Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/P6bYPxmcnEsnCWk9fk8cJiAQ8hQ.roa
File: P6bYPxmcnEsnCWk9fk8cJiAQ8hQ.roa (raw, json)
Hash identifier: CwRDSbfkvHmp3rMnmP+haWtf4oJqb0upbLfzj1qyLlc=
Subject key identifier: 3F:A6:D8:3F:19:9C:9C:4B:27:09:69:3D:7E:4F:1C:26:20:10:F2:14
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0192B1C8252E533B48F8AA3E79C4694F725E
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/P6bYPxmcnEsnCWk9fk8cJiAQ8hQ.roa
Signing time: Tue 22 Oct 2024 01:12:16 +0000
ROA not before: Tue 22 Oct 2024 01:12:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 17818
IP address blocks: 2a06:e800::/29 maxlen: 32
2a0e:9300::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Oct 2024 11:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b1:c8:25:2e:53:3b:48:f8:aa:3e:79:c4:69:4f:72:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Oct 22 01:12:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fa6d83f199c9c4b2709693d7e4f1c262010f214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:06:c8:53:81:61:8d:14:81:72:e0:95:3c:e2:
a0:db:0e:52:cc:c3:57:6e:54:1c:e4:52:71:d6:e7:
92:b3:f3:e1:07:a3:85:86:46:bb:52:87:cb:b2:2b:
0e:05:42:97:a1:d4:de:5a:0f:9a:b5:bd:0c:d6:38:
a0:d5:cf:b5:8f:65:ff:c1:c2:52:ad:f0:12:c8:96:
af:ae:06:46:ed:33:d9:59:14:fc:72:5a:4f:63:d0:
d1:92:dc:9c:4d:79:3d:24:28:4c:f1:6e:35:25:11:
dc:d9:ff:82:e1:89:8e:24:95:ba:bd:44:de:02:27:
98:ee:de:dc:77:3d:13:ec:57:35:0e:e9:b1:20:65:
90:e4:1a:3b:8f:d3:39:24:7c:0d:c6:14:a0:87:bf:
d9:80:39:0c:dc:55:b9:8c:f3:78:25:49:d3:4b:38:
31:3e:50:18:b2:65:14:52:08:94:4c:98:83:60:8c:
17:76:a6:98:09:78:16:57:79:4f:45:bb:bc:4d:b0:
99:b8:04:4e:12:3b:3c:ad:68:33:4b:45:dd:fb:77:
cc:66:63:fa:93:d6:8d:c7:9f:98:63:48:ec:11:16:
60:52:8d:92:18:7c:76:1c:87:bf:e1:25:25:87:b3:
b9:27:eb:9a:89:4f:84:32:00:f0:af:8e:26:95:0a:
45:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A6:D8:3F:19:9C:9C:4B:27:09:69:3D:7E:4F:1C:26:20:10:F2:14
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/P6bYPxmcnEsnCWk9fk8cJiAQ8hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e800::/29
2a0e:9300::/48
Signature Algorithm: sha256WithRSAEncryption
38:3d:88:67:24:aa:51:60:87:8e:fd:72:7e:a7:df:22:d1:8a:
e0:17:86:6b:9d:5d:18:27:a7:ec:1e:a6:70:ea:e8:b1:37:5b:
2a:79:f3:5c:58:3c:10:73:54:7b:f4:05:bf:da:9f:a8:44:55:
7f:b7:3f:71:0c:84:5b:e8:f3:4a:64:54:05:6a:03:9d:f8:52:
2c:d6:be:58:85:84:e8:61:6b:8f:5f:e4:ab:b7:d8:5c:20:51:
ba:d8:11:b0:97:87:27:e2:8d:51:ea:84:2b:76:03:18:5e:04:
e7:32:b6:50:5c:a7:b9:92:46:cf:67:b1:6f:4a:43:00:57:99:
1a:14:c2:1a:69:67:74:b0:a1:7d:9c:5c:c2:2f:c6:cd:05:ea:
59:90:93:b9:a4:ce:b7:ee:e5:96:a0:a6:51:dd:ca:dd:4f:ab:
53:a9:a2:51:3d:59:33:a6:76:3d:f9:f3:63:93:86:9c:ee:1a:
d4:bb:e9:08:e3:54:aa:46:70:9d:c3:a0:50:18:e2:e2:c1:f8:
9f:21:09:c0:88:6a:3e:b2:43:0e:c0:54:96:cc:8b:41:b3:fa:
7e:27:f9:26:3f:fe:1a:41:d9:7b:34:b0:54:78:6a:0f:f1:43:
dd:48:54:06:7b:20:7e:86:f6:e3:ee:c3:dc:52:4e:ec:cd:4f:
90:ee:f7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 13:48:37 2024 by rpki-client on console-ams.rpki-client.org