Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fGNgE0miwE730el2YWG2uwE7FM8.roa
File: fGNgE0miwE730el2YWG2uwE7FM8.roa (raw, json)
Hash identifier: Oyk584EPU26qQTF2XpNvQiwp1JacXRRyoc8FXhd0SaA=
Subject key identifier: 7C:63:60:13:49:A2:C0:4E:F7:D1:E9:76:61:61:B6:BB:01:3B:14:CF
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FE8D43B68A08C9B0AF01AB6ACD4B7
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fGNgE0miwE730el2YWG2uwE7FM8.roa
Signing time: Sun 01 Jan 2023 21:14:48 +0000
ROA not before: Sun 01 Jan 2023 21:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203133
IP address blocks: 2a0e:aa07:e048::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 Nov 2023 14:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e8:d4:3b:68:a0:8c:9b:0a:f0:1a:b6:ac:d4:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c63601349a2c04ef7d1e9766161b6bb013b14cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d1:57:c8:d4:fb:d0:d3:41:c4:20:11:75:fb:
8d:4b:a7:f4:f2:95:59:7e:4a:f0:bc:c5:07:c0:58:
e4:37:7a:94:ec:23:61:65:dc:f9:90:f8:7f:a0:97:
c3:da:aa:7a:80:e0:29:89:3d:f0:ce:79:a2:5a:eb:
10:09:cc:e1:01:2d:9d:7e:2c:4c:91:1f:1b:a8:97:
81:80:d5:68:0d:8b:82:19:4d:57:ce:0b:5c:1a:01:
27:be:7e:34:ff:d7:fc:c2:9a:ef:d5:f0:67:0c:4e:
15:b8:d7:03:43:81:a4:71:7d:c3:4a:63:d9:96:49:
4a:82:57:2a:af:de:9f:7b:2c:85:b0:3d:0f:ee:c1:
f4:13:7c:2e:d1:6a:95:6b:7d:03:a5:ff:4c:45:6e:
0c:79:d4:7d:e2:84:89:93:50:d7:9c:47:00:83:06:
9e:8c:17:5a:33:be:6c:34:e0:0a:28:d1:72:11:0c:
93:8f:ad:ff:00:52:22:9b:3d:db:d8:4b:42:d9:b5:
93:9e:a1:a8:9c:05:6e:01:7f:c6:1e:89:21:2b:6c:
53:2a:3c:08:7d:9b:d2:ca:1c:aa:10:a1:5d:ff:b6:
e2:b2:d9:23:65:f2:00:00:45:51:9f:68:e3:51:61:
c0:36:56:60:8b:90:ce:ca:b7:49:26:f0:a8:07:08:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:63:60:13:49:A2:C0:4E:F7:D1:E9:76:61:61:B6:BB:01:3B:14:CF
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fGNgE0miwE730el2YWG2uwE7FM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e048::/48
Signature Algorithm: sha256WithRSAEncryption
c3:a8:f2:5d:03:a1:c1:85:24:c3:81:93:7c:98:96:a9:76:ad:
cb:bf:7e:71:8e:79:8e:ca:a7:65:7e:9d:23:0f:4c:39:f0:49:
13:1a:1c:c9:fe:d7:cc:88:0e:30:5b:f0:6d:69:43:50:e8:08:
15:12:5e:f4:db:30:31:7d:61:c7:27:53:a3:44:a8:3f:b7:82:
e2:a4:7f:1e:cc:ab:0e:bc:a1:1a:07:45:51:3f:73:0a:85:5e:
a8:3a:df:65:a9:47:60:55:9f:d1:0c:06:30:2a:ff:9e:d3:07:
59:15:b3:04:76:5d:3a:72:13:fe:ae:62:5b:77:99:4b:84:cf:
ef:60:8f:94:cc:45:d5:2b:66:1f:e4:60:71:20:53:87:60:61:
98:44:f8:fd:58:3d:16:6e:b4:42:b8:e4:10:17:51:55:e4:39:
78:2d:df:1c:e7:f5:7c:df:ee:f0:06:b3:75:6f:37:74:22:77:
67:aa:47:fd:ab:bb:e2:d8:cf:83:a1:1e:18:d4:1b:14:28:f3:
a0:7c:6e:41:38:00:04:0e:7f:a4:3f:2e:da:e1:d3:d2:0c:33:
3f:56:67:30:c2:95:56:75:11:49:9b:37:0d:38:02:67:4c:5c:
af:ed:c1:24:96:b6:58:48:5e:56:9a:01:86:1b:b9:8d:21:58:
ad:b2:2a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org