Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/rVP0EkahbRNS9MEG5DgCxF3YtEk.roa
File: rVP0EkahbRNS9MEG5DgCxF3YtEk.roa (raw, json)
Hash identifier: 3DOzMhFJphALglM+GqPaER+tGjBYgXnoao1xfPMrWBo=
Subject key identifier: AD:53:F4:12:46:A1:6D:13:52:F4:C1:06:E4:38:02:C4:5D:D8:B4:49
Certificate issuer: /CN=ec9b0931118f08bf4a34b3e052fd8f8a5c1ecab0
Certificate serial: 01856EF42DCD5446358CB6848A46010C8144
Authority key identifier: EC:9B:09:31:11:8F:08:BF:4A:34:B3:E0:52:FD:8F:8A:5C:1E:CA:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7JsJMRGPCL9KNLPgUv2PilweyrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/rVP0EkahbRNS9MEG5DgCxF3YtEk.roa
Signing time: Sun 01 Jan 2023 20:09:34 +0000
ROA not before: Sun 01 Jan 2023 20:09:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210641
IP address blocks: 2a02:dcf::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:2d:cd:54:46:35:8c:b6:84:8a:46:01:0c:81:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec9b0931118f08bf4a34b3e052fd8f8a5c1ecab0
Validity
Not Before: Jan 1 20:09:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad53f41246a16d1352f4c106e43802c45dd8b449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:52:f1:8c:26:d4:a8:a3:65:28:df:d2:1a:1e:
e6:65:35:f3:b3:26:ae:1c:25:0e:29:d4:d4:2a:c3:
fe:e1:7b:8a:8e:67:07:81:28:b0:7e:2f:f6:bb:74:
78:f9:40:59:9d:18:92:b4:92:01:dd:dd:9b:75:d7:
7b:7e:ae:44:1f:26:9e:5a:a3:3c:f9:cc:1f:d8:77:
d6:9f:4d:31:54:55:5a:2f:e1:e7:71:3b:6f:08:00:
45:ee:d9:a0:d1:67:9c:3a:e6:00:a8:9c:9e:d3:36:
49:97:4c:6b:f9:19:cb:ef:cb:89:fd:4b:bf:52:39:
7d:9a:b5:be:6e:ad:b7:5c:cb:8c:01:f5:6c:ee:73:
f6:49:0c:62:a5:d6:50:55:37:1d:5f:32:d4:21:2a:
af:00:fa:2e:39:59:0b:5c:46:c9:0a:39:b0:ce:4a:
76:c2:a7:62:f8:b2:f5:dc:d1:09:c0:80:92:6f:d4:
b2:fe:88:38:bf:c5:35:6b:8e:79:83:7a:e0:e1:25:
78:dc:a0:32:84:6a:94:44:cf:b7:b6:7a:71:59:a3:
33:97:ae:70:5b:f7:14:05:e7:0b:1e:3f:7c:6f:a7:
12:0c:1e:96:b8:c0:c3:39:cc:cb:d7:fa:36:dc:ee:
7c:29:00:87:5e:3d:90:f1:05:5a:3d:c9:40:b8:24:
fe:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:53:F4:12:46:A1:6D:13:52:F4:C1:06:E4:38:02:C4:5D:D8:B4:49
X509v3 Authority Key Identifier:
keyid:EC:9B:09:31:11:8F:08:BF:4A:34:B3:E0:52:FD:8F:8A:5C:1E:CA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7JsJMRGPCL9KNLPgUv2PilweyrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/rVP0EkahbRNS9MEG5DgCxF3YtEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/7JsJMRGPCL9KNLPgUv2PilweyrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:dcf::/32
Signature Algorithm: sha256WithRSAEncryption
82:76:4f:7b:9a:f6:a6:f1:5f:3e:b1:ef:e3:22:29:47:1f:c9:
79:e8:09:e0:8b:76:50:28:9f:95:52:55:60:cb:f8:f4:96:80:
4c:d4:d0:e7:ca:e8:9e:65:59:5e:46:0b:dc:48:d0:74:5d:b9:
be:e4:21:0f:f5:4d:dd:e6:3d:30:09:33:57:a0:4c:ff:c4:09:
bc:d0:31:8d:4e:89:fc:db:1a:fc:9c:18:75:e2:cc:dc:dd:e7:
4c:b5:48:eb:00:67:8b:6d:d3:bb:5a:1e:5e:23:ac:9d:16:94:
cc:39:51:70:0b:cd:ae:e3:74:e0:58:b7:c1:d1:09:cf:f8:21:
f6:ff:5e:70:cc:d0:99:6e:f3:07:4b:d8:88:b5:0c:37:21:2e:
64:45:9b:b8:00:61:fe:f2:69:e9:50:61:e2:82:7d:d2:97:23:
28:9a:fe:e1:02:5c:45:f6:40:a2:e3:6c:10:d8:6d:98:d6:54:
02:d7:37:bf:40:cb:be:4c:58:71:d9:62:96:31:8a:45:ff:f2:
4c:d7:22:2c:16:53:dc:4a:3e:b7:8f:b0:c7:9a:d5:3c:f7:92:
93:bd:a4:30:87:9c:e3:d5:22:21:54:26:ad:18:e1:bd:23:aa:
8d:e7:85:72:9e:a4:68:99:29:6d:a2:55:1c:1a:5b:6b:46:7f:
75:ae:09:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:14 2024 by rpki-client on console-fra.rpki-client.org