Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/H-MqNRvCXM7AWdTZt8fJnAaNdbU.roa
File: H-MqNRvCXM7AWdTZt8fJnAaNdbU.roa (raw, json)
Hash identifier: laEnHUSDpisAoUkKmXJIurTNlRfqYqWh7u35DmPqog0=
Subject key identifier: 1F:E3:2A:35:1B:C2:5C:CE:C0:59:D4:D9:B7:C7:C9:9C:06:8D:75:B5
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F300D48573A0AF8A683A96B007D28EF
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/H-MqNRvCXM7AWdTZt8fJnAaNdbU.roa
Signing time: Sun 01 Jan 2023 21:14:58 +0000
ROA not before: Sun 01 Jan 2023 21:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212733
IP address blocks: 2a0e:aa07:e029::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:0d:48:57:3a:0a:f8:a6:83:a9:6b:00:7d:28:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fe32a351bc25ccec059d4d9b7c7c99c068d75b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8b:33:83:e9:5c:e9:54:44:74:11:42:9a:ca:
b5:56:44:5d:cd:81:00:bf:e8:a4:60:c9:58:ca:2f:
88:05:82:e9:e1:b2:a7:98:76:c3:c3:67:07:2a:19:
e7:a2:09:d5:98:1e:f6:66:27:fc:fe:a8:83:19:9e:
69:75:3a:ff:44:f3:26:da:21:d2:89:c0:cf:ec:19:
48:02:86:e3:e0:15:b9:48:2b:72:c6:59:94:22:6c:
9e:59:0f:db:27:82:59:79:37:42:15:70:f7:2a:53:
72:e2:fa:25:31:60:54:19:02:64:ab:cb:f7:fa:24:
b4:a0:ad:53:a9:d3:15:68:54:8b:a1:a4:ad:62:73:
71:0e:35:bf:a6:d1:82:21:28:93:a5:c5:79:ee:2f:
94:82:2c:be:7c:55:54:47:41:1c:af:49:5b:6d:bb:
42:8f:37:0e:f4:cd:48:18:41:2e:66:71:66:3c:07:
27:bd:81:e3:22:27:ab:7f:88:22:fc:14:f7:51:3e:
99:49:27:e4:09:ae:09:02:04:23:23:b2:a8:62:91:
09:95:70:62:78:d3:da:3a:fa:64:52:3e:a1:93:be:
49:bb:e4:d6:86:c5:67:4b:87:99:1b:67:15:6c:0c:
bc:76:ae:8a:6b:6d:d2:45:81:1d:37:cc:ed:f3:e3:
ce:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E3:2A:35:1B:C2:5C:CE:C0:59:D4:D9:B7:C7:C9:9C:06:8D:75:B5
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/H-MqNRvCXM7AWdTZt8fJnAaNdbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e029::/48
Signature Algorithm: sha256WithRSAEncryption
71:ca:03:e9:51:d8:f8:dc:d8:9d:f3:ba:6d:0c:c8:64:1e:82:
8b:06:9a:79:6a:37:51:49:e0:80:b9:ad:63:ca:65:8c:28:89:
92:46:34:26:9c:ed:c5:0b:b0:bd:8e:a2:74:f3:d7:a8:dd:d2:
df:b5:8b:cd:05:9f:cc:ec:5c:68:9a:f8:59:74:db:ce:38:7b:
85:b9:3d:06:32:e7:73:67:92:53:06:b3:29:b1:4b:b6:a3:84:
33:f3:26:ba:44:5f:f8:54:ce:80:9c:4a:9a:76:a0:cd:76:8a:
f2:d3:95:85:a4:76:55:3c:42:05:31:3a:e5:35:17:42:0c:c0:
12:1e:a7:bd:5c:ef:01:09:dc:57:62:bd:1c:0f:6c:39:c0:43:
2c:ca:37:b6:87:e0:d9:52:95:1a:ca:66:11:38:22:af:88:a1:
75:bb:a2:f3:eb:17:51:45:50:6c:b3:70:d8:d5:73:2b:e1:2d:
03:e5:7c:df:88:20:3d:0d:0e:7f:e4:ba:93:04:74:78:62:11:
b1:b7:30:49:0b:26:7a:e2:7c:4c:5a:e3:4e:da:59:6e:70:57:
6e:52:c5:eb:ed:ce:84:b9:24:98:db:ec:6b:fa:14:5d:bf:a3:
a1:b7:07:79:39:11:6c:70:ea:0c:d0:03:59:60:1a:a5:1c:3d:
8f:94:42:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org