Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/9VgW2IwmmhtkN4pUFnJc8fIt_IA.roa
File: 9VgW2IwmmhtkN4pUFnJc8fIt_IA.roa (raw, json)
Hash identifier: qjK0MCgUkL9pLXuIGhHG8+/prKEKOMknpvcVDh4tY0I=
Subject key identifier: F5:58:16:D8:8C:26:9A:1B:64:37:8A:54:16:72:5C:F1:F2:2D:FC:80
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FECD39B1F6B5929DA26E88EC20880
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/9VgW2IwmmhtkN4pUFnJc8fIt_IA.roa
Signing time: Sun 01 Jan 2023 21:14:49 +0000
ROA not before: Sun 01 Jan 2023 21:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205591
IP address blocks: 2a0e:aa01:bad0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:ec:d3:9b:1f:6b:59:29:da:26:e8:8e:c2:08:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f55816d88c269a1b64378a5416725cf1f22dfc80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:56:22:15:6d:76:91:1a:a9:17:47:ad:64:62:
87:e6:56:36:3d:c0:44:1b:46:89:7d:a4:df:8d:94:
2b:7d:d1:0a:a8:58:bf:4b:9d:23:e3:4e:12:b6:0f:
7a:b2:6c:9d:fd:82:8b:9f:55:26:4d:75:5d:63:39:
d0:9b:34:8e:72:74:7a:71:01:84:9b:3d:ee:54:8e:
b5:f6:2b:e5:fd:43:11:4d:f3:44:0c:b3:69:d4:11:
21:28:4c:8b:fc:69:7f:49:39:43:e1:4a:50:8e:5b:
b2:c4:b5:83:e1:08:db:07:db:98:86:a9:50:6f:8c:
d4:ca:1c:d2:fd:bc:a4:8c:2e:41:e2:c7:1e:3e:4a:
cd:0d:a8:a5:76:5a:b3:b7:30:6d:ab:1b:53:c1:e0:
a5:d7:ae:fa:2d:77:1d:96:7c:6b:fb:ef:dd:d5:fd:
3d:32:55:d9:3c:9c:f2:67:c9:9b:9b:9e:3d:d5:c8:
6d:fe:d2:45:55:15:a4:31:9b:c4:6d:6e:8f:c2:62:
c6:1c:aa:9f:2c:c4:82:42:de:44:8d:02:f9:61:ac:
6b:67:e9:9e:6f:91:ba:d0:3f:1b:f3:51:8a:96:e6:
1d:6c:4c:ac:0f:b7:c4:3c:fe:5a:98:6f:6b:d2:75:
22:e5:e5:39:6a:73:c6:ec:98:9c:32:23:40:18:da:
a3:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:58:16:D8:8C:26:9A:1B:64:37:8A:54:16:72:5C:F1:F2:2D:FC:80
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/9VgW2IwmmhtkN4pUFnJc8fIt_IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:bad0::/44
Signature Algorithm: sha256WithRSAEncryption
3a:64:fa:29:59:66:90:97:7d:fb:af:50:21:28:c3:03:8c:a7:
04:e5:a7:db:44:07:a5:6c:e6:e0:a4:73:b7:6c:bb:90:00:2c:
04:81:e8:e8:24:29:dc:b2:49:08:d6:d0:c8:86:a5:bb:18:86:
dc:da:b9:4b:9a:35:6a:cc:9e:36:8c:e3:be:4d:78:16:f1:0c:
8c:1b:cb:d4:c1:a0:f9:ea:cb:39:f4:9f:5c:9e:46:0d:db:41:
d6:b7:16:f4:52:de:0e:b8:e1:2f:60:3a:ae:13:d3:2c:c8:e1:
ad:e5:e1:11:11:f5:0c:29:bf:97:86:cc:d2:bc:17:be:35:ae:
76:f0:cb:fc:c0:76:10:8f:91:91:02:02:a7:73:55:c9:85:62:
dd:f0:f6:4a:06:df:3b:20:e7:25:aa:3d:3f:c9:43:c4:56:ad:
93:e1:77:76:62:e8:0c:4f:7f:4b:69:87:5e:df:5a:57:54:a7:
6f:2c:38:35:c5:38:fd:24:22:a7:67:4a:21:a7:7b:0d:79:08:
e8:35:05:d9:7f:ae:a3:c4:98:ba:6a:eb:82:51:5d:fb:1a:2a:
2f:43:a7:b6:2e:41:3d:bc:50:b2:0c:37:32:46:b8:7b:2f:13:
36:10:04:8d:ce:65:60:21:56:8e:38:62:98:ce:dd:ef:63:af:
d7:d5:7f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org