e1:d9:
fd:f2:1a:a3:86:2e:9d:bd:a1:4f:22:a0:eb:39:cf:ce:d2:46:
d8:76:22:67:8c:e0:f8:f5:10:97:ed:ca:59:c0:b3:c0:da:6c:
f2:ce:38:46:cd:c7:70:37:26:cc:fb:96:e7:42:e5:e0:7e:ec:
51:52:e3:cb:7b:3c:5f:31:85:0d:36:ea:bb:9c:3f:0f:db:bf:
03:2e:ce:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org