Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/CDAeV5976YC5srJmQ_-lvxibsyc.roa
File: CDAeV5976YC5srJmQ_-lvxibsyc.roa (raw, json)
Hash identifier: 2amGocQ0KR7ghiloURTDABpqnmF5dq/0rvYcFBIjqGw=
Subject key identifier: 08:30:1E:57:9F:7B:E9:80:B9:B2:B2:66:43:FF:A5:BF:18:9B:B3:27
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FF6088DDB4D1BE2F48217F5640635
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/CDAeV5976YC5srJmQ_-lvxibsyc.roa
Signing time: Sun 01 Jan 2023 21:14:52 +0000
ROA not before: Sun 01 Jan 2023 21:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208698
IP address blocks: 2a0e:aa07:f0d0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f6:08:8d:db:4d:1b:e2:f4:82:17:f5:64:06:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08301e579f7be980b9b2b26643ffa5bf189bb327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:51:72:8d:df:af:5d:2a:b8:a1:4c:5e:e1:38:
fe:4d:1f:28:ca:1e:51:81:43:5b:af:87:3b:2b:5d:
4e:75:d1:ff:83:60:6b:e0:49:47:6d:09:8f:d7:cf:
4e:62:2d:a7:25:f8:12:5e:66:6d:04:69:34:d0:ba:
45:8e:d3:e8:da:73:85:48:cf:a5:50:04:ac:5e:3b:
d3:20:92:24:73:7d:1a:8b:cf:86:34:14:d3:49:65:
88:33:cd:ab:4f:ae:3b:33:81:49:d3:0b:dc:f4:a8:
a1:99:84:a7:a3:6d:1e:df:f6:6a:31:33:32:62:b3:
46:9c:cb:94:05:11:36:c6:54:bd:2c:35:ff:59:a2:
02:0c:0a:dd:33:2a:8f:26:6e:9b:7d:53:08:d7:ce:
fa:48:de:b3:e3:21:1e:8b:be:9c:68:07:31:6a:1e:
2d:47:15:3f:0a:13:d4:00:80:ab:dc:92:4c:8b:c7:
3f:95:10:9e:d2:26:31:1b:11:51:22:88:46:4d:d8:
a3:86:3a:48:7c:eb:38:44:dc:7f:ab:19:3d:39:08:
ac:68:8b:8e:cb:38:ad:36:fa:96:6a:6f:00:88:34:
91:14:ea:ac:5d:fb:63:9b:d9:c5:5b:6f:d6:46:4d:
87:e2:6d:48:3c:6c:f3:81:6c:10:cc:06:ea:67:49:
6d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:30:1E:57:9F:7B:E9:80:B9:B2:B2:66:43:FF:A5:BF:18:9B:B3:27
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/CDAeV5976YC5srJmQ_-lvxibsyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f0d0::/44
Signature Algorithm: sha256WithRSAEncryption
01:d8:eb:18:8d:4b:1f:0d:94:bf:8e:0e:5d:71:30:e7:93:53:
2d:8a:b6:5e:19:95:76:1c:e1:e2:77:aa:f3:d1:9f:f3:8d:cb:
93:c7:86:8b:56:c6:4b:b1:2e:7e:df:0d:5c:60:77:18:1e:46:
12:38:84:26:29:9d:08:b4:4d:08:0f:c5:7a:ec:a8:b4:13:da:
43:c2:50:b7:39:9b:d1:f1:79:87:77:5f:b2:9c:22:86:b9:25:
03:f2:c5:a4:8b:74:d0:db:6d:8f:3c:dd:ff:99:88:49:35:d8:
7c:e5:00:83:52:f5:54:0d:95:01:d7:e5:d9:a4:d3:32:1b:73:
94:0e:31:c7:77:80:02:b0:42:db:85:0a:5f:de:c1:38:52:88:
5e:b2:69:3b:3f:bd:f7:4c:7d:71:aa:b5:6c:b4:f0:1f:63:da:
b0:ae:6c:fb:3f:a9:02:f6:b0:0c:c2:25:f6:2f:e8:3e:ee:38:
d0:4a:42:bb:f0:6b:15:69:0d:79:5c:d7:64:7e:49:52:a0:e8:
e4:65:3a:82:f1:fc:40:5a:15:e6:89:46:cc:5e:b9:c1:81:19:
ee:fe:09:a8:8f:61:93:8e:fa:ed:0e:87:22:ec:29:38:b1:13:
b4:94:e2:64:3e:fd:c9:d5:ac:8c:be:04:eb:b2:a5:dd:a4:3b:
f8:82:6d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org