Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/bIjzG__TdhxQ9xRQgoHyYxhOEI0.roa
File: bIjzG__TdhxQ9xRQgoHyYxhOEI0.roa (raw, json)
Hash identifier: 1v2CmYE5cvQ698B58PIVQU6U8an7v15NUhKe95+6Enk=
Subject key identifier: 6C:88:F3:1B:FF:D3:76:1C:50:F7:14:50:82:81:F2:63:18:4E:10:8D
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018A2DA679D1242AF1931DDFB8E08C66953B
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/bIjzG__TdhxQ9xRQgoHyYxhOEI0.roa
Signing time: Fri 25 Aug 2023 17:03:19 +0000
ROA not before: Fri 25 Aug 2023 17:03:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208226
IP address blocks: 2a06:e881:9400::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 10 Oct 2023 21:44:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:a6:79:d1:24:2a:f1:93:1d:df:b8:e0:8c:66:95:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Aug 25 17:03:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c88f31bffd3761c50f714508281f263184e108d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3b:d6:ec:5e:ff:5f:e4:37:08:5c:22:0a:84:
53:0b:a4:14:ca:da:42:e9:3d:7f:1f:b5:22:b5:a5:
01:47:a6:d5:d4:fe:95:bc:99:0b:75:62:e2:4e:57:
e6:21:8a:e0:cb:6f:63:cd:bb:1b:f9:65:7f:2c:4d:
cd:ac:06:b6:71:91:53:ad:83:69:0e:4c:ad:e8:cd:
ea:25:45:0c:0d:e0:8e:e1:38:0f:ac:62:91:51:13:
4f:60:1c:87:5c:9f:2a:28:56:ad:50:b6:30:34:1a:
42:ac:e3:91:d2:20:6b:9b:0a:72:86:7d:d0:81:f9:
ac:55:10:67:08:c1:1d:3f:df:01:fc:20:69:6c:95:
52:53:2d:54:ca:e8:64:f1:57:3d:44:78:43:c0:c7:
1f:94:53:4e:e4:cb:3d:4b:6a:9f:2c:c6:1f:90:15:
5c:20:47:ee:33:3e:7e:23:76:a1:6c:af:3e:a9:6e:
31:d4:3b:39:a4:9f:45:39:fb:a6:3d:56:3a:e0:d0:
95:40:b1:aa:48:89:fc:25:f7:6b:be:c6:fe:e3:a4:
41:b9:39:e8:33:af:c9:c5:e0:75:73:8c:80:b4:d5:
79:ca:76:3d:90:ac:28:15:eb:ea:c8:2e:7f:b2:e4:
b1:f3:57:8f:dc:9a:16:f9:fe:b5:cd:7e:5a:1a:e9:
5b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:88:F3:1B:FF:D3:76:1C:50:F7:14:50:82:81:F2:63:18:4E:10:8D
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/bIjzG__TdhxQ9xRQgoHyYxhOEI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:9400::/44
Signature Algorithm: sha256WithRSAEncryption
11:e8:41:20:b2:a9:3e:55:5d:25:fe:43:3d:59:fa:64:00:1f:
e1:f5:6e:39:b6:ee:1d:fa:5d:34:fa:a2:c0:b1:82:b2:9b:64:
6d:66:52:71:9f:0e:71:56:c8:41:63:81:74:e6:e8:68:15:3b:
2b:9a:4d:fe:e3:94:88:45:f4:08:f2:19:85:93:ca:72:1f:03:
83:8a:3e:ac:4b:f4:61:30:bc:b0:11:77:5b:83:6a:3f:ff:1c:
2b:f5:ae:db:4d:db:df:fa:52:c1:d4:16:f3:ae:3c:1d:6e:3d:
a5:cf:ff:1d:e4:8b:51:98:24:7a:0e:1f:3e:d8:e3:4a:34:05:
7e:d4:71:03:2c:7c:0a:68:d2:f1:0d:0e:c2:24:07:c2:76:e3:
78:b0:f0:a8:51:f1:d8:bb:96:22:ec:73:77:02:57:de:ac:2b:
50:f2:5f:8c:39:62:71:91:23:0b:c7:6c:aa:56:ee:96:9b:33:
b9:c0:5b:c3:79:96:4e:eb:a6:94:78:59:8e:30:b5:e7:e2:43:
12:16:f1:61:f1:48:de:be:56:4f:39:49:24:e9:94:2e:ba:a3:
17:f7:24:d0:0e:75:f9:51:5d:7c:ef:0a:0a:29:76:70:5f:d0:
0b:9d:54:e2:94:89:fa:f0:e1:5c:49:59:ea:c3:df:8f:39:1f:
24:a2:9a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org