Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/4TbCePilPbUW2kghltV_pnK13QU.roa
File: 4TbCePilPbUW2kghltV_pnK13QU.roa (raw, json)
Hash identifier: B8per/w3IJ416iVKwXbo2tklSU6ziZpyxszJT98HQNI=
Subject key identifier: E1:36:C2:78:F8:A5:3D:B5:16:DA:48:21:96:D5:7F:A6:72:B5:DD:05
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA7BE41728215708FCD163A8BADC82
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/4TbCePilPbUW2kghltV_pnK13QU.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207963
IP address blocks: 2a0f:5707:ad01::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7b:e4:17:28:21:57:08:fc:d1:63:a8:ba:dc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e136c278f8a53db516da482196d57fa672b5dd05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fd:58:4d:1a:a7:df:65:f7:e3:4a:f5:93:dd:
78:c0:73:f6:c5:6d:6e:7d:25:d2:6a:36:59:be:78:
f0:08:cd:1f:fd:fd:a8:4e:8f:11:c9:57:61:b9:b6:
ce:92:56:4b:34:6b:ab:02:04:12:fe:8b:66:de:22:
9e:f3:b2:5e:dd:a0:1a:fd:dd:2b:ec:0c:69:7c:c3:
40:8f:36:b1:4a:0c:6f:64:99:29:32:db:a7:32:c9:
2c:f4:f1:95:d7:5a:f6:28:3d:59:9c:c9:b8:e2:f9:
b4:b5:c2:4b:9e:cf:2e:d3:95:98:51:84:8b:5d:75:
fe:48:3c:ad:c3:43:71:08:8d:86:1f:13:59:4b:dc:
22:70:6f:36:c4:a1:60:30:6d:6d:4f:1c:8f:c1:35:
02:8d:c4:8f:bc:6f:43:6b:eb:14:08:ac:24:a3:f9:
4d:9c:04:01:0e:56:6f:4a:3c:62:87:d4:c3:7d:00:
bf:26:63:97:c0:61:23:b6:bf:a8:8a:5a:87:1d:4c:
c2:21:26:67:4f:27:94:e2:7d:0e:ba:da:d7:36:ba:
5c:4f:39:dc:3f:dc:a5:53:8f:79:6e:3a:a8:e4:ca:
dd:19:77:72:05:91:4c:32:90:1c:06:ea:ea:65:e4:
2a:7d:08:90:5b:f2:07:0a:f3:6d:e6:57:43:0c:74:
c7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:36:C2:78:F8:A5:3D:B5:16:DA:48:21:96:D5:7F:A6:72:B5:DD:05
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/4TbCePilPbUW2kghltV_pnK13QU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ad01::/48
Signature Algorithm: sha256WithRSAEncryption
a2:38:24:df:db:1a:03:bf:d3:4a:c4:f5:60:18:ee:61:3c:7e:
13:1a:40:ac:dd:c8:52:c3:56:15:42:3e:19:d4:14:39:22:c6:
bf:07:de:9a:df:92:10:e2:9f:55:d6:3b:b4:76:f4:72:c6:b7:
36:94:75:6e:fd:0f:b0:29:eb:a4:a9:c5:39:ce:b2:3b:fc:01:
b0:60:72:81:14:44:8e:45:12:90:9a:6d:36:03:34:74:7b:63:
51:7c:c9:b8:9e:62:74:20:ed:a8:64:61:17:46:d5:f9:9b:90:
d6:bc:92:8a:f2:7f:2b:27:82:64:4d:70:0a:9a:a0:28:c9:66:
fd:b1:d1:dd:fc:40:53:11:4f:5a:74:31:2d:02:dc:f9:30:bf:
ea:3e:bd:6c:67:84:26:79:08:5c:34:03:cf:d8:25:28:a1:b7:
48:a7:f3:80:ce:8c:a6:75:45:80:cf:50:62:2b:73:3f:4e:70:
33:2c:1d:40:11:0f:3e:be:b8:95:d6:fa:d9:e4:a5:74:3c:ca:
73:fa:29:97:cf:46:52:af:49:67:18:51:59:57:6f:e0:a8:5a:
26:e9:66:75:5f:67:68:b9:cd:c8:05:75:2f:ee:06:a2:f9:55:
f8:35:e4:f7:c4:93:17:9b:d6:9d:a4:d3:62:88:ed:9f:be:13:
dd:aa:fa:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org