Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RtljSU5lcmkvJIgpUHw4PukRO4c.roa
File: RtljSU5lcmkvJIgpUHw4PukRO4c.roa (raw, json)
Hash identifier: o9tyOOOEz+nNHrs+s9DqA8psqqKNiI8i/qb7WqvJEBI=
Subject key identifier: 46:D9:63:49:4E:65:72:69:2F:24:88:29:50:7C:38:3E:E9:11:3B:87
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA68E0156E3BA1B7F14B465BDC4654
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RtljSU5lcmkvJIgpUHw4PukRO4c.roa
Signing time: Mon 02 Jan 2023 13:44:57 +0000
ROA not before: Mon 02 Jan 2023 13:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6369
IP address blocks: 2a0f:5707:ae00::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:68:e0:15:6e:3b:a1:b7:f1:4b:46:5b:dc:46:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46d963494e6572692f248829507c383ee9113b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:23:8d:bd:70:08:a0:a6:3d:f6:23:79:10:0a:
a6:90:5d:d3:47:c2:8e:17:29:f3:3b:1f:b0:0b:b8:
d7:2e:7e:cc:b6:48:c6:30:99:7e:11:c8:8b:57:cf:
b6:8f:48:41:40:d6:f4:fa:91:e8:5a:55:77:2b:b4:
4a:f3:30:6f:87:a2:72:ca:3f:02:09:38:a9:6f:fa:
b0:06:26:e1:ac:24:59:b2:59:0d:94:2b:c8:cd:04:
85:c4:47:3f:30:d6:49:45:e8:8d:35:c2:1e:77:e2:
4d:36:d1:bd:1d:b7:56:c2:76:1a:fc:ed:e6:89:a1:
d0:36:5f:30:ee:f9:14:ef:9b:b2:6f:b8:d6:64:7a:
71:c6:56:75:fa:36:28:23:2c:fd:0a:c1:8c:1f:ac:
3f:22:69:19:ad:bb:4d:fe:3a:3e:fa:4a:26:10:0f:
48:75:a3:c9:85:75:c6:7b:ce:01:2f:9b:5b:b7:ff:
f9:40:06:f8:8b:97:46:9a:34:d4:98:65:f2:a4:3d:
8a:26:a4:12:65:0e:a3:2d:c2:ef:10:65:28:da:1c:
8f:43:ac:82:a8:47:96:c8:b2:d1:14:15:6f:09:d8:
89:a0:57:f8:76:e2:70:0a:85:42:b1:e7:28:19:ce:
05:5f:21:40:55:73:4a:46:4d:15:52:83:15:1f:93:
a2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D9:63:49:4E:65:72:69:2F:24:88:29:50:7C:38:3E:E9:11:3B:87
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/RtljSU5lcmkvJIgpUHw4PukRO4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ae00::/44
Signature Algorithm: sha256WithRSAEncryption
a0:2c:e5:a6:c4:65:7b:5d:f6:8b:f4:11:f1:ba:9d:00:50:2a:
97:ba:c0:28:77:98:82:f6:7b:8c:a2:e0:c3:5a:21:e5:20:70:
98:36:a8:e6:86:53:02:a9:49:9c:b8:68:37:c3:b8:31:97:78:
ca:d5:42:0f:b3:6f:85:21:ff:6d:ad:cd:e3:37:c2:a5:12:60:
0c:71:1c:f9:43:d3:ab:d2:25:cb:c6:b2:62:82:61:cc:d2:26:
38:48:fa:47:25:e8:d1:ac:d8:52:15:45:39:27:b8:bf:8d:ca:
c3:5b:c1:81:47:64:c4:db:95:9e:65:57:54:5d:39:c7:dc:3d:
9a:f2:77:4a:1b:6a:51:71:b7:aa:0c:9d:8a:e2:24:9e:1e:6f:
0a:de:26:3a:1f:77:9a:2b:e4:ba:21:c6:46:b3:b4:14:cb:0f:
62:9e:9f:0c:95:58:34:f4:2e:14:53:f2:99:0f:23:b3:81:a6:
8b:bb:4f:e4:49:23:ea:55:1d:4a:ce:64:8e:a6:04:0b:a6:70:
7f:20:f3:bc:79:8a:01:01:d1:b3:8c:c5:c9:26:c7:e5:37:b6:
0b:11:1b:65:52:0f:0b:3b:97:56:05:b0:45:46:db:e1:27:35:
e2:91:86:a1:66:5f:04:35:4a:60:ee:7c:88:90:b3:8a:d6:ad:
9c:1a:ed:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org