Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/RJLDzjk6jGSeNmb9ORN1mgJgY9U.roa
File: RJLDzjk6jGSeNmb9ORN1mgJgY9U.roa (raw, json)
Hash identifier: S3Lo1cS7opV8+EM/fRu7z6kB4ghJoNN1loxHo0ZAMPE=
Subject key identifier: 44:92:C3:CE:39:3A:8C:64:9E:36:66:FD:39:13:75:9A:02:60:63:D5
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01856CAF13744FBC306B66E00CF631CB59D3
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/RJLDzjk6jGSeNmb9ORN1mgJgY9U.roa
Signing time: Sun 01 Jan 2023 09:34:51 +0000
ROA not before: Sun 01 Jan 2023 09:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48108
IP address blocks: 2a09:7c43::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:13:74:4f:bc:30:6b:66:e0:0c:f6:31:cb:59:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jan 1 09:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4492c3ce393a8c649e3666fd3913759a026063d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:db:07:27:bb:40:64:45:47:d3:15:3d:22:01:
3f:93:a6:8e:5b:34:d1:7e:ae:0d:82:4a:99:f2:f5:
05:0a:0d:8d:dc:ec:34:8d:14:32:4e:8b:f8:b7:1f:
0f:39:f2:cf:3b:ad:3d:2c:8e:c0:9a:c7:66:4f:4d:
35:96:62:09:b2:e5:2e:e5:4c:86:db:82:6d:b9:4b:
fb:8b:f8:f0:be:7a:20:02:25:0c:b8:51:73:f7:f9:
5d:33:7a:37:50:9c:a0:27:1d:0e:af:b5:f4:cd:b7:
0d:8c:c2:49:cc:3d:2f:0a:cb:f5:ae:5e:c6:e2:7b:
02:c2:a1:b7:dc:02:75:f8:0a:cf:a0:b0:ea:1a:65:
42:09:0a:0b:08:f9:cd:e9:f9:e2:fa:17:55:98:62:
bb:64:27:50:91:67:ac:d0:d3:81:3d:de:5b:1e:71:
c5:e7:da:e3:7e:7b:c4:62:4f:8c:b4:32:c6:2a:1e:
ac:9e:9f:62:4d:7f:f9:27:04:ca:68:e2:b1:c2:66:
b6:37:8a:ae:22:91:5c:8e:47:7f:40:80:2f:6e:1d:
7f:da:b9:2e:e7:2b:b9:53:34:4f:32:94:a2:c4:ec:
7c:dc:69:04:c6:23:cf:12:66:7f:67:8c:ff:fe:09:
c4:e6:c2:49:18:1c:6a:fc:fa:aa:37:8d:3b:87:54:
f5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:92:C3:CE:39:3A:8C:64:9E:36:66:FD:39:13:75:9A:02:60:63:D5
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/RJLDzjk6jGSeNmb9ORN1mgJgY9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7c43::/32
Signature Algorithm: sha256WithRSAEncryption
78:3f:b3:e9:74:05:b3:86:58:90:71:60:dc:29:75:8f:21:0f:
03:e7:38:3f:4b:2f:9a:91:61:63:e1:41:6a:7a:02:c0:bf:3b:
29:61:00:37:54:f1:f9:7b:9c:6b:7b:47:38:ed:87:dc:a9:df:
eb:7a:d5:c2:35:ae:ea:af:bf:8d:33:db:21:b2:9a:5d:60:bd:
fa:e4:a8:98:11:53:1b:a4:48:fd:7b:36:4d:de:13:cd:0c:28:
74:cf:91:66:9b:3f:17:76:83:07:7f:0f:3b:43:d8:c4:8d:4b:
7e:54:d5:fb:36:76:99:c4:98:6b:23:15:0b:56:c7:38:df:c8:
af:48:f8:87:1c:26:0c:75:a1:26:fd:68:86:23:1d:97:dd:87:
5c:9e:dc:62:51:f6:91:ed:a8:61:6e:4e:88:8f:f6:7f:8f:fa:
68:a1:bc:00:f4:ae:7d:0d:10:88:9a:25:96:30:69:4e:db:ed:
94:69:2a:97:e9:8c:f5:9c:ba:32:57:c4:35:50:70:b3:92:fe:
be:51:37:f7:f8:fd:53:99:c8:2f:aa:fa:63:b7:79:7d:5d:5e:
79:c8:01:40:19:88:1a:b0:70:de:6f:b4:ee:39:89:0b:71:7d:
60:bd:41:28:79:14:5d:91:48:3c:bb:0c:de:87:6c:74:e8:d8:
82:08:58:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:28 2024 by rpki-client on console-ams.rpki-client.org