Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/6iXqfdK173HOr6nhCbGuvU_Z664.roa
File: 6iXqfdK173HOr6nhCbGuvU_Z664.roa (raw, json)
Hash identifier: LK4n+IYIl5/JfVY00kq+ztM6zZiZzLoogZoFnszPRtE=
Subject key identifier: EA:25:EA:7D:D2:B5:EF:71:CE:AF:A9:E1:09:B1:AE:BD:4F:D9:EB:AE
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DDAFF224A059FA0F771D1C3BBDBB8
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/6iXqfdK173HOr6nhCbGuvU_Z664.roa
Signing time: Sun 01 Jan 2023 20:55:05 +0000
ROA not before: Sun 01 Jan 2023 20:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208982
IP address blocks: 2a09:7:2009::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:da:ff:22:4a:05:9f:a0:f7:71:d1:c3:bb:db:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea25ea7dd2b5ef71ceafa9e109b1aebd4fd9ebae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a2:0c:4c:c1:27:ec:45:ea:60:bb:2a:ad:08:
97:ee:b4:43:72:d5:60:08:61:c5:96:ae:ac:90:fa:
70:57:a5:e8:d0:d6:53:8d:96:b7:c4:8c:dd:95:66:
28:3e:06:ae:e4:bc:4a:9b:cd:37:67:a8:95:f5:05:
15:9b:1e:56:fa:d9:ff:da:e0:ce:8f:7c:84:cd:66:
33:62:e2:76:67:ba:ae:23:d4:47:94:0b:b2:a2:13:
c1:e3:ab:2a:13:01:cb:1d:93:81:a0:7f:06:aa:72:
93:2a:79:99:93:17:fd:6f:57:6c:19:1c:49:e7:34:
e7:df:a1:03:79:04:1e:35:ea:8a:43:97:91:7c:df:
2f:dc:5d:02:c0:cf:18:b1:9c:8f:7e:c5:aa:9d:3a:
64:1b:62:6b:48:d6:f2:8d:ae:e8:fd:e6:13:b1:3c:
ea:29:37:a4:3c:8a:46:29:a6:2c:3b:b0:1a:d4:41:
4e:c3:51:99:9d:9a:d0:d4:ad:97:96:9a:37:bf:4a:
7c:47:42:d4:fb:0a:f3:74:fa:1b:87:c6:8a:68:a0:
a3:6f:32:29:3b:55:83:4d:ac:0a:2d:2d:a7:ba:75:
c9:48:ea:cd:de:08:bb:10:b3:36:aa:95:a9:ea:b6:
dd:72:64:c7:c6:81:d7:f4:79:91:96:be:16:cb:17:
c3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:25:EA:7D:D2:B5:EF:71:CE:AF:A9:E1:09:B1:AE:BD:4F:D9:EB:AE
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/6iXqfdK173HOr6nhCbGuvU_Z664.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:2009::/48
Signature Algorithm: sha256WithRSAEncryption
5d:49:8d:9f:db:2f:2b:c8:1d:b1:e8:af:c4:88:e5:0d:b0:be:
9a:44:85:dc:07:e4:cd:7d:a7:20:04:58:48:9e:2f:ec:6f:4e:
92:34:f3:66:72:d5:71:72:de:cf:9e:7a:d6:40:0a:13:28:0f:
e9:cd:da:e4:6c:aa:b6:45:bb:f5:db:c9:ae:be:ad:46:97:cc:
c3:02:42:96:8e:4d:e7:dc:d9:f0:a9:d8:9f:5a:63:4f:32:0d:
72:85:c0:c6:c1:a9:87:3f:df:21:c2:9e:4f:10:2a:cb:3f:ce:
44:a3:44:35:db:30:0b:df:48:9a:02:47:a2:38:e0:ec:46:56:
62:22:68:42:0d:8e:4d:a8:1c:d1:bd:28:8b:a0:ed:c4:9a:4f:
fc:31:f9:11:2b:cf:ba:2c:ba:5b:e2:3f:cb:d0:3d:8e:38:e5:
80:ae:34:07:d0:23:61:0d:5b:85:1e:e7:89:d8:73:f8:69:39:
94:d1:d7:03:c7:e9:18:09:e4:7a:de:44:84:db:56:c0:64:c1:
ac:ad:25:18:c0:3b:31:1e:4b:11:3b:85:3c:1f:c9:c4:bc:23:
a6:e5:4b:8f:e5:19:5b:8b:40:bb:cb:e2:76:dc:34:71:de:de:
35:88:e0:41:3d:70:87:cf:b7:55:eb:9a:18:49:90:61:5a:62:
1c:ca:59:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org