Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/IuH6vmH-1qByVi4nM7n2JCcWwQc.roa
File: IuH6vmH-1qByVi4nM7n2JCcWwQc.roa (raw, json)
Hash identifier: HM8BH7nP+WiEyPiWobzr9DzL9vx0PN/8RLNmT3ke2+0=
Subject key identifier: 22:E1:FA:BE:61:FE:D6:A0:72:56:2E:27:33:B9:F6:24:27:16:C1:07
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DD2A433F4C80712B6CE02C5031D67
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/IuH6vmH-1qByVi4nM7n2JCcWwQc.roa
Signing time: Sun 01 Jan 2023 20:55:03 +0000
ROA not before: Sun 01 Jan 2023 20:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43992
IP address blocks: 2a09:7:2001::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:d2:a4:33:f4:c8:07:12:b6:ce:02:c5:03:1d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22e1fabe61fed6a072562e2733b9f6242716c107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f4:c2:a6:0d:ed:fe:54:91:9e:d8:9c:45:f7:
7b:9e:23:3e:c7:c4:95:fe:87:b1:8d:81:29:82:71:
cc:e5:32:53:0d:a0:e1:38:f0:a3:8d:07:b9:03:67:
a8:9c:62:ee:5a:2e:27:4b:61:d9:53:9d:54:0a:1f:
72:c2:f1:af:12:d6:18:04:aa:2e:6c:c6:96:1c:27:
dd:af:e5:6c:67:be:ba:7a:82:ee:f0:95:26:fc:8b:
1c:12:01:42:6f:03:24:7d:2b:fb:e6:b6:02:7e:21:
ad:e4:54:8b:4b:ea:ff:b7:61:69:95:b9:c5:68:fd:
72:1a:11:62:28:43:5e:bf:64:d8:53:8a:71:e0:54:
72:a6:5b:0a:e3:16:86:53:c4:83:2d:43:fc:fa:a1:
f2:9d:80:91:94:a7:b1:6f:75:56:4b:d6:82:d8:1e:
0f:c0:16:57:fa:a8:2e:0d:a5:6c:ee:71:f4:5b:02:
42:7c:d1:83:5c:7e:4e:24:25:9e:41:72:ad:fa:73:
ca:d7:11:f1:ef:4c:7e:63:a3:08:e3:61:31:49:50:
95:fd:02:0a:a4:9b:ec:82:2c:20:23:79:83:f3:04:
57:f4:4b:bf:4b:83:3a:74:6a:03:82:b6:e9:e4:d8:
c1:bb:71:da:4d:43:d6:81:a5:b1:19:67:63:bc:84:
7d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E1:FA:BE:61:FE:D6:A0:72:56:2E:27:33:B9:F6:24:27:16:C1:07
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/IuH6vmH-1qByVi4nM7n2JCcWwQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:2001::/48
Signature Algorithm: sha256WithRSAEncryption
43:5d:6c:3b:80:79:09:be:2e:a9:1c:5c:37:ab:8d:c2:e5:87:
4e:ec:2d:c3:1d:d9:cf:a7:a7:ce:6c:19:6b:03:f4:d4:0f:f3:
5a:e1:b0:99:01:6b:11:b6:6c:f4:e3:e1:2d:31:b7:90:02:5d:
1e:1f:bc:6f:99:97:ea:be:1e:f0:33:8f:10:de:39:60:32:d3:
bc:35:7f:e5:00:1f:8e:d8:c6:ae:db:c1:c7:83:e1:58:eb:2e:
1c:9c:e9:a8:8e:fa:97:e9:51:ef:61:82:bd:a1:d1:54:02:80:
08:83:cf:88:0c:12:fd:a8:4e:4a:9e:fb:0c:d5:13:55:dc:03:
c0:f6:d5:1c:6b:3b:ce:e0:65:c0:b2:ef:9e:22:d3:68:44:47:
82:b4:b1:67:cb:0b:e2:94:6b:e7:51:a0:06:b4:60:06:75:7a:
f2:99:a0:26:c8:35:70:39:87:d1:67:8b:bd:bf:5b:94:84:93:
c6:f4:72:76:c8:99:2d:9f:c7:f5:e8:8c:ba:0f:2d:1b:af:76:
a8:79:ce:f6:6c:2b:a0:81:96:60:e0:b6:40:83:15:71:a3:7c:
6d:82:a4:b0:e1:4f:3e:a0:12:fa:60:a0:57:74:43:6c:de:31:
5f:64:66:6e:fe:47:81:4e:cb:d4:5a:1e:ba:b1:8c:80:fa:c3:
54:ef:46:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:46 2024 by rpki-client on console-ams.rpki-client.org