Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/hIkiGHloA2T9l17OAiOVPwfySjg.roa
File: hIkiGHloA2T9l17OAiOVPwfySjg.roa (raw, json)
Hash identifier: U5dpLbjOuIUuDLH4eyu9GJtHQxbp5Xbp6Suk50wXIcg=
Subject key identifier: 84:89:22:18:79:68:03:64:FD:97:5E:CE:02:23:95:3F:07:F2:4A:38
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018849059DA17BC85897E1A23244A11A1057
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/hIkiGHloA2T9l17OAiOVPwfySjg.roa
Signing time: Tue 23 May 2023 14:31:24 +0000
ROA not before: Tue 23 May 2023 14:31:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 2a0e:9846::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:49:05:9d:a1:7b:c8:58:97:e1:a2:32:44:a1:1a:10:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: May 23 14:31:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8489221879680364fd975ece0223953f07f24a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8f:48:3c:25:b7:5f:8d:95:eb:ee:a1:a9:63:
68:f8:f5:7a:10:f2:c5:2f:8b:5d:56:b5:cb:6a:96:
78:c6:be:39:a0:3a:01:f7:cb:81:e6:dd:62:69:6a:
36:b2:33:a9:9c:f0:d8:5a:d4:20:69:19:7c:5d:07:
10:d8:2f:fe:2c:9a:aa:52:bc:ab:ef:79:fd:2b:eb:
ab:d7:05:11:2e:3f:80:31:9b:85:33:c4:c2:1d:2b:
6c:7c:7d:8d:30:59:01:53:e1:0e:a0:72:5a:41:67:
d5:d4:fc:a5:42:cd:61:c6:ea:63:ea:84:cf:94:10:
df:7c:bf:e6:c3:0d:f4:ca:81:b1:5e:c0:25:e0:84:
01:00:d3:e1:91:63:5b:ef:35:2f:4e:30:a1:ba:96:
d3:4a:61:90:52:8a:04:e1:ee:df:3b:43:b9:c9:ad:
33:17:c7:17:35:a0:d1:23:fc:17:df:9c:71:87:2a:
8d:95:e2:73:ef:4a:95:d3:1f:38:0a:1c:63:8c:4f:
7d:87:35:a8:a8:a5:bc:c0:cb:22:e9:eb:e3:d5:be:
80:7e:8a:78:b6:af:c3:3c:65:10:d8:39:2e:47:45:
7c:36:87:41:21:16:15:b0:d5:22:a1:46:65:26:95:
bd:07:90:53:dc:64:4b:9a:37:1f:2a:28:14:11:e4:
8b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:89:22:18:79:68:03:64:FD:97:5E:CE:02:23:95:3F:07:F2:4A:38
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/hIkiGHloA2T9l17OAiOVPwfySjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:9846::/32
Signature Algorithm: sha256WithRSAEncryption
84:60:2f:56:61:11:d0:b5:b8:2d:0f:f8:f4:45:45:d7:60:49:
b6:78:33:18:b3:b9:91:95:6b:d3:b1:68:9d:71:0a:08:69:f6:
78:4c:6d:97:ff:dc:20:2b:30:5e:2e:5a:68:3a:55:de:b5:20:
84:f4:22:d7:66:d3:a8:74:77:98:fd:97:cb:9d:21:1e:04:3a:
9a:e2:0e:91:ad:07:c5:c2:13:f7:a8:72:1e:87:0e:84:d1:b3:
f9:9b:cb:85:cb:f5:14:bc:1e:2d:fd:42:d7:65:d9:5a:92:3c:
72:86:d9:08:f0:28:ae:33:18:ca:50:d3:f9:c1:d9:e0:98:f7:
6f:62:8f:d3:16:69:85:13:bc:1c:ae:ab:ec:6c:e7:5e:60:89:
ba:c5:fe:09:1a:ed:4f:9d:39:05:17:01:fa:3a:6c:63:31:37:
53:f0:dd:93:5a:67:85:37:9f:71:42:c5:b7:67:c3:8a:bf:33:
2c:2f:c0:2d:56:60:40:bd:a9:e8:32:07:ee:2d:33:e9:a8:aa:
46:6f:8d:8a:d1:e8:2e:0b:a7:b1:dd:c7:b7:5c:3e:6c:2b:cf:
e2:7a:9c:95:60:31:77:fd:73:61:43:8c:51:33:3f:34:7a:63:
99:3f:13:97:80:2c:73:58:54:c1:d4:ed:f1:69:61:b4:7b:91:
31:de:8c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:41 2024 by rpki-client on console-ams.rpki-client.org