Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/T0VlnZExuAF44MnLNMGJyH6Vxyg.roa
File: T0VlnZExuAF44MnLNMGJyH6Vxyg.roa (raw, json)
Hash identifier: +FJC37q9dAh1CXd7Xr++rIqpUnq7kJpQGbXiCzMyK7Q=
Subject key identifier: 4F:45:65:9D:91:31:B8:01:78:E0:C9:CB:34:C1:89:C8:7E:95:C7:28
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 018571BA030F6A9BB897450DFCF8D8F055B6
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/T0VlnZExuAF44MnLNMGJyH6Vxyg.roa
Signing time: Mon 02 Jan 2023 09:04:53 +0000
ROA not before: Mon 02 Jan 2023 09:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 2a09:9f41::/32 maxlen: 32
2a0f:304::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:03:0f:6a:9b:b8:97:45:0d:fc:f8:d8:f0:55:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Jan 2 09:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f45659d9131b80178e0c9cb34c189c87e95c728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ce:b5:3d:a4:ed:15:15:a6:7e:26:ba:f6:ee:
5c:22:41:b5:e5:c4:07:2e:6e:36:b1:48:23:ba:ad:
d9:89:a3:e0:58:0d:40:2c:8a:f2:40:44:80:93:fb:
57:26:66:e4:79:d1:2c:0f:66:ea:2b:27:4d:59:06:
b9:63:e1:5e:36:42:ef:66:b8:5e:0d:a9:6e:a5:56:
c8:7e:fe:64:e8:9e:20:1c:b4:af:cf:b3:bf:06:35:
99:f7:07:29:74:d7:55:06:00:02:0f:82:e0:da:77:
18:f9:c0:9e:af:b6:56:87:c8:d1:da:80:f9:ed:c9:
06:98:3e:e5:b1:85:69:c4:98:b3:8e:56:a3:f9:fb:
c9:f1:17:7c:45:bf:65:34:25:b3:7b:b4:b6:d5:27:
30:51:87:24:ce:c4:46:ff:99:e0:9b:d2:5d:f5:5f:
d0:de:b4:8c:47:2e:b8:5f:44:e8:b4:89:b9:47:da:
2f:4c:f6:7a:55:dc:7c:51:9c:af:78:7a:62:0a:6f:
ee:4b:80:f4:ae:d9:4e:5a:0d:11:49:0a:1f:85:9c:
c7:53:b2:58:07:12:90:41:96:e2:ad:17:fa:a1:ce:
fb:f1:41:7e:89:be:15:c6:e3:08:b2:d7:a0:a9:ce:
5f:f6:3b:be:ea:70:99:7e:4b:18:12:01:60:1c:cd:
93:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:45:65:9D:91:31:B8:01:78:E0:C9:CB:34:C1:89:C8:7E:95:C7:28
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/T0VlnZExuAF44MnLNMGJyH6Vxyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9f41::/32
2a0f:304::/32
Signature Algorithm: sha256WithRSAEncryption
76:93:f3:06:25:95:0f:65:c7:28:22:d1:7d:98:d0:33:29:57:
f2:c2:fd:fb:30:ec:7c:c6:3f:0e:f1:32:f9:e5:6f:ac:82:6e:
93:a2:fa:c6:f2:51:65:6f:46:6c:5b:59:2a:2e:d3:d0:1c:ce:
f2:98:20:31:c9:fd:88:e7:00:ad:94:27:88:ef:90:7b:62:f0:
36:f4:11:63:0f:d2:3e:93:cb:ef:e5:9a:64:32:a8:8b:c2:02:
3b:37:a5:1f:04:3d:2e:ad:b7:20:a9:f8:3c:0e:0c:e4:d7:71:
03:2d:e6:ef:f4:9e:9b:7c:52:5f:4a:cc:28:f3:f5:3b:75:99:
ed:80:13:ba:95:24:7d:42:17:bb:2e:ac:c5:53:fc:34:9b:db:
c3:7d:fa:1c:e8:03:be:61:a3:f7:f2:d1:ed:d3:a3:4f:e0:b0:
7b:dd:a5:ab:00:5f:f8:1f:67:57:5e:e4:f3:54:69:4b:74:36:
37:ae:14:d5:d9:48:26:70:3b:d6:56:11:c8:ed:a1:da:53:9a:
0e:2a:ce:dd:3d:86:c5:c6:8a:8a:27:47:a1:b5:5a:18:1c:47:
f0:5e:c6:17:1f:16:c0:a7:03:9f:9a:b4:d8:cf:a2:46:00:29:
a0:81:bb:22:cc:5b:38:5f:4e:a9:aa:5f:b8:3f:bc:8f:86:60:
e5:15:74:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org