Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RAbZJgkbzR9kFGfaWjy6Gi9YJ9g.roa
File: RAbZJgkbzR9kFGfaWjy6Gi9YJ9g.roa (raw, json)
Hash identifier: YWQDY7CYpeJsqmZu4HoRb5PGIdtYGEE1lUXWqz8fAzU=
Subject key identifier: 44:06:D9:26:09:1B:CD:1F:64:14:67:DA:5A:3C:BA:1A:2F:58:27:D8
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA7834069FA1E7F2F96C1D9153744A
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RAbZJgkbzR9kFGfaWjy6Gi9YJ9g.roa
Signing time: Mon 02 Jan 2023 13:45:01 +0000
ROA not before: Mon 02 Jan 2023 13:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206215
IP address blocks: 2a0f:5707:aa50::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:78:34:06:9f:a1:e7:f2:f9:6c:1d:91:53:74:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4406d926091bcd1f641467da5a3cba1a2f5827d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:83:75:a8:d8:46:22:c8:97:80:cd:26:6f:85:
17:4a:71:84:9f:00:45:1d:a1:0b:36:5b:b6:a7:db:
d5:19:3d:e3:94:47:55:cc:27:fe:91:64:dd:5e:64:
45:b8:84:52:e4:b9:48:e9:c1:13:d7:dd:2f:5d:b2:
1d:09:a6:1c:01:41:00:2f:00:5a:e1:66:94:4a:58:
73:f9:4e:5a:1f:2f:36:cc:4f:1a:cf:d1:cd:81:fb:
e7:ad:9f:0f:87:a8:22:e5:1b:14:f5:82:66:30:3b:
e5:08:18:9d:c6:27:46:24:03:0a:ab:65:df:22:07:
84:94:be:96:40:62:47:ce:44:2d:46:63:17:14:c6:
03:9c:fe:7d:24:d6:bf:61:68:08:a8:f2:92:ac:9c:
ee:80:c1:e8:b6:d7:c1:bd:fd:a2:fb:7c:6d:fc:e8:
44:57:3d:65:ef:3b:a3:24:b7:64:bf:ff:5c:50:70:
56:aa:b0:88:f6:45:40:4e:7e:37:15:60:29:16:08:
eb:1a:51:4f:1b:6b:82:64:26:60:ac:c4:da:fd:6d:
9a:cb:65:c6:0d:fd:f7:fc:49:b7:ca:14:30:de:c0:
f4:49:b4:5a:15:d2:9b:ec:c2:d7:f1:ae:9f:11:b1:
17:9c:3b:71:c7:54:b5:cd:cb:6f:93:8e:fb:c1:5e:
a9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:06:D9:26:09:1B:CD:1F:64:14:67:DA:5A:3C:BA:1A:2F:58:27:D8
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RAbZJgkbzR9kFGfaWjy6Gi9YJ9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa50::/44
Signature Algorithm: sha256WithRSAEncryption
4b:3c:39:03:84:23:b0:2b:ec:c2:7c:7a:7c:17:ac:d5:a2:e6:
8d:a4:a8:de:7d:f0:9f:94:28:ad:1e:19:db:6d:1d:47:b9:53:
32:7f:bc:68:5b:ac:06:f1:9b:d4:6d:8d:3e:ba:a6:90:6f:cc:
6e:99:3f:23:21:54:b4:13:b5:35:3e:c1:30:b5:80:ae:52:60:
ab:af:1e:77:43:99:54:01:65:c7:45:ce:9f:10:46:dc:b7:2d:
14:81:5e:87:eb:08:7e:d3:4a:31:59:12:8e:ef:b4:27:b2:cc:
bc:60:28:cd:f4:81:0f:72:0d:e9:b1:c8:8e:1d:df:bd:a3:9b:
a4:37:a1:7a:ee:ca:08:ce:ee:25:21:be:4b:25:f0:3e:36:63:
d0:e6:b1:2a:e2:09:80:c3:80:2e:ec:d9:e2:fc:57:ff:52:3e:
f2:50:7f:b7:73:07:be:90:92:92:e8:fa:de:1d:20:05:09:11:
b1:15:f0:93:9d:09:f1:11:88:89:b0:c7:85:83:bb:d8:ef:e7:
4a:24:0f:75:c9:85:ad:f2:a8:68:54:eb:a8:f7:76:72:da:e9:
13:0b:0e:07:c5:86:c8:b2:33:68:11:8f:a7:42:58:32:51:16:
f3:0d:ef:54:c3:6d:06:ab:c6:de:31:df:f3:98:db:04:7f:ac:
a5:91:cf:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org