Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/MWuCDUO0F46FY2LTDwgqTVqUhoU.roa
File: MWuCDUO0F46FY2LTDwgqTVqUhoU.roa (raw, json)
Hash identifier: tQ14tLKf3SLrzy/XdpTD8OjGw+70ovcW9fFe58IOmXk=
Subject key identifier: 31:6B:82:0D:43:B4:17:8E:85:63:62:D3:0F:08:2A:4D:5A:94:86:85
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F300B275FDC4B6BCD26217DE636464E
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/MWuCDUO0F46FY2LTDwgqTVqUhoU.roa
Signing time: Sun 01 Jan 2023 21:14:57 +0000
ROA not before: Sun 01 Jan 2023 21:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212371
IP address blocks: 2a0e:aa07:e047::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:0b:27:5f:dc:4b:6b:cd:26:21:7d:e6:36:46:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=316b820d43b4178e856362d30f082a4d5a948685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4d:97:e4:5f:21:2a:f4:5c:92:31:7b:6c:ab:
55:64:e2:00:b7:a9:11:e7:c5:33:12:80:aa:4b:42:
eb:6e:5f:bc:63:83:5c:f1:74:01:76:86:3d:1e:87:
6b:98:34:b9:f3:80:12:cb:2e:22:a2:c0:73:15:3e:
bf:4b:56:b1:55:66:fb:00:cd:99:58:75:60:66:4c:
b7:62:a7:76:b2:15:d2:cd:72:c1:bd:d4:a8:55:47:
3c:33:b2:99:6c:18:c7:55:15:14:75:bd:db:75:fa:
14:7a:ff:76:ec:42:e5:15:5a:70:d6:dd:91:ac:44:
f8:8f:61:07:ee:50:30:9a:a6:75:ec:ab:ae:f9:35:
10:2d:2a:de:ab:a7:60:a9:ff:84:54:4f:2d:37:9e:
f3:da:0a:5b:5e:01:7a:82:35:fa:ca:27:74:85:9c:
7f:c6:c9:f3:18:61:c6:bc:8d:3c:91:dc:b6:76:20:
93:d5:c9:d8:04:2f:1b:8c:8e:07:e8:82:28:d9:5a:
08:34:6e:3f:eb:ab:8a:b5:2e:51:f1:15:cc:cc:55:
74:d9:12:89:da:46:e1:8d:2d:4b:6a:12:12:26:ad:
33:af:45:32:67:7f:4c:68:a4:40:a8:cd:fc:a8:37:
a5:5c:36:79:96:53:0c:55:5a:f4:03:6d:ed:73:ba:
d6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:6B:82:0D:43:B4:17:8E:85:63:62:D3:0F:08:2A:4D:5A:94:86:85
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/MWuCDUO0F46FY2LTDwgqTVqUhoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e047::/48
Signature Algorithm: sha256WithRSAEncryption
43:9d:9d:bf:53:24:2a:ac:5e:1d:48:75:4f:db:fd:0a:8c:64:
5a:52:c8:a3:b0:74:18:fd:9f:74:2e:0c:db:e2:b4:56:1b:85:
1c:19:a2:90:f7:cb:01:4e:f4:e2:d5:e9:33:33:fd:6a:f5:3b:
86:cb:a2:5d:c3:32:c2:f5:ee:bd:67:8a:7b:e7:aa:93:dd:32:
d4:ab:0a:8c:31:50:ae:92:7e:ed:06:89:9d:17:8f:bc:9d:0e:
e4:31:39:be:02:06:d7:9b:22:ef:eb:97:6e:3c:fc:17:1a:20:
81:d6:b6:76:02:0e:be:8c:28:d8:bb:fa:0b:7f:67:56:27:bb:
15:29:ef:d7:d0:6b:f4:18:1a:26:28:39:9c:00:0b:73:ea:85:
69:fa:7b:80:81:5b:3d:13:9b:db:69:64:8f:0e:88:85:f6:ef:
06:43:5d:de:d7:6b:92:3d:e5:b6:f6:bb:7d:c5:d3:0c:ec:c0:
f6:91:2f:02:97:40:7d:1b:65:17:75:8b:dd:e0:f6:b3:72:42:
e4:e8:e4:18:31:ce:71:70:85:7e:a6:70:1f:8c:0d:60:89:bf:
bf:2b:71:a5:b7:03:c4:c0:ff:8a:fa:fe:1e:f5:4e:ca:3d:b8:
99:f2:a3:83:d2:0f:1a:56:7e:1e:23:7b:24:e9:19:dc:72:1d:
04:28:22:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org