Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/4an5K7ERwYUptY4gB5c-JMN0Jwo.roa
File: 4an5K7ERwYUptY4gB5c-JMN0Jwo.roa (raw, json)
Hash identifier: JWfGVScALbXV6JOuEeiEz2C0XwTxqTYUVxw7/yfq3rA=
Subject key identifier: E1:A9:F9:2B:B1:11:C1:85:29:B5:8E:20:07:97:3E:24:C3:74:27:0A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F300C7C4B9D1D3EE48801164ED76DE1
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/4an5K7ERwYUptY4gB5c-JMN0Jwo.roa
Signing time: Sun 01 Jan 2023 21:14:57 +0000
ROA not before: Sun 01 Jan 2023 21:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212705
IP address blocks: 2a0e:aa07:e019::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:0c:7c:4b:9d:1d:3e:e4:88:01:16:4e:d7:6d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1a9f92bb111c18529b58e2007973e24c374270a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:98:9f:aa:0b:ca:55:cc:77:84:c8:c1:47:08:
5e:a8:9c:8e:0d:79:73:81:9e:d4:87:cf:e2:ab:63:
d5:f8:6c:44:4a:94:e6:65:a6:f5:0e:31:7d:05:e0:
e2:81:51:87:b3:c8:37:d9:20:1c:52:db:45:6b:f0:
1f:80:42:41:33:a4:98:86:f2:a3:8a:d0:e8:46:fa:
b6:fe:5a:b7:1c:8b:da:1c:21:c9:61:0e:2a:f2:b5:
37:a9:94:89:6b:f4:b9:b7:41:cb:f9:82:e7:a1:ad:
bc:48:45:41:14:b4:4e:24:16:ef:82:26:29:c8:39:
3f:7a:22:ad:12:09:13:e6:a3:dc:0b:08:36:8c:7e:
6b:9e:b1:4c:32:6f:3a:6e:9b:45:9f:28:d6:e7:2b:
e5:22:c8:08:bd:2e:ab:c6:07:d1:96:b1:11:ec:ec:
91:f1:bc:61:f0:d6:49:25:89:b7:8b:0b:de:7c:be:
f1:dd:dd:3f:51:6e:4c:7c:ff:10:b9:36:5d:aa:5d:
52:96:04:5e:6a:06:92:0a:55:cd:07:9e:a1:20:a7:
3a:b5:7d:4d:fd:99:0b:a8:f7:49:41:39:b7:a0:29:
1c:d8:6f:ed:db:f5:b3:e5:2c:76:9a:f3:aa:19:0d:
4d:f6:c4:84:23:05:f6:a7:62:6b:9d:76:c3:96:d8:
54:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A9:F9:2B:B1:11:C1:85:29:B5:8E:20:07:97:3E:24:C3:74:27:0A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/4an5K7ERwYUptY4gB5c-JMN0Jwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e019::/48
Signature Algorithm: sha256WithRSAEncryption
08:42:c2:b0:d4:e0:9c:a0:36:9a:06:50:99:d0:83:3c:28:93:
7f:96:48:50:c6:e7:07:e0:59:dc:d9:00:fc:81:9d:b5:26:57:
d8:e6:80:5b:f0:6b:76:cb:a6:0f:b1:e4:6f:af:89:c4:8d:77:
54:44:01:e6:2a:21:a3:16:55:d7:1d:ef:93:b8:45:f2:30:0a:
27:0a:2c:b8:b4:bf:45:8f:cc:7b:49:74:4d:a5:9e:f6:b5:8e:
48:f0:24:0c:34:e4:c3:24:fd:88:06:78:58:e6:f4:dc:d4:ba:
66:ec:b9:6b:aa:fc:e4:db:e1:11:f4:fb:ae:af:76:b7:3f:a9:
f9:f3:18:1c:b7:0a:70:09:4e:50:87:db:d3:3e:30:5d:1b:96:
11:07:49:80:4c:81:9b:98:ca:50:ce:a6:87:df:30:98:cf:55:
8b:a3:95:68:86:7b:c2:cf:af:99:6d:57:40:fb:d2:c1:85:e2:
7c:99:13:d1:f0:76:06:8f:09:07:25:ee:5c:82:53:41:4a:2f:
b6:24:b1:13:c1:1e:70:76:47:07:6e:f4:6e:6f:90:5d:c1:63:
3a:fb:4d:f9:ad:b4:29:23:70:10:4f:db:2d:17:90:17:e9:f8:
b7:ce:d0:c0:0e:2d:1e:6d:36:5c:d9:31:da:19:ec:ec:19:49:
95:36:ee:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:27 2024 by rpki-client on console-fra.rpki-client.org