Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mLFtJ5nIF-P0LBXDZm2a2Kn8xhQ.roa
File: mLFtJ5nIF-P0LBXDZm2a2Kn8xhQ.roa (raw, json)
Hash identifier: 4gZyYmWrcM/0cTOjlPwKw6KGCg8wRIXu3iTZ+VBc4ao=
Subject key identifier: 98:B1:6D:27:99:C8:17:E3:F4:2C:15:C3:66:6D:9A:D8:A9:FC:C6:14
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FE8041C6F8CFB29EB9A13FDF31804
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mLFtJ5nIF-P0LBXDZm2a2Kn8xhQ.roa
Signing time: Sun 01 Jan 2023 21:14:48 +0000
ROA not before: Sun 01 Jan 2023 21:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203023
IP address blocks: 2a0e:aa07:e049::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Sep 2023 06:34:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e8:04:1c:6f:8c:fb:29:eb:9a:13:fd:f3:18:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98b16d2799c817e3f42c15c3666d9ad8a9fcc614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0a:c3:8c:0d:a7:b5:45:47:a7:40:6e:33:c4:
e5:80:a9:4f:16:2a:ab:5e:24:f3:01:ff:8f:35:1f:
79:b8:b6:0c:c3:e3:01:8e:15:58:c6:1b:ee:78:fa:
a0:25:87:fa:0f:19:ad:c9:48:0e:d4:4d:d0:e3:07:
69:88:19:6d:b2:30:fd:44:86:1e:c2:39:ab:b0:0c:
65:a1:54:16:a5:8d:56:04:1b:b4:19:95:e9:8f:72:
63:20:1f:0a:e7:60:3f:01:94:5a:b8:f8:d0:38:d0:
29:5b:47:13:a2:96:53:68:b3:fd:05:06:4f:bc:82:
36:70:1b:3f:c9:d7:1a:2f:1a:65:cc:c4:3b:a4:97:
46:8f:b9:f3:74:56:e0:3b:ef:9d:9b:4c:99:de:7a:
e8:02:3c:03:db:3b:05:9f:07:ac:96:03:a3:15:20:
db:c0:a8:a6:af:58:8a:da:58:06:2a:71:a0:c5:94:
e0:4f:77:04:37:31:b4:28:8d:18:49:01:51:1e:5d:
4a:4b:49:00:64:06:0d:4d:c0:78:2f:0c:01:0b:9f:
89:4c:d0:27:90:9e:42:e7:8d:fd:21:6a:13:47:4f:
d6:89:05:4a:3c:08:60:d6:3b:0b:3d:b9:ee:cd:e7:
19:f8:1d:3d:74:32:e3:69:3c:43:5a:94:18:91:cc:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B1:6D:27:99:C8:17:E3:F4:2C:15:C3:66:6D:9A:D8:A9:FC:C6:14
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mLFtJ5nIF-P0LBXDZm2a2Kn8xhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e049::/48
Signature Algorithm: sha256WithRSAEncryption
14:36:27:68:13:ec:6e:57:22:34:08:68:dd:2f:9e:1d:99:1e:
3d:9c:e5:b6:51:f5:44:56:4f:6d:46:5e:90:54:c5:01:a5:25:
a9:f8:4e:18:7b:65:b7:0e:73:b8:e1:cd:fd:af:72:55:1a:38:
0e:f7:60:fd:d6:d4:47:48:52:f9:18:a8:9a:41:71:c6:df:66:
2e:b8:92:00:fe:70:20:7f:4c:36:b0:63:d5:c1:49:ad:76:60:
d5:2b:2c:ef:d8:19:11:1a:d4:a1:26:d3:6e:04:47:6f:38:8f:
e7:84:a3:39:e5:ec:cf:cd:1c:24:ca:36:ab:e3:13:2e:79:d0:
28:e8:dc:23:b3:5d:14:f7:1d:9e:0b:5c:2b:0b:9b:54:34:38:
31:1d:ab:75:34:af:88:b3:12:d6:25:ff:50:aa:3f:9d:87:53:
f3:fe:36:fb:75:35:72:ef:1e:bd:46:b4:5a:af:b3:16:e3:ec:
83:ae:94:67:c5:07:cf:88:da:3a:a3:aa:a0:c0:5a:ff:bd:31:
4e:d6:54:36:57:90:51:75:1d:22:c0:a1:f3:00:51:1f:d0:17:
33:ee:e7:53:fd:42:4d:5b:fe:be:d0:03:e8:5e:fc:e5:ae:13:
11:67:4c:f4:0b:89:bb:e9:be:c4:ab:0d:9f:dc:11:7e:6f:38:
e1:8b:85:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org