Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/ncmaQ5Sr4TRY9gCEFrRQnu00Zdg.roa
File: ncmaQ5Sr4TRY9gCEFrRQnu00Zdg.roa (raw, json)
Hash identifier: wbIo3sIGVZa3fsGuOvtx3M/S4wf5qx7X6EVb3bEj10Q=
Subject key identifier: 9D:C9:9A:43:94:AB:E1:34:58:F6:00:84:16:B4:50:9E:ED:34:65:D8
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 018571C3096AA3B464A943777501E820F82A
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/ncmaQ5Sr4TRY9gCEFrRQnu00Zdg.roa
Signing time: Mon 02 Jan 2023 09:14:45 +0000
ROA not before: Mon 02 Jan 2023 09:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51391
IP address blocks: 2a0b:6b86:100::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:09:6a:a3:b4:64:a9:43:77:75:01:e8:20:f8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 2 09:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9dc99a4394abe13458f6008416b4509eed3465d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8d:1a:4e:c2:f8:ad:ca:d0:d4:0d:0b:ff:46:
e6:61:7e:5a:bf:49:30:2f:26:20:56:32:d6:57:2c:
dd:ce:a0:2b:4a:f8:e6:39:4d:c0:e2:68:4d:27:93:
69:1f:81:3e:cb:b0:d1:52:ba:d0:ba:b8:a3:d6:3f:
35:b1:18:2a:f1:35:d5:53:cf:a3:32:10:cd:7f:16:
18:87:c2:1b:57:7d:81:75:c0:e0:03:a5:df:dc:45:
e0:e9:39:aa:3b:58:4c:27:a0:1d:b0:b1:8f:7a:ef:
f7:f1:8a:6d:04:25:49:01:4e:43:c1:87:9a:b6:34:
f9:4b:50:fd:a1:70:da:ca:88:90:75:38:28:0b:90:
cc:e7:46:40:98:4e:cc:0e:61:4a:9f:ce:20:1c:67:
98:1f:be:22:8c:4f:79:2f:ec:96:d9:40:18:fe:e3:
59:71:b0:fb:16:56:9d:04:f7:ee:f7:f6:c3:b5:1b:
3e:78:0d:92:0a:96:76:19:d0:5c:3a:fe:b6:d8:fb:
b4:72:3d:08:72:39:bf:2b:07:98:77:aa:21:b8:5c:
cc:b9:b3:bf:a1:f6:7b:40:4c:0c:e1:4f:c6:c6:12:
eb:87:ae:c8:27:ce:3d:4f:fe:0b:45:10:2c:e0:a2:
f3:d4:8e:ba:86:b4:dd:6a:4d:b5:a5:e8:75:8d:7b:
a9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C9:9A:43:94:AB:E1:34:58:F6:00:84:16:B4:50:9E:ED:34:65:D8
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/ncmaQ5Sr4TRY9gCEFrRQnu00Zdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6b86:100::/40
Signature Algorithm: sha256WithRSAEncryption
ab:ca:11:61:24:91:49:0a:c6:e3:a5:ac:1f:e6:85:cd:a6:60:
51:8e:35:46:91:50:f1:f8:81:2f:5d:a0:fd:25:11:b0:4b:8a:
59:ac:1e:2a:99:cb:58:3f:ed:41:09:e2:56:79:54:d6:43:00:
fe:c2:45:40:64:d3:04:d3:c5:df:19:62:92:f1:ce:7c:de:df:
9f:76:52:ae:1c:44:22:f6:b1:44:12:ea:ef:9d:03:2c:fb:06:
99:03:62:e1:ff:03:b5:97:64:35:15:d0:11:fb:24:1e:24:2e:
b2:65:70:03:20:c6:70:8a:1e:ed:44:5d:95:cd:de:73:07:ac:
67:c3:36:f3:f5:d9:e9:09:70:0f:b4:f6:dd:c3:8d:e5:d6:23:
63:a8:16:f8:6b:cd:ca:cd:8a:94:e5:1b:2d:5e:f3:0f:30:99:
6a:44:82:14:35:27:d6:ec:2a:85:d0:34:3d:00:b2:de:2d:6e:
ad:8c:e7:1e:f9:f7:8b:15:f8:fb:a2:38:3c:44:48:35:74:a6:
b4:91:bb:f5:b1:e8:de:19:d5:78:8d:6f:c5:0e:68:40:db:2b:
25:3f:3a:2f:f3:e3:d0:08:1a:33:42:a6:e6:2e:a3:2d:6e:a0:
b3:b4:54:d2:03:cf:2b:2e:bc:e8:a7:48:44:cf:a4:85:4d:5f:
fc:d6:31:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:08 2024 by rpki-client on console-fra.rpki-client.org