Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/75wEBum5wcid3LEfafor3e2O9W0.roa
File: 75wEBum5wcid3LEfafor3e2O9W0.roa (raw, json)
Hash identifier: IvIHgBA6XMYXqsSt0eH78zwmA6KL8hdd2Yhs09g+MYE=
Subject key identifier: EF:9C:04:06:E9:B9:C1:C8:9D:DC:B1:1F:69:FA:2B:DD:ED:8E:F5:6D
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018617DB3F1BC25BFEB8B4B96F6D589BE10D
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/75wEBum5wcid3LEfafor3e2O9W0.roa
Signing time: Fri 03 Feb 2023 15:18:09 +0000
ROA not before: Fri 03 Feb 2023 15:18:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200021
IP address blocks: 2a0e:aa07:e051::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Feb 2023 02:46:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:db:3f:1b:c2:5b:fe:b8:b4:b9:6f:6d:58:9b:e1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Feb 3 15:18:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef9c0406e9b9c1c89ddcb11f69fa2bdded8ef56d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:d6:53:1f:8f:17:02:4e:0a:03:2f:c7:6e:
48:f0:0c:c2:50:58:41:2d:2f:0c:79:ab:d0:76:80:
28:68:2a:c7:8c:9a:7a:d0:eb:d4:0c:7e:2e:47:7b:
dc:3a:0d:71:d4:15:d3:44:3a:e0:b1:43:9a:e8:fc:
ce:dc:da:0b:f5:24:2f:fe:77:0e:5d:ea:22:47:f0:
84:1c:08:22:bf:c6:e1:dc:4a:78:b1:a4:6d:89:dc:
76:9c:fc:55:10:bd:45:a5:01:d7:f6:4b:c1:e7:42:
da:2a:b6:bd:8e:5c:0b:e5:b3:86:d2:d4:db:d9:e8:
d9:d9:47:f9:3e:75:d0:50:06:e9:06:1c:02:b7:2f:
46:a4:02:6c:69:a0:4f:39:3d:19:46:03:87:d0:c0:
3e:45:9d:d9:41:b3:3a:70:50:de:98:90:db:01:9f:
27:5a:da:f5:9b:bd:f0:95:c2:75:2c:29:af:de:58:
c6:a6:55:74:76:82:4c:8c:26:ea:2a:7a:78:17:62:
18:06:7e:5d:f6:13:3b:bf:2e:38:22:ef:be:9c:97:
23:dd:51:93:4b:4a:3a:2a:a0:fa:e4:5b:3b:2c:13:
cf:f0:e2:9c:c9:fc:e1:80:61:45:1f:64:fa:d9:03:
4a:23:5d:2c:1e:0a:48:38:8d:2a:90:89:d9:de:27:
43:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9C:04:06:E9:B9:C1:C8:9D:DC:B1:1F:69:FA:2B:DD:ED:8E:F5:6D
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/75wEBum5wcid3LEfafor3e2O9W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e051::/48
Signature Algorithm: sha256WithRSAEncryption
0c:cf:20:bf:45:e3:b6:30:bd:4f:ca:47:56:38:66:f6:fc:ff:
cf:db:6a:a5:ca:1f:1d:54:08:02:98:c6:9a:5a:c1:28:10:c2:
9b:06:e3:47:14:87:a9:b9:6c:6e:98:f8:31:e9:b8:1d:b0:51:
30:23:a9:94:38:a1:b7:36:cf:9d:bc:05:d6:f1:e2:b9:4c:2a:
3f:e3:81:c2:dd:f2:ea:cb:f8:76:4e:04:95:27:2d:90:91:51:
e4:b6:66:c6:14:c5:c3:42:3d:93:65:c1:94:1a:c0:61:fe:a3:
03:7e:d5:44:01:7a:a5:96:cc:eb:fa:dd:ee:ec:97:bd:4f:79:
ea:04:e5:9c:ac:d6:03:14:90:25:dd:fa:e1:83:22:72:8b:99:
ce:29:6a:37:85:91:07:40:c9:41:5b:e3:3d:18:f5:7b:ee:a6:
1a:95:dc:0c:ef:9b:a0:a6:9c:60:85:99:29:e7:ec:ba:8e:d3:
66:ee:6c:58:1a:b7:cc:87:0c:2c:b8:9d:ba:85:f7:e2:d2:9a:
28:be:3e:73:ed:6c:fd:ab:94:d9:98:46:7c:b7:42:2a:01:4e:
03:24:33:fa:93:98:f0:15:75:6f:a4:16:66:54:25:10:2a:0e:
02:22:a1:12:ee:f3:a8:cc:de:c6:5f:55:7a:c0:f6:8d:75:51:
3f:fd:31:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org