Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/s52TlKoeQ6wA4itzZJ8Ox3dGe0U.roa
File: s52TlKoeQ6wA4itzZJ8Ox3dGe0U.roa (raw, json)
Hash identifier: ggyX8pRlITnKHwLastay8FUw6GEADIapTqE2NbPhGPQ=
Subject key identifier: B3:9D:93:94:AA:1E:43:AC:00:E2:2B:73:64:9F:0E:C7:77:46:7B:45
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0187B8F86EB3C818ED356FA1D747062D4CBD
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/s52TlKoeQ6wA4itzZJ8Ox3dGe0U.roa
Signing time: Tue 25 Apr 2023 15:11:41 +0000
ROA not before: Tue 25 Apr 2023 15:11:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198739
IP address blocks: 2a0e:aa07:e090::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:f8:6e:b3:c8:18:ed:35:6f:a1:d7:47:06:2d:4c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Apr 25 15:11:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b39d9394aa1e43ac00e22b73649f0ec777467b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1c:6d:16:16:8d:a1:80:4b:35:b1:02:65:c1:
f8:b9:d1:db:85:98:62:dc:f8:81:f1:4a:a2:c4:e4:
94:9f:bc:5f:98:7e:e9:11:50:ad:2d:f3:0a:55:d7:
ab:cf:20:f9:8f:43:40:a8:cb:e6:61:81:1b:83:2e:
1c:68:8d:cf:bd:0d:32:2e:88:55:f1:7d:d9:59:b8:
1f:f6:7c:22:ed:74:31:e9:8b:90:6b:10:87:06:5f:
27:ae:7e:31:97:ca:79:b2:6d:e7:dd:85:f2:58:61:
65:29:16:e7:5a:dc:04:e1:b5:4c:e2:a1:6d:ed:88:
b8:7f:ec:a2:dc:d1:67:d2:17:11:73:4c:4a:70:69:
6b:ba:ee:1b:45:fb:c1:bc:c7:ca:9a:5c:79:47:ef:
61:58:f1:20:9c:c9:50:d7:fd:b5:36:11:42:65:a6:
8e:8b:93:fd:6e:ab:db:0a:4f:36:61:53:68:cc:ba:
f5:a9:bb:9f:8a:7d:4b:b2:73:ea:e2:f9:6f:c7:90:
5e:39:c4:31:35:37:ab:02:c6:55:6c:8e:02:f2:53:
0f:b0:e0:a9:4d:96:84:d7:d9:e7:64:c1:82:b0:2e:
47:12:c1:a2:b4:48:97:13:1c:89:17:06:dd:f7:39:
4d:06:0b:13:69:c9:b5:c5:b7:2a:0f:fa:4c:53:8e:
d3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9D:93:94:AA:1E:43:AC:00:E2:2B:73:64:9F:0E:C7:77:46:7B:45
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/s52TlKoeQ6wA4itzZJ8Ox3dGe0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e090::/44
Signature Algorithm: sha256WithRSAEncryption
af:a4:ef:12:9c:04:00:9e:56:e2:5d:f8:9f:11:3f:5d:6b:79:
a4:5f:f6:de:b8:03:69:cc:c5:20:8f:36:e8:5d:30:20:28:b5:
09:97:ff:cf:f9:e3:b8:a1:ed:ee:5d:43:0e:b7:53:1f:0e:04:
81:6c:da:0e:e1:cd:17:d3:71:3a:0a:3b:df:7f:f7:cf:b8:f5:
f0:8a:6f:72:c0:88:6c:2c:a1:f0:a9:3d:88:35:af:6a:fb:7f:
38:f5:67:08:ea:7d:38:af:2f:7b:6e:6a:b6:7c:5d:65:02:98:
04:10:96:49:90:c5:2c:89:4e:2f:79:36:72:09:bf:d5:5e:25:
35:9a:d6:b5:1d:e0:84:a3:ac:de:1c:34:ff:5f:41:d3:51:57:
eb:5d:23:06:98:04:90:24:fd:d2:0c:3f:18:22:c3:f0:91:75:
a2:14:0e:29:9d:4d:c9:b3:61:fb:85:fd:6c:91:e8:ab:d1:4f:
2e:15:f0:72:82:5e:85:3b:cb:79:83:ba:7c:41:68:85:57:b3:
47:e1:b0:ca:7e:81:51:ab:a5:9f:9b:11:f9:4f:27:55:16:d8:
46:c2:07:e6:dc:54:23:08:19:13:e1:a6:9b:85:05:3e:29:5b:
6c:97:38:93:7a:bf:f9:40:69:eb:c5:ae:bb:8f:b7:d7:d0:ad:
af:40:12:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org