Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/uFTMcGwThzN7HEqasCDrEEX-ihg.roa
File: uFTMcGwThzN7HEqasCDrEEX-ihg.roa (raw, json)
Hash identifier: U1TN0VjVTQsx7x11ULlwz5NJElEaMw1lVTyjnqUbRrU=
Subject key identifier: B8:54:CC:70:6C:13:87:33:7B:1C:4A:9A:B0:20:EB:10:45:FE:8A:18
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 018B4E74BF80F160E4A90B0506F6253CE644
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/uFTMcGwThzN7HEqasCDrEEX-ihg.roa
Signing time: Fri 20 Oct 2023 18:59:15 +0000
ROA not before: Fri 20 Oct 2023 18:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216126
IP address blocks: 2a0e:46c4:2200::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4e:74:bf:80:f1:60:e4:a9:0b:05:06:f6:25:3c:e6:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Oct 20 18:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b854cc706c1387337b1c4a9ab020eb1045fe8a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ca:6d:b5:98:9a:d0:df:1c:09:17:4d:0f:d8:
2d:2b:7c:0e:01:71:06:9a:9c:72:e6:c8:e7:49:13:
4b:2c:c3:0c:ae:24:35:71:97:62:82:bc:c7:be:3c:
f8:b9:b3:71:d5:02:35:4d:50:1b:ea:87:64:cd:32:
a6:03:b2:b9:54:83:59:60:64:e1:e9:5b:34:d2:62:
5c:03:62:7e:4a:71:cc:35:ab:6a:bc:c8:9a:c3:e9:
90:f4:1e:5e:a5:b4:a2:04:28:d7:46:a6:95:a8:f0:
48:74:98:ed:37:5f:e6:4e:37:63:bc:52:db:9f:a1:
74:b6:bf:f5:70:dd:2e:d3:17:20:e1:74:43:26:a2:
14:0f:47:4b:ee:c1:96:ee:6a:26:23:ca:5d:6b:45:
2a:95:bd:b5:39:21:d9:4d:ce:c4:af:67:6b:e2:63:
94:a8:20:32:6a:a3:d1:11:c4:c3:14:a4:b5:e2:f1:
2b:7a:91:b3:a9:e4:38:53:8a:34:e2:3e:9f:68:65:
87:10:b1:b9:61:82:c0:c1:c9:27:12:92:20:69:a6:
0f:16:87:7d:3a:09:1b:55:41:2e:d9:08:12:82:fc:
ad:3c:cb:c1:df:69:8a:44:9a:2d:67:89:3f:58:39:
7f:ee:5d:89:b9:03:ae:04:5a:23:62:88:32:6a:ce:
9d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:54:CC:70:6C:13:87:33:7B:1C:4A:9A:B0:20:EB:10:45:FE:8A:18
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/uFTMcGwThzN7HEqasCDrEEX-ihg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2200::/40
Signature Algorithm: sha256WithRSAEncryption
48:95:44:bd:9d:af:17:4f:ec:00:87:c5:6e:64:a1:f6:6a:78:
29:84:30:c2:34:e5:78:75:c8:3a:c0:17:b1:bf:4c:41:61:03:
ad:d4:37:ce:29:57:38:d8:e0:7e:03:bd:88:57:1b:2f:eb:26:
77:19:01:92:26:f4:4c:c6:99:0f:ba:ba:d0:a6:d7:cf:0f:ea:
86:90:41:34:96:91:d0:ed:c8:1e:ee:66:50:5e:bb:52:2c:37:
d6:ea:01:41:dd:61:5e:f6:08:37:6c:76:d5:d2:67:8e:54:38:
4e:ab:d7:e7:f9:10:27:0f:f8:83:33:cd:18:4e:f4:04:fc:ee:
fd:64:53:6c:26:2c:65:b9:ea:bc:52:6b:eb:9e:25:5c:a1:39:
02:18:e2:8a:66:74:a9:d1:ce:a1:39:4e:50:0e:3f:fd:da:69:
28:87:26:23:84:9f:eb:ae:e2:12:14:d3:71:00:bb:9b:7a:a9:
35:ac:a3:cf:54:34:4c:30:e8:fe:fa:ac:b8:92:d8:0f:1b:ac:
d5:74:09:f3:3b:a8:ee:90:af:8f:a6:eb:50:2c:3c:7c:66:75:
49:6f:c1:fe:11:17:aa:31:5e:fe:09:ff:d0:d5:4c:0d:0c:c8:
b9:a9:a4:6c:24:86:56:d1:2d:a3:2f:00:a2:4f:d4:bd:09:84:
66:9a:0e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:39 2024 by rpki-client on console-ams.rpki-client.org