Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/HNIWOf8bcyCN_1XVg9mN6RbMRrk.roa
File: HNIWOf8bcyCN_1XVg9mN6RbMRrk.roa (raw, json)
Hash identifier: /GG+FurGiIbN06rmaI//0fcQMyOKEpFVQhC5vQs5Guw=
Subject key identifier: 1C:D2:16:39:FF:1B:73:20:8D:FF:55:D5:83:D9:8D:E9:16:CC:46:B9
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 01859957FE0B37D22DBA5F72ACFC70FD8141
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/HNIWOf8bcyCN_1XVg9mN6RbMRrk.roa
Signing time: Tue 10 Jan 2023 01:42:38 +0000
ROA not before: Tue 10 Jan 2023 01:42:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398493
IP address blocks: 2a06:e881:116::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:99:57:fe:0b:37:d2:2d:ba:5f:72:ac:fc:70:fd:81:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 10 01:42:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cd21639ff1b73208dff55d583d98de916cc46b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ca:2c:14:36:73:97:43:59:a8:ab:29:a3:58:
ea:58:8a:7d:44:5c:3a:a9:da:44:e9:f9:cc:e2:ae:
2f:de:f9:48:04:c8:e2:cb:fb:31:15:8a:09:60:5a:
da:eb:10:9e:7d:d1:c6:fb:9c:df:b0:ae:6d:e7:b6:
7d:c7:66:8a:fb:dc:5a:5b:99:a3:8b:7a:06:cd:ca:
02:d6:70:b2:3a:fe:b2:6d:c2:fb:88:7b:b9:f1:59:
de:fe:5a:66:2e:b7:24:bd:52:7e:27:b9:7e:45:22:
10:9c:c9:52:e6:6b:a5:22:14:c9:c0:24:66:dd:7c:
77:8b:1f:e7:9a:c7:01:27:af:e3:74:71:d3:11:00:
b2:13:f8:23:3e:29:49:17:c5:db:3e:b9:66:75:d3:
0d:2d:1d:7b:a1:bd:68:67:4d:b6:d8:97:2a:ff:f2:
0a:d1:16:02:5b:c7:80:f8:ea:98:5e:cf:ec:66:9a:
97:ee:ca:aa:0d:58:c5:dd:17:56:30:af:a9:4e:ec:
7b:fc:d0:d2:c3:5d:80:6a:a1:8b:c6:0e:85:8c:66:
29:9a:29:7e:0e:bd:c1:9a:06:3c:28:8a:55:bb:56:
b7:c5:93:3f:11:8f:53:76:92:64:5c:6f:cd:75:9b:
ce:b9:71:cb:b5:a7:b5:13:91:89:7a:fd:b5:9f:b1:
85:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D2:16:39:FF:1B:73:20:8D:FF:55:D5:83:D9:8D:E9:16:CC:46:B9
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/HNIWOf8bcyCN_1XVg9mN6RbMRrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:116::/48
Signature Algorithm: sha256WithRSAEncryption
6e:c5:7e:6b:05:08:06:ce:dc:07:6f:5d:c7:6d:65:8e:83:15:
78:05:32:b8:e3:a6:f8:be:0e:8a:8b:a5:0e:5f:0e:1b:d8:4c:
96:83:d0:aa:fe:75:ea:a8:69:72:8b:c3:33:2b:46:a4:31:12:
e6:1c:3d:99:40:bf:59:d1:2a:d2:09:db:44:77:03:9f:21:20:
a6:1b:6c:82:94:2b:75:7c:63:ad:55:6a:17:21:35:9c:9d:bd:
43:d7:95:fc:36:52:58:be:60:40:5a:42:50:a1:4e:79:1b:21:
91:e8:1b:49:16:c0:89:8b:d6:47:75:c7:46:67:29:2f:d4:1a:
b1:0a:0f:e1:30:be:52:13:8c:e2:8d:21:c1:ec:41:2a:79:dc:
c0:85:8c:b6:e8:7e:3d:76:3c:ee:b4:ce:8c:0d:97:a8:81:2f:
85:5d:e7:e5:11:61:d7:86:c0:c5:17:a1:86:47:34:8a:0a:27:
a9:7e:c7:29:51:19:da:00:09:cc:d9:f4:fa:55:ec:98:3b:25:
cf:f5:3f:81:1e:26:82:e8:1e:47:b8:a0:b6:b4:5b:dc:36:cf:
d9:36:8b:ab:7f:90:47:2b:d3:ed:4b:11:3f:ea:0d:0c:e0:3c:
a6:69:30:9b:39:0d:c6:a4:fb:7c:df:a5:9e:6a:3d:aa:6d:bf:
6e:c4:5b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org