Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/tPm7IcdQTjocpboImpt7Ar8mVIc.roa
File: tPm7IcdQTjocpboImpt7Ar8mVIc.roa (raw, json)
Hash identifier: UzmdDkCe99FLrJ7MJJCughTjaL5ZImdrvOg+IDRuWFc=
Subject key identifier: B4:F9:BB:21:C7:50:4E:3A:1C:A5:BA:08:9A:9B:7B:02:BF:26:54:87
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FE36484C061AB7B5D9A03E32FB401
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/tPm7IcdQTjocpboImpt7Ar8mVIc.roa
Signing time: Sun 01 Jan 2023 21:14:47 +0000
ROA not before: Sun 01 Jan 2023 21:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139216
IP address blocks: 2a0e:aa07:f0d0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e3:64:84:c0:61:ab:7b:5d:9a:03:e3:2f:b4:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4f9bb21c7504e3a1ca5ba089a9b7b02bf265487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c3:d1:e5:f7:40:ce:d6:99:ee:63:76:cb:c3:
7d:d0:52:9a:86:aa:17:31:a1:55:9b:29:38:d4:77:
9c:80:de:b7:9b:eb:59:90:79:ca:22:de:43:b4:e7:
52:3d:b7:1a:d2:df:bf:7a:5a:dc:26:99:67:e1:24:
2f:13:2b:34:c5:e1:13:46:33:6c:72:d9:53:f4:cc:
82:e4:28:1c:e3:97:8e:cb:1c:a6:07:97:07:2e:35:
83:92:5c:82:73:8c:94:c2:3c:a7:fd:cc:b5:53:8a:
b3:39:6b:52:0f:39:0e:4d:59:54:df:4c:e8:ba:b1:
b5:b6:85:dc:a0:c1:e5:2d:ca:31:ce:2a:d1:c3:1a:
ca:eb:7b:b7:e2:2f:58:a6:83:d8:c9:df:17:dc:24:
26:10:64:87:ef:69:18:fa:4a:0d:bb:c2:58:0b:65:
f3:c5:2e:c4:89:a5:73:16:c7:6b:3d:99:35:82:a0:
de:51:31:44:46:af:d4:c4:ed:84:c9:3b:c6:fa:9f:
39:df:38:2c:98:42:39:47:08:ec:c5:7d:27:5a:a2:
0c:ce:0f:df:7f:85:07:7e:83:c5:81:07:65:20:f2:
fb:26:52:25:80:2b:b7:47:0f:11:73:2c:20:44:8f:
f3:c2:83:6c:ab:42:89:33:f9:88:01:ff:b4:1c:ab:
54:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F9:BB:21:C7:50:4E:3A:1C:A5:BA:08:9A:9B:7B:02:BF:26:54:87
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/tPm7IcdQTjocpboImpt7Ar8mVIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f0d0::/44
Signature Algorithm: sha256WithRSAEncryption
15:3e:03:9b:5e:8a:19:8e:26:14:60:ba:df:a1:06:5c:db:98:
8b:2f:4d:6e:8e:54:fe:05:2b:01:c8:52:ac:d8:f9:22:8f:6e:
a5:82:ca:ca:12:68:ac:b1:46:4c:0e:d3:e3:34:ac:9d:16:30:
58:d1:59:23:26:b9:df:49:07:5a:da:49:ab:92:79:5a:e2:be:
75:93:ee:2e:f2:1d:f4:27:5e:3f:49:e0:e2:62:b3:cf:4d:e6:
26:75:43:c9:83:51:64:82:18:29:53:11:68:c5:c1:c5:99:1a:
c2:a5:48:ef:d6:de:10:ed:23:d7:93:9f:92:ba:40:03:9c:7a:
64:b5:42:11:b0:84:bf:43:0b:47:43:9a:15:d1:e0:06:a5:a9:
5d:a9:fc:47:d3:b2:ff:f6:21:42:a4:0c:0d:b2:eb:d3:6c:de:
32:8b:5a:14:d4:c6:6e:d9:14:d7:ae:d5:3a:b0:14:4c:d4:a2:
a4:0c:c5:3d:9d:3e:33:8e:93:f4:7c:56:c9:77:ca:b4:6a:7f:
a2:e6:a5:55:d4:43:3d:37:28:f4:11:f6:b2:10:ae:e5:b7:a0:
3a:a9:fd:5b:e3:b7:a5:e1:a6:fc:4f:5e:7a:99:c5:95:93:9d:
13:25:0e:6e:4e:18:bc:e9:b0:43:4e:e2:5f:4c:bf:9e:00:02:
ae:bb:9f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org