Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/68nQ_TevveiYCRzit9KL6N8sBL8.roa
File: 68nQ_TevveiYCRzit9KL6N8sBL8.roa (raw, json)
Hash identifier: GVulbbpVcVxH06wYRFx8EhXp7Twowm6OBxDkggTnloo=
Subject key identifier: EB:C9:D0:FD:37:AF:BD:E8:98:09:1C:E2:B7:D2:8B:E8:DF:2C:04:BF
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA8480CF67450AFCD666E12475ABD8
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/68nQ_TevveiYCRzit9KL6N8sBL8.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211620
IP address blocks: 2a0f:5707:abb0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:84:80:cf:67:45:0a:fc:d6:66:e1:24:75:ab:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebc9d0fd37afbde898091ce2b7d28be8df2c04bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:be:47:17:3c:78:f9:e4:92:98:34:e8:e0:a5:
49:f4:95:1f:90:75:58:2e:28:67:4d:ae:02:31:2d:
23:51:02:51:e6:99:aa:23:78:9b:e5:4a:26:49:aa:
c5:79:68:35:4e:c0:b7:39:af:1b:fb:57:52:ad:8e:
41:5d:33:5a:f7:03:c5:89:0c:91:bf:6e:6a:62:bf:
be:28:63:16:47:fe:72:d3:d8:10:6a:fd:f2:9c:50:
9c:96:96:87:46:29:53:97:8e:7d:04:ca:74:67:c4:
b1:fa:b5:40:6b:c5:dc:ec:24:8c:8f:00:a8:ec:0e:
bc:46:cc:9d:dd:96:65:1e:80:ae:e2:a9:24:d4:26:
84:ca:f0:1b:ac:6e:98:7f:27:31:c5:64:c1:83:2b:
e8:c1:84:01:8f:5b:9e:cd:b2:58:3f:d5:85:82:c2:
ac:66:68:3e:65:b9:d2:a0:33:87:56:40:1b:48:53:
a0:c2:2b:b5:74:87:fd:ed:9c:c1:9b:04:b6:30:8c:
82:8c:7f:c3:6c:3a:c6:0d:ca:d0:77:db:1f:93:37:
90:18:d3:c9:0d:7b:48:9c:0b:4a:57:10:2c:f0:9d:
8d:5a:3e:da:4f:ae:4d:a5:af:09:2b:d6:f8:dc:76:
78:9f:3b:eb:f0:c3:74:8e:f6:78:57:02:4d:ab:d7:
d7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C9:D0:FD:37:AF:BD:E8:98:09:1C:E2:B7:D2:8B:E8:DF:2C:04:BF
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/68nQ_TevveiYCRzit9KL6N8sBL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:abb0::/44
Signature Algorithm: sha256WithRSAEncryption
08:5e:0b:a3:1d:c9:64:be:44:8a:68:f1:7c:4d:d7:3f:a1:6d:
22:96:89:8f:15:23:40:7d:44:e5:59:af:68:3f:de:4d:bd:52:
b9:d6:38:01:1b:64:9c:d7:a7:d3:e8:a5:00:64:ec:7c:8c:f3:
c8:9f:39:c7:aa:30:9c:b6:cf:ce:cb:2a:6e:22:d7:74:cc:59:
c7:10:39:22:fa:32:9d:1d:55:99:9e:22:d3:4c:dd:47:e4:bc:
72:5a:91:e3:c2:00:df:b3:24:9e:7e:1a:7c:ff:fe:3a:de:eb:
a7:87:2f:92:25:23:1d:50:6e:6e:d9:15:80:f2:4d:e7:0d:ed:
89:bb:2a:47:e8:b6:5f:59:41:a2:5d:9d:81:0a:5b:4a:db:a3:
37:88:2f:c8:df:ec:f0:cc:36:3b:61:c3:4a:02:87:db:c2:cc:
fd:f3:99:e5:7c:2f:81:8b:c4:b2:5c:e8:9d:93:9c:58:38:c8:
7c:79:e8:d1:77:07:6e:21:dc:a6:52:eb:21:c4:bf:0d:c4:b1:
91:42:82:96:ee:57:39:e9:4f:5f:bc:cc:82:a6:27:f4:8e:82:
bf:3e:cf:b1:76:47:fc:9a:ab:fc:c9:aa:f1:78:4c:06:ff:79:
33:25:eb:50:d4:2d:e6:ac:b9:de:4c:d7:6a:16:76:44:d9:31:
26:69:1a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org