Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/pIKvGwDBtBiTa4jo09wR05JdnHo.roa
File: pIKvGwDBtBiTa4jo09wR05JdnHo.roa (raw, json)
Hash identifier: OHqaHWYec3yeT8r8g6nRdaLR6LO6iNWIBJ/VRqL/3QU=
Subject key identifier: A4:82:AF:1B:00:C1:B4:18:93:6B:88:E8:D3:DC:11:D3:92:5D:9C:7A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0188CD507F28B711E07C181D6CD88F613EA4
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/pIKvGwDBtBiTa4jo09wR05JdnHo.roa
Signing time: Sun 18 Jun 2023 07:03:04 +0000
ROA not before: Sun 18 Jun 2023 07:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60326
IP address blocks: 2a0e:aa07:f090::/44 maxlen: 48
2a0e:aa07:f080::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:cd:50:7f:28:b7:11:e0:7c:18:1d:6c:d8:8f:61:3e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jun 18 07:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a482af1b00c1b418936b88e8d3dc11d3925d9c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:80:e1:e4:b4:03:e3:5a:37:9f:b8:81:b0:
c7:21:49:d1:47:51:58:1b:49:36:16:79:f5:05:2f:
71:1f:f0:59:16:3a:79:de:72:69:99:51:c9:dd:7c:
8f:64:34:5a:e4:2b:89:eb:55:8d:a4:5a:1b:48:72:
41:2e:a5:53:60:7f:64:8d:b7:cb:31:86:21:96:88:
3f:28:f1:d2:2f:33:61:1a:53:05:f4:4d:6b:b6:0b:
ba:71:a6:b5:d6:27:3e:b8:49:4b:e3:5c:ac:d1:ed:
ea:fb:84:0c:11:ae:12:6c:16:7b:f5:bf:1f:3d:89:
5c:b7:b3:f8:a4:20:14:5e:b5:6c:ec:2d:38:ff:1d:
19:58:1d:8d:93:b4:15:74:29:82:d1:72:80:0f:42:
3b:00:8a:51:d1:80:7e:dc:fc:e4:42:d8:43:93:1f:
4a:9a:e0:51:78:66:58:9c:74:96:65:79:2b:8a:26:
9b:f2:89:da:4d:73:80:74:28:8e:4a:30:ef:ef:83:
03:75:6b:ca:e8:e5:ac:72:64:3f:06:f8:38:b1:d5:
b5:fc:a1:0e:f5:14:68:b4:e6:a1:41:a3:51:7c:ef:
7a:2f:a9:ef:b0:e6:f6:92:9b:9a:d0:1e:17:85:c8:
c8:54:3d:bb:09:6d:a5:ca:b8:e0:c6:43:8f:9e:84:
2c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:82:AF:1B:00:C1:B4:18:93:6B:88:E8:D3:DC:11:D3:92:5D:9C:7A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/pIKvGwDBtBiTa4jo09wR05JdnHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f080::/43
Signature Algorithm: sha256WithRSAEncryption
6a:c6:09:84:5c:43:18:ae:6f:22:cb:08:19:43:1a:f2:75:71:
91:e9:05:b1:d5:17:ef:2f:f2:49:0d:59:dc:bb:92:98:cc:ff:
56:34:fa:12:56:d1:96:2b:ed:ca:60:58:e8:64:0d:20:e1:74:
70:ac:b0:3e:bf:a4:19:0c:fe:37:02:01:66:f2:cf:6e:34:df:
be:75:58:ac:db:98:f0:3f:b9:66:5a:5b:37:6f:40:38:28:85:
32:bf:b0:f3:fc:0f:2e:67:0e:d9:7f:89:b1:71:ff:23:63:59:
23:5f:55:57:8a:90:7c:92:ba:64:b5:d1:15:df:10:10:2c:f4:
b2:5d:91:aa:92:58:45:12:48:23:1d:48:f2:96:cb:10:f9:12:
c2:5e:3b:f4:c8:fb:65:4b:6c:6f:df:d0:a5:2c:c3:fd:fe:e8:
e6:3f:63:64:dd:00:24:81:82:48:ce:35:50:8b:79:c1:f9:8a:
b0:dd:6a:2e:53:2b:1f:be:43:76:86:0d:a0:31:47:77:60:67:
68:20:b4:f5:cf:1c:99:52:ff:19:b7:5f:f3:78:ea:f9:af:f3:
69:cc:e8:8f:a8:24:dd:90:52:b1:69:aa:a6:52:08:2b:f1:fa:
42:b8:37:d3:2e:26:b0:11:ba:ab:02:da:58:b1:1e:f9:2b:ec:
44:89:9b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org