Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/tE0P_Q4nZ7mWynm1OklVnZ_218k.roa
File: tE0P_Q4nZ7mWynm1OklVnZ_218k.roa (raw, json)
Hash identifier: vzgPGIUe/GMjW0Fd2JhRPIAr5oPe2Si2jMseMYwkLkA=
Subject key identifier: B4:4D:0F:FD:0E:27:67:B9:96:CA:79:B5:3A:49:55:9D:9F:F6:D7:C9
Certificate issuer: /CN=88e719f426793b1e9063771460abd311a3dff116
Certificate serial: 01857079A4D9996CEA8032CEFB83CB5087CB
Authority key identifier: 88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/tE0P_Q4nZ7mWynm1OklVnZ_218k.roa
Signing time: Mon 02 Jan 2023 03:14:58 +0000
ROA not before: Mon 02 Jan 2023 03:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25623
IP address blocks: 2a06:ee05::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:a4:d9:99:6c:ea:80:32:ce:fb:83:cb:50:87:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e719f426793b1e9063771460abd311a3dff116
Validity
Not Before: Jan 2 03:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b44d0ffd0e2767b996ca79b53a49559d9ff6d7c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6e:bc:f4:06:28:ef:8d:64:4f:3a:95:86:3d:
9d:4b:55:1e:a6:b7:a7:fd:ee:82:ce:35:ec:13:cc:
2d:48:16:3e:bf:c1:30:f9:f0:e8:56:5c:56:1e:df:
fa:99:df:ac:bd:74:77:cf:41:b1:bc:43:96:4c:29:
a2:9c:24:b3:0a:7c:ea:fd:e0:98:60:a4:7e:c0:bd:
71:7b:ad:03:17:be:c4:7f:a6:ce:40:28:50:3d:7c:
a0:b1:5d:90:e6:c2:bb:72:5f:2e:c5:a9:b2:c7:66:
47:71:af:36:23:b0:27:48:77:ce:0e:d8:0e:21:40:
db:32:2d:a5:1f:42:14:c9:b7:6f:93:e8:7c:38:ec:
64:ad:cd:06:48:3d:10:79:4f:f5:06:45:e2:82:03:
ea:86:0f:92:c2:5a:91:eb:4a:02:5c:61:c2:26:b7:
bf:fb:48:9b:42:96:02:6e:ff:19:8a:51:0c:df:d7:
86:8d:bc:20:f4:27:81:47:f5:3e:06:f7:95:59:2e:
5c:47:9d:a0:38:ac:3f:a6:d5:59:88:48:2f:47:c9:
fe:03:23:62:02:74:73:02:26:55:85:48:3f:25:e8:
66:f1:9a:9c:ad:4d:d9:26:0e:fa:26:bc:e3:a2:8d:
18:65:0c:af:9e:ee:3f:af:84:7d:be:6c:e8:aa:4e:
ef:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4D:0F:FD:0E:27:67:B9:96:CA:79:B5:3A:49:55:9D:9F:F6:D7:C9
X509v3 Authority Key Identifier:
keyid:88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/tE0P_Q4nZ7mWynm1OklVnZ_218k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:ee05::/32
Signature Algorithm: sha256WithRSAEncryption
3a:af:ba:55:08:c5:b8:ce:c2:6c:4c:3d:6e:90:ef:50:5a:55:
63:73:99:1b:fe:2e:db:2d:9a:27:84:ad:d7:74:72:74:1b:2b:
7c:2c:49:4b:61:c0:fe:ed:6a:ba:2e:9f:a3:78:e5:fe:de:76:
29:8b:76:77:ad:3e:ad:92:b8:e5:0c:0d:9a:7a:5d:1c:e3:b3:
6f:3a:99:b2:67:61:db:4f:a5:97:7b:ed:79:79:0f:39:26:b7:
bf:6b:88:32:33:c0:ce:a0:db:26:3b:65:25:a7:d9:3d:07:bc:
86:81:ef:26:c1:e5:00:db:a8:63:03:08:aa:a3:e9:aa:e2:a8:
3b:21:a0:1d:52:b3:c5:e4:78:7b:b6:54:30:d8:da:7b:fb:7c:
23:fd:10:c1:6f:1f:a3:bb:3f:e0:7d:e9:94:f8:14:21:0e:14:
4e:5a:2e:5f:cb:f1:74:cf:89:8c:0a:4b:f4:ca:dd:5d:23:21:
9f:14:f4:ee:66:6a:43:c6:37:16:0a:14:ae:e1:60:1d:22:45:
c9:24:29:40:00:2d:1e:b2:a2:e9:5a:1a:a0:50:9a:06:f4:9a:
11:79:ea:9c:91:19:67:fa:ab:34:65:78:b5:e9:a3:ae:90:9e:
4c:c8:16:11:36:a6:00:06:9b:fc:dd:82:8f:66:fe:f4:8e:ad:
6a:0a:08:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:11 2024 by rpki-client on console-fra.rpki-client.org