Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/AV2o7jcGwP07vG7Zs3gai_VSDvU.roa
File: AV2o7jcGwP07vG7Zs3gai_VSDvU.roa (raw, json)
Hash identifier: UxWkmES3TjsqpFpY3lwbYzeSufBmUidgb1jQzm+hei4=
Subject key identifier: 01:5D:A8:EE:37:06:C0:FD:3B:BC:6E:D9:B3:78:1A:8B:F5:52:0E:F5
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FFD57B53B8BF9F031E956C425E60D
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/AV2o7jcGwP07vG7Zs3gai_VSDvU.roa
Signing time: Sun 01 Jan 2023 21:14:53 +0000
ROA not before: Sun 01 Jan 2023 21:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210041
IP address blocks: 2a0e:aa07:e030::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:fd:57:b5:3b:8b:f9:f0:31:e9:56:c4:25:e6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=015da8ee3706c0fd3bbc6ed9b3781a8bf5520ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f5:b5:4c:5e:5b:e7:8a:f8:3e:41:5c:6c:fc:
82:f0:4f:fa:e1:8d:5b:7e:ec:f4:75:c8:87:e8:62:
98:bd:c6:be:ef:ce:ea:6e:71:3d:15:33:43:cf:29:
b0:41:dd:ec:08:52:35:cc:a2:4f:c9:40:3a:92:07:
45:32:f5:3d:ce:02:c0:d0:4c:db:61:fe:97:15:b8:
80:f6:2f:e5:96:87:83:de:66:d2:e9:bb:e4:d8:dd:
b8:c0:1e:e9:52:7d:01:4a:22:eb:84:2d:ff:b6:6f:
9e:75:82:c0:b8:2c:5a:ad:bf:d4:59:8f:7b:06:78:
46:0b:04:fc:fa:7d:e5:4e:a1:76:79:06:38:d3:b9:
3f:99:7c:e0:d1:55:2a:e2:26:dc:30:9f:10:2b:c2:
7f:35:5d:08:17:c6:44:0e:7c:fd:c0:9e:e5:bc:5c:
39:0a:35:d2:87:73:20:50:95:94:75:d2:f4:4b:c7:
89:99:4f:7d:37:38:1d:dd:82:22:73:6d:b8:05:4a:
45:4e:7c:a0:fb:d7:d6:ec:ca:21:20:37:a3:ef:a3:
5c:eb:a3:2e:5f:b6:89:a0:c3:4c:30:50:33:8a:4c:
82:d9:20:fc:61:c5:4d:22:21:9e:63:ab:b6:32:aa:
96:a3:87:a2:b3:c9:10:1a:79:8f:31:b5:93:f6:ab:
68:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5D:A8:EE:37:06:C0:FD:3B:BC:6E:D9:B3:78:1A:8B:F5:52:0E:F5
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/AV2o7jcGwP07vG7Zs3gai_VSDvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e030::/48
Signature Algorithm: sha256WithRSAEncryption
3d:6c:fa:88:85:a0:1b:b8:ab:1d:d2:f6:9d:6e:bc:18:77:1f:
2b:a6:fa:b3:b1:81:51:06:ec:06:a1:32:47:aa:f6:08:33:63:
51:76:cd:e5:5e:8c:8b:f4:c3:cd:d7:72:15:8b:a8:28:e3:57:
7c:2d:9c:6b:86:d4:53:4b:90:b6:6c:46:97:b3:68:83:42:15:
59:2c:95:43:d4:dd:ce:0c:5b:fe:a2:c4:28:ef:28:11:cf:ab:
d0:d0:f8:e5:2f:ef:75:fc:ec:4b:cd:b0:eb:d0:ca:ad:f2:5d:
60:85:dc:2b:10:9f:5a:9d:48:8e:21:fe:ea:ab:26:96:2a:04:
ef:99:2d:18:00:0b:79:8f:9c:0a:a0:e8:f5:04:02:6a:98:bb:
78:c8:7c:47:34:d1:ec:cc:cb:19:d0:3f:c2:09:2b:bb:8c:e7:
97:4d:52:b9:0a:94:03:52:86:a5:89:75:87:52:1f:bb:15:6e:
49:5f:ed:3d:55:16:d2:90:54:24:4b:9a:56:9b:74:02:6a:27:
37:15:0c:da:98:15:5b:79:3e:e6:30:02:6e:44:b4:5f:63:2b:
7f:89:e5:f9:38:df:e9:06:12:4e:a3:0d:0c:1c:c1:69:60:96:
43:86:61:2c:ab:4c:a9:02:da:88:de:64:d6:1d:c7:1a:a4:bf:
d4:73:d4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org