Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Na5SfC8JFnkk0XvssndSi9n9jsQ.roa
File: Na5SfC8JFnkk0XvssndSi9n9jsQ.roa (raw, json)
Hash identifier: LNxOt07wBeAa72CBUP1VDB08MJXHd6t2b3M4eUQ2Eck=
Subject key identifier: 35:AE:52:7C:2F:09:16:79:24:D1:7B:EC:B2:77:52:8B:D9:FD:8E:C4
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 01906DED7BD30D6CC7FCD893D12EA9209072
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Na5SfC8JFnkk0XvssndSi9n9jsQ.roa
Signing time: Mon 01 Jul 2024 10:53:18 +0000
ROA not before: Mon 01 Jul 2024 10:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214625
IP address blocks: 2a0a:79c0:500::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jul 2024 23:11:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:ed:7b:d3:0d:6c:c7:fc:d8:93:d1:2e:a9:20:90:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jul 1 10:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35ae527c2f09167924d17becb277528bd9fd8ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:eb:5d:93:a2:9f:3e:71:d4:88:da:e0:32:9d:
11:03:6a:6f:6f:d3:07:33:38:a3:b1:96:ca:77:fd:
30:83:e5:70:c3:58:47:36:ba:34:e9:52:c1:b3:a0:
46:9d:f6:80:b9:f7:4c:14:f7:09:ce:35:72:9c:1d:
44:27:66:22:83:ca:d2:42:96:15:2a:1c:48:0e:87:
3e:96:ec:a3:77:2e:2a:3a:9f:6b:75:4c:4c:83:45:
04:68:e6:bb:73:17:a9:33:9f:6b:2c:e0:ce:9b:f8:
05:31:a4:d5:1a:12:93:4f:27:b1:5b:4b:a5:af:ed:
b7:ee:dd:97:6a:a0:da:ea:62:51:14:44:57:53:da:
a6:47:dd:4b:ab:57:75:eb:72:1b:8f:68:2c:54:0c:
95:64:d8:ca:4f:de:66:e7:44:56:a7:af:29:00:be:
39:27:da:5f:b2:d7:a8:09:17:4f:12:67:18:06:a8:
b1:00:b9:b4:e6:c5:ad:74:fd:2f:3e:76:54:fb:2c:
7e:b6:d2:92:c1:ca:2f:f9:71:a4:fe:e4:ca:de:f9:
3b:db:aa:49:9e:5f:e8:f0:9e:0e:df:76:19:42:90:
14:5c:f1:3f:d9:ed:e5:83:e5:d2:1c:75:4c:f7:a5:
cb:b6:b4:6b:7b:55:88:6a:c2:5f:e0:4d:31:b7:23:
dc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AE:52:7C:2F:09:16:79:24:D1:7B:EC:B2:77:52:8B:D9:FD:8E:C4
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Na5SfC8JFnkk0XvssndSi9n9jsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:79c0:500::/44
Signature Algorithm: sha256WithRSAEncryption
06:b4:bf:01:be:ce:99:c0:f3:fc:5c:8c:a8:1e:90:01:4f:94:
d7:7c:a7:57:98:e1:82:84:cd:48:c5:1b:24:89:1c:1d:75:c0:
0f:3a:eb:bf:e8:8e:99:12:b2:57:7a:df:a2:f1:66:e9:98:a4:
ab:3c:b5:58:66:b1:a1:21:05:4f:db:7b:c8:03:f5:b4:54:fa:
bb:33:cf:99:cb:ee:fa:74:93:fd:cd:a9:36:b1:bd:35:c9:b3:
e4:5a:86:ce:74:55:b3:ef:bc:19:e4:1d:fa:c4:f0:7e:ab:27:
8a:79:25:3d:c5:e1:79:cf:50:e6:79:b1:99:68:c3:b2:14:28:
8a:da:cf:c1:be:4d:2f:05:14:9d:8f:b0:f9:6e:91:75:ac:1c:
0e:fd:63:ad:bc:52:a5:40:5c:bc:48:dd:c5:34:d9:a8:b7:9b:
e5:79:92:e1:53:d3:67:52:92:8b:67:15:17:e4:df:d3:d1:b2:
b4:d2:9e:0a:e5:16:bc:9b:0f:a9:f7:45:d9:47:f1:3f:38:66:
e3:18:a8:1f:fc:15:a3:19:be:f8:10:3e:5f:55:f5:28:b9:8a:
57:7b:7a:b9:f6:b3:4c:0d:c7:c3:b2:f4:19:3a:bc:47:42:de:
41:5b:4e:a7:e5:f5:c2:35:41:39:cf:72:30:00:5c:c9:20:79:
c0:43:52:94
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 2 01:02:47 2024 by rpki-client on console-ams.rpki-client.org