Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1jzkB9GHuDcBMgfNqCNPZtV_4qU.roa
File: 1jzkB9GHuDcBMgfNqCNPZtV_4qU.roa (raw, json)
Hash identifier: HKacQmkK+NmxbtvmKwOh1hO2etkJVPhthAFe8a3s+7k=
Subject key identifier: D6:3C:E4:07:D1:87:B8:37:01:32:07:CD:A8:23:4F:66:D5:7F:E2:A5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0190D93377F968AF7C2ED311F2FADB37F44C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1jzkB9GHuDcBMgfNqCNPZtV_4qU.roa
Signing time: Mon 22 Jul 2024 06:49:07 +0000
ROA not before: Mon 22 Jul 2024 06:49:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215211
IP address blocks: 2a14:6e40::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 25 Aug 2024 10:38:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:33:77:f9:68:af:7c:2e:d3:11:f2:fa:db:37:f4:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 22 06:49:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d63ce407d187b837013207cda8234f66d57fe2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:4d:94:89:85:fe:81:10:5f:a9:b9:f0:a4:
14:0d:97:70:ff:5a:24:ec:99:68:07:9d:70:0e:04:
3a:9d:9c:77:cf:7e:6f:4a:d7:13:04:10:79:03:f3:
eb:45:25:dd:f2:85:d8:2e:4f:72:7d:36:de:cd:03:
1f:db:1e:bb:8d:6d:98:8b:a9:28:88:95:14:e7:56:
32:cc:61:13:46:f3:73:7e:00:84:f8:52:3c:b3:69:
f4:b7:aa:e4:0d:a2:89:c0:da:03:23:4f:60:df:cd:
3c:c8:ba:dc:10:29:ac:f8:6a:c1:83:cd:ed:67:f3:
40:22:dc:91:a0:77:71:f1:b7:9f:a4:03:e8:d9:45:
55:55:9c:df:1a:21:fc:88:b3:85:b3:c8:74:6f:5f:
98:7c:c8:cd:a0:27:7b:a1:06:99:ac:9c:73:9c:df:
6b:54:fb:7a:fe:ca:68:be:ea:8b:e6:ec:d4:c2:36:
41:0e:0e:7f:32:c8:e1:ae:e9:65:89:b9:98:73:ce:
c1:d0:c7:cf:ac:6c:f1:19:dc:11:d5:bd:c0:bf:da:
a3:c3:f8:50:2a:aa:e2:fd:e7:4c:59:b7:b1:30:63:
cd:7e:26:ad:1c:e0:57:8f:3c:8c:93:91:6f:a3:c1:
b1:80:5c:54:3f:f0:fd:74:64:32:aa:f1:36:97:47:
4d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3C:E4:07:D1:87:B8:37:01:32:07:CD:A8:23:4F:66:D5:7F:E2:A5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1jzkB9GHuDcBMgfNqCNPZtV_4qU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6e40::/32
Signature Algorithm: sha256WithRSAEncryption
6f:84:67:a2:f4:9e:95:32:99:b9:62:a7:9e:de:c9:e5:e6:a1:
f4:69:7e:63:9f:85:96:5f:14:96:18:9f:77:d8:a8:e4:83:6f:
7d:64:a3:de:27:0f:70:e6:ec:97:19:35:35:7a:ec:95:16:3e:
89:a7:8a:db:9a:7f:87:dc:3e:5b:1a:04:9b:c9:6b:ec:a4:44:
5e:1a:84:73:8e:9b:1f:53:b3:d6:c0:10:fc:3d:32:f7:dd:02:
fd:ad:7e:e3:39:8d:40:f5:bf:14:df:03:f1:8a:11:f9:50:58:
a8:4e:ac:09:5a:f2:74:97:c8:4f:d0:e9:c9:ca:26:3b:79:ab:
3b:32:fb:cb:5d:dd:94:13:f9:6b:06:23:99:fb:99:21:52:0e:
b7:37:ca:55:41:40:4e:ee:96:61:67:58:a0:45:48:24:34:eb:
66:39:3d:62:18:04:10:a3:7a:e5:c9:62:61:52:31:30:04:48:
12:07:a8:ac:16:64:63:09:cc:1e:fe:ea:a8:68:de:8d:56:6d:
df:85:f0:16:19:56:bb:2e:20:9a:cd:35:bb:8a:02:54:be:17:
20:03:78:30:88:dd:bc:f1:a1:f2:d3:b0:d9:0b:be:f7:32:49:
aa:96:e3:d7:02:20:77:89:b7:07:a9:97:b2:cd:84:9e:fa:d9:
8d:51:c5:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 13:04:10 2024 by rpki-client on console-ams.rpki-client.org