Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/Iv8NFC3Vt2Mkh1eWs0JxBvJEeKU.roa
File: Iv8NFC3Vt2Mkh1eWs0JxBvJEeKU.roa (raw, json)
Hash identifier: 9x0qCQ1DsHvBiXUmkpEnrzFyWFbvA8aguwKN4k1VuQE=
Subject key identifier: 22:FF:0D:14:2D:D5:B7:63:24:87:57:96:B3:42:71:06:F2:44:78:A5
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018A6EB55D7867AC1BC7F4947D305F65988D
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/Iv8NFC3Vt2Mkh1eWs0JxBvJEeKU.roa
Signing time: Thu 07 Sep 2023 08:14:54 +0000
ROA not before: Thu 07 Sep 2023 08:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26042
IP address blocks: 2a09:da00::/32 maxlen: 32
2a0d:e841::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6e:b5:5d:78:67:ac:1b:c7:f4:94:7d:30:5f:65:98:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Sep 7 08:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22ff0d142dd5b76324875796b3427106f24478a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:79:79:97:5a:c5:d9:05:fb:a5:56:0b:b3:3a:
5e:7d:1e:f3:57:98:16:25:73:f2:17:03:d5:a8:8a:
95:d9:f5:f2:79:5c:53:4c:32:03:f6:34:ad:db:99:
9e:00:0c:3c:2b:62:b0:3e:7c:b6:a5:ad:69:2d:d2:
9c:c6:1b:23:ee:04:2f:23:24:55:4f:ab:75:5c:1c:
19:59:63:66:f2:cc:90:a2:24:d1:e1:d5:35:57:bb:
09:b7:7c:fb:4f:7a:c0:da:c5:b5:e4:84:ec:5d:85:
d2:3f:f0:59:79:ac:a3:3b:d8:64:a8:db:f2:57:51:
3c:b3:3b:1a:26:91:59:fa:3d:1b:c5:97:fd:68:47:
39:bb:56:9f:a4:e9:d7:9d:ed:92:cf:6e:46:c7:32:
4d:ed:df:c7:f5:22:76:a7:98:a1:92:78:ef:bc:50:
6b:5a:6a:58:91:a5:a5:88:08:d9:2a:56:e3:2e:24:
7a:db:8d:b2:60:58:3d:0b:e4:2c:70:b6:06:b2:39:
8e:80:8b:09:ca:f6:cc:9d:42:ce:65:72:28:40:15:
36:51:32:43:06:af:67:b7:d7:51:cb:55:86:dd:44:
9f:a1:82:40:98:22:89:cb:18:10:44:40:f7:97:bd:
2f:90:e0:fb:c5:e1:b8:cc:0c:54:92:97:46:3a:86:
c7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FF:0D:14:2D:D5:B7:63:24:87:57:96:B3:42:71:06:F2:44:78:A5
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/Iv8NFC3Vt2Mkh1eWs0JxBvJEeKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:da00::/32
2a0d:e841::/32
Signature Algorithm: sha256WithRSAEncryption
0a:2f:7b:50:69:d6:25:c5:16:f5:b7:29:2c:f4:33:94:83:32:
76:4b:e4:e8:b9:a3:d6:c9:e2:a6:ff:e4:74:09:aa:3d:76:88:
c4:a6:4e:79:7e:5d:bb:e1:87:85:07:6e:bc:b8:34:2b:00:30:
72:13:ba:20:91:b5:4c:7a:97:f3:18:2b:46:90:0c:9b:f7:3e:
99:7e:aa:94:22:ff:7a:08:c5:ef:bd:8e:4b:ca:00:40:b6:8f:
56:02:ee:22:ea:3e:6a:e0:6b:ce:5f:66:b8:ad:bd:53:56:da:
46:dd:b4:59:39:27:46:10:20:90:96:89:87:c4:ef:27:f5:c2:
d5:a5:d7:11:7c:07:6b:23:09:47:3c:c4:0b:34:e5:50:47:18:
7b:dd:e5:64:4f:ab:5d:2b:c0:b8:4d:c0:1f:a7:de:e2:97:b1:
d0:09:29:7b:17:38:cc:62:87:b9:ef:66:a1:f0:72:4c:70:e5:
12:43:de:58:a2:7d:ec:51:a6:d4:03:02:d1:3b:dc:c1:07:12:
38:53:63:4a:b6:9c:de:4a:bf:4d:54:fa:5f:08:5f:ac:2d:c9:
7c:d4:e6:4e:f6:65:05:dd:cb:04:12:5b:4e:87:47:fd:9f:5a:
2d:c0:06:c1:be:7c:9d:39:98:09:58:08:ec:87:a1:9a:9d:6d:
5a:e8:1c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org