Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/7eEBTmQtV2Y0aZWuSbNKsNTBZ8w.roa
File: 7eEBTmQtV2Y0aZWuSbNKsNTBZ8w.roa (raw, json)
Hash identifier: QbZ8YD6IHt3M0tSulRA+uw1g8LAk1ZQsoywnXrCFBnY=
Subject key identifier: ED:E1:01:4E:64:2D:57:66:34:69:95:AE:49:B3:4A:B0:D4:C1:67:CC
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018F8780EF346F21D6E4E199B213A9E1D3CB
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/7eEBTmQtV2Y0aZWuSbNKsNTBZ8w.roa
Signing time: Fri 17 May 2024 17:02:05 +0000
ROA not before: Fri 17 May 2024 17:02:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a0e:aa02::/40 maxlen: 40
2a0e:aa06:502::/48 maxlen: 48
2a0e:aa06:503::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 26 May 2024 15:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:80:ef:34:6f:21:d6:e4:e1:99:b2:13:a9:e1:d3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: May 17 17:02:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ede1014e642d5766346995ae49b34ab0d4c167cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c4:b4:c5:a2:74:02:c4:72:32:77:9f:6e:95:
bd:11:18:55:b9:b3:0e:de:a2:5a:ba:55:71:df:15:
54:8a:32:fa:b9:90:d3:1b:49:a8:3c:e5:01:2b:49:
36:ff:77:93:19:5c:35:b9:d3:52:41:40:da:32:d7:
12:11:2f:b5:a1:21:78:28:16:0e:7b:52:5a:66:1e:
e0:2e:de:f4:4b:bd:ca:07:4e:a8:ff:46:4c:cf:f9:
f2:78:7a:c1:fa:58:6d:2c:72:94:1a:4b:38:40:44:
63:e3:1b:1a:4d:8e:02:a1:f8:a3:31:41:cd:97:3a:
11:fe:9b:14:a0:5f:90:4b:11:42:1b:30:26:70:d8:
e9:4d:b9:4b:0c:7d:22:ca:ac:ae:9a:bc:2f:a0:ab:
5a:09:df:f8:00:0e:a7:ba:53:7b:3f:5c:60:dd:bb:
e1:e7:d9:05:f5:50:a3:9d:28:6b:45:2b:09:a3:92:
b4:c9:84:ac:1a:bc:e9:02:79:6b:11:34:5b:65:32:
f1:12:24:52:26:38:1d:06:d6:e8:41:5e:8e:3c:0d:
d4:e1:0e:ad:20:8a:4d:2b:7f:01:12:31:6f:43:99:
be:8b:6b:2b:89:f0:f0:d0:cc:b9:bc:cc:77:41:86:
b7:91:66:91:40:13:4e:a1:7e:70:78:93:af:48:74:
05:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E1:01:4E:64:2D:57:66:34:69:95:AE:49:B3:4A:B0:D4:C1:67:CC
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/7eEBTmQtV2Y0aZWuSbNKsNTBZ8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02::/40
2a0e:aa06:502::/47
Signature Algorithm: sha256WithRSAEncryption
87:67:a5:03:96:0f:0c:4c:d3:98:49:b3:c0:d3:e2:4d:52:ae:
e6:67:39:00:cd:07:69:3c:d7:0b:62:ba:8c:e8:28:28:16:4d:
27:5b:d9:8c:69:7f:b5:17:69:9e:38:70:4d:2f:96:74:53:3e:
72:21:05:45:7f:3f:20:75:93:98:69:b5:3b:cb:ff:69:72:5c:
ba:5b:7b:85:9c:d8:11:69:30:2c:dd:02:3a:68:90:21:26:49:
ac:ab:8e:9b:44:b3:91:ae:a1:b4:c2:18:54:1c:f3:e3:b8:00:
58:62:38:84:7b:01:91:58:08:e6:7f:48:6c:be:86:6f:9c:20:
66:c2:80:33:56:77:1a:05:f2:29:d0:3a:c6:e1:07:41:65:fc:
5a:96:cd:69:fe:37:70:b0:3a:1a:9a:5b:0d:f1:85:10:62:44:
32:1c:4b:6d:d9:b3:65:2d:23:2e:a6:f7:55:66:2c:82:06:cc:
ff:43:ce:1a:51:57:a9:15:19:8f:b3:58:ac:af:9d:82:71:ff:
61:e6:8d:c9:4d:bc:8a:e2:63:85:85:e2:6c:c2:61:47:e9:6b:
80:9a:e0:42:c6:82:68:72:fd:8c:31:7e:d6:2d:af:d9:36:ab:
66:e4:96:6c:17:da:a6:82:dd:4f:c5:eb:92:b2:23:0a:46:ee:
e1:b0:10:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org