Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/AY8ezQOgDQ5BpaaUU779m49KMq0.roa
File: AY8ezQOgDQ5BpaaUU779m49KMq0.roa (raw, json)
Hash identifier: mEACEh4jzgyspEbG/gkOnqktXXN8iFVO2zq/yG6Ql0c=
Subject key identifier: 01:8F:1E:CD:03:A0:0D:0E:41:A5:A6:94:53:BE:FD:9B:8F:4A:32:AD
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FEEC97EDE6F2A20679A8EDE33AED0
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/AY8ezQOgDQ5BpaaUU779m49KMq0.roa
Signing time: Sun 01 Jan 2023 21:14:50 +0000
ROA not before: Sun 01 Jan 2023 21:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205825
IP address blocks: 2a0e:aa07:e03a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:ee:c9:7e:de:6f:2a:20:67:9a:8e:de:33:ae:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=018f1ecd03a00d0e41a5a69453befd9b8f4a32ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a8:8d:63:46:f9:75:3b:2d:cb:ab:90:06:79:
de:6a:26:c9:d1:40:4a:7c:97:d1:c8:be:f8:1c:b7:
27:71:ab:eb:b1:99:38:4b:40:30:bf:26:5e:53:a5:
c3:4d:4f:3c:b1:1a:53:30:2d:f0:64:5a:9d:a3:5d:
19:fd:70:eb:67:6c:5a:ce:82:3e:a1:97:af:a0:5c:
44:8f:d6:03:93:b1:a5:25:00:dc:3a:2f:e5:c1:b9:
6c:de:76:f8:05:20:84:5c:23:aa:1c:3a:c0:41:0d:
bc:db:dc:32:6b:ba:88:5b:ac:5b:7c:69:8e:a9:88:
27:99:fa:3e:db:23:d0:ea:6d:c3:a4:92:ae:eb:47:
c1:58:b2:ca:ab:92:58:ff:68:f4:b3:d7:5a:69:49:
b6:f8:20:5f:c0:e7:1c:05:c5:4f:bf:72:d3:ad:77:
f5:19:5e:73:37:6a:0d:6d:88:10:94:c1:87:f2:79:
4b:c4:e8:94:e7:a6:3d:3c:e2:81:1c:ec:d8:8f:a6:
b1:c2:ec:88:33:f1:c6:b3:33:cc:41:06:88:67:b3:
22:d6:ce:bf:13:50:2d:ee:28:e5:36:1a:dc:75:62:
8f:56:7f:76:16:fd:ef:ac:7c:7b:19:cf:d9:19:c2:
48:d8:f5:c5:5a:f1:ad:90:cb:45:fc:90:9f:89:06:
ca:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8F:1E:CD:03:A0:0D:0E:41:A5:A6:94:53:BE:FD:9B:8F:4A:32:AD
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/AY8ezQOgDQ5BpaaUU779m49KMq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e03a::/48
Signature Algorithm: sha256WithRSAEncryption
24:22:e7:12:d7:7a:1d:4d:ad:53:e9:04:26:2c:ac:e1:ed:ec:
79:09:6b:0f:62:d7:80:0f:e2:51:56:4a:05:fe:7c:06:25:46:
74:46:4f:c8:03:e8:3f:89:e5:fd:cb:29:fa:71:0d:56:10:95:
9d:63:63:71:d0:2b:05:99:90:d7:a9:c8:c7:6f:5b:9b:22:38:
88:f2:d9:99:e4:da:d2:f7:9d:5b:52:d4:6f:2f:15:23:41:69:
17:bc:da:73:14:14:d5:56:9c:df:83:e1:4d:98:ea:8f:e1:f5:
76:1a:a6:f8:75:28:a4:77:40:5b:af:54:2a:d5:18:8c:99:ab:
87:ef:09:56:06:bb:63:e9:b8:a6:fb:23:c7:9c:c9:28:5f:23:
c4:8e:7c:d4:f5:1b:a0:05:84:74:0c:af:f2:88:1f:4e:28:df:
05:47:13:8d:c3:24:80:1c:db:c7:25:cf:a8:fa:e3:cf:b7:02:
be:a4:98:b2:dd:c0:e4:e3:bb:5d:49:41:95:48:0d:16:f2:8b:
f5:be:1b:1f:4c:d4:0f:a7:ac:0e:0c:4c:32:74:9b:eb:4b:2e:
e3:5a:0e:35:c2:f0:73:a8:a0:7d:4b:1c:8b:74:33:dc:12:54:
fe:92:10:5c:62:6a:80:8e:cb:2f:cc:ee:e2:21:d6:c5:b6:8b:
1e:ca:40:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org