Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/cb7tdAQxSjG-hj8ZPiSVjtBX-_Y.roa
File: cb7tdAQxSjG-hj8ZPiSVjtBX-_Y.roa (raw, json)
Hash identifier: BDL3MC3wSjsvaqLQ6OFq3nMpE2vitCG63pHc9VR5sYw=
Subject key identifier: 71:BE:ED:74:04:31:4A:31:BE:86:3F:19:3E:24:95:8E:D0:57:FB:F6
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FF925BC4A02F984C014D1515B226B
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/cb7tdAQxSjG-hj8ZPiSVjtBX-_Y.roa
Signing time: Sun 01 Jan 2023 21:14:52 +0000
ROA not before: Sun 01 Jan 2023 21:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209306
IP address blocks: 2a0e:aa06:400::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f9:25:bc:4a:02:f9:84:c0:14:d1:51:5b:22:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71beed7404314a31be863f193e24958ed057fbf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:12:e1:fa:62:a5:c9:66:a7:f7:71:29:40:3f:
0e:0e:ff:c6:a7:3c:e9:8d:91:af:f4:f8:90:3f:f7:
89:6a:8b:ce:15:05:cd:a7:3f:8a:78:2c:db:fc:ba:
23:6b:60:93:f8:7c:95:29:66:10:a0:78:04:46:f9:
ab:fb:92:88:68:e2:41:09:1f:03:1f:5d:c6:60:a9:
98:7a:b3:dc:22:ed:0e:84:63:18:f8:66:a3:b7:f4:
a0:68:e3:04:d9:30:7c:e9:e4:a6:6e:94:18:ac:dd:
ef:5e:6e:25:f3:fc:5b:30:69:72:41:0b:95:9c:a7:
7e:b1:4b:a7:6b:51:f2:6e:7f:21:81:2b:6e:cf:53:
20:4f:7a:99:b0:02:57:45:bb:77:c0:b1:91:11:7b:
2a:83:9b:7f:23:2f:a4:e1:b7:12:42:ca:4d:d0:a1:
f2:9c:a3:b8:7d:73:12:88:fa:ba:9f:95:99:0a:82:
c7:3a:57:23:0b:5f:2b:c2:ce:5a:27:b2:b0:23:78:
15:6a:e6:93:22:46:ea:d3:86:19:54:ff:ed:d5:97:
16:e0:60:c8:0e:fb:97:39:bb:8e:fa:a5:a4:bd:d6:
cf:7e:f8:3d:e7:ab:bc:84:a8:98:76:3b:b8:a2:74:
05:3e:b0:04:e4:67:e0:45:62:2e:47:52:94:cc:e1:
23:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BE:ED:74:04:31:4A:31:BE:86:3F:19:3E:24:95:8E:D0:57:FB:F6
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/cb7tdAQxSjG-hj8ZPiSVjtBX-_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa06:400::/44
Signature Algorithm: sha256WithRSAEncryption
57:29:a4:8a:06:51:63:22:86:f8:88:b3:1b:e9:9f:6d:84:60:
16:82:ec:eb:bb:0a:a2:a1:04:98:9c:6a:b3:7d:6c:e3:fc:4d:
d4:eb:9f:1a:c3:45:f8:ff:7d:6d:47:22:7f:ca:73:2b:63:e6:
f7:ae:44:82:23:1f:f8:5b:22:99:c5:9d:03:6b:cc:ce:a2:b8:
ce:56:66:b4:ba:7d:ce:75:c5:43:56:ca:95:c5:d4:99:a3:cf:
68:4d:20:5f:ed:fa:60:03:4d:52:7a:06:f3:f1:cb:9e:c2:74:
33:bf:c5:13:08:dc:f6:2c:b1:55:68:b1:e0:36:47:ad:85:73:
08:a4:0f:d5:cc:c6:2e:0b:f0:2f:4d:0f:44:1f:f2:72:d0:3c:
73:b8:51:19:7f:b5:5e:d3:bd:98:7a:3f:0d:9b:f9:07:4a:ec:
66:d0:ff:0f:46:2a:d4:87:ea:76:e6:06:2e:39:47:38:03:1d:
7c:e5:ec:bf:5a:09:97:cb:40:42:fa:45:9e:ed:48:60:d7:bb:
7f:85:85:6b:18:ed:df:25:4e:ce:35:b9:df:2a:3a:a5:b1:ee:
62:0c:ab:8a:0e:30:75:a2:ea:6d:c2:7d:76:d3:a8:3d:51:be:
d3:88:6f:5e:8a:f6:e5:e4:27:8f:5f:a2:8b:cd:31:45:b8:57:
44:a7:60:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org