Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ko4A6zXYRlV88suldMHB4elUStg.roa
File: ko4A6zXYRlV88suldMHB4elUStg.roa (raw, json)
Hash identifier: GpfEAqiG8QT9jfkLUjGW6efJtZc0W65EcFr68ct5XoY=
Subject key identifier: 92:8E:00:EB:35:D8:46:55:7C:F2:CB:A5:74:C1:C1:E1:E9:54:4A:D8
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018A37B05C49BEE61E6394E12619007748D1
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ko4A6zXYRlV88suldMHB4elUStg.roa
Signing time: Sun 27 Aug 2023 15:50:19 +0000
ROA not before: Sun 27 Aug 2023 15:50:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216405
IP address blocks: 2a0e:aa07:e120::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:b0:5c:49:be:e6:1e:63:94:e1:26:19:00:77:48:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Aug 27 15:50:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=928e00eb35d846557cf2cba574c1c1e1e9544ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f0:71:95:61:f0:96:7b:f4:02:da:27:30:46:
48:e1:12:7e:59:49:13:b9:a8:e6:ad:70:d5:4c:6f:
48:56:73:54:0c:03:49:3b:4e:db:5a:98:91:bd:9f:
c3:ab:29:e7:31:46:0d:64:63:82:2f:99:a7:d6:20:
13:66:c2:74:68:a6:b3:d9:fa:e0:65:53:94:3c:b7:
27:80:38:6e:13:95:3c:69:8c:98:bd:85:b1:07:9e:
df:52:b7:5f:41:0b:eb:b2:9f:03:50:38:b0:4c:b9:
05:87:b0:f0:b7:d5:60:80:bb:e4:7a:d8:a9:49:9e:
65:e2:68:53:06:dd:16:2f:4e:2e:48:bd:ca:c8:db:
b1:68:ab:45:d9:82:a3:f9:4f:15:2a:54:01:0a:d8:
04:40:93:50:f0:74:53:b7:b0:02:11:ba:e1:9d:f0:
f8:78:ff:ea:71:b9:84:cd:c7:09:af:31:f9:ea:01:
02:04:f6:72:55:af:ed:6a:fe:27:97:a4:cf:de:7c:
3a:61:9d:fa:e4:c6:37:2d:d2:09:29:00:11:1c:73:
dc:aa:d6:6e:10:d4:25:e2:03:30:bd:2e:34:8a:f2:
d4:ef:5d:c2:e4:c1:5e:1a:8f:20:25:23:cf:f4:83:
3a:cd:56:93:c0:99:69:51:19:dc:09:26:e8:1e:e7:
fe:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8E:00:EB:35:D8:46:55:7C:F2:CB:A5:74:C1:C1:E1:E9:54:4A:D8
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/ko4A6zXYRlV88suldMHB4elUStg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e120::/44
Signature Algorithm: sha256WithRSAEncryption
5a:2f:d4:6d:4d:60:8d:01:aa:b8:dc:70:85:b5:42:06:08:29:
6a:84:a4:5d:e2:a2:52:31:40:74:54:93:7a:d0:67:ee:43:65:
2b:f9:d3:26:aa:76:88:9e:60:c9:92:86:90:bb:03:8a:32:53:
0e:05:d9:a5:86:a2:47:87:82:97:1a:f9:df:01:21:47:47:0a:
bc:3b:60:92:61:48:fd:88:ea:47:fb:3f:ed:90:6a:f1:f0:65:
cd:ce:58:6f:47:0d:7f:e2:7f:1f:8c:b1:dc:26:d0:78:a9:d4:
7a:6e:4a:f9:6d:e8:d0:f5:59:bf:51:6b:e5:c4:46:6e:89:fb:
03:fa:72:90:ae:bd:e8:78:c0:f2:26:b2:53:82:32:26:7a:4a:
51:13:40:97:f6:fb:e0:9d:e8:c3:85:85:27:98:80:c7:6b:64:
2a:81:8d:94:6e:ea:47:2c:9d:ea:9c:d9:ba:ee:84:cd:12:36:
43:37:41:98:59:65:68:9f:2f:48:75:d5:54:0e:ac:06:9d:81:
06:f3:64:ab:f0:70:7b:ef:4e:a5:11:29:c4:66:e1:fe:65:f9:
a1:53:27:31:c1:a2:d6:b2:7a:68:9c:a3:0d:6b:5b:e0:92:67:
57:24:4d:e3:17:fe:a2:17:ad:47:3f:d0:d7:32:c1:71:99:5b:
1d:f8:cf:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org