Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SeCVQ7BMqHcLFXuZbtOW9uqafog.roa
File: SeCVQ7BMqHcLFXuZbtOW9uqafog.roa (raw, json)
Hash identifier: I4t46zAlwO1MYoXZWcvvgXywG12MpUfBcdwgIvlnI+A=
Subject key identifier: 49:E0:95:43:B0:4C:A8:77:0B:15:7B:99:6E:D3:96:F6:EA:9A:7E:88
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA7DFBD4CCE6BD2B8B5D514CEC17AB
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SeCVQ7BMqHcLFXuZbtOW9uqafog.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208148
IP address blocks: 2a0f:5707:ab00::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7d:fb:d4:cc:e6:bd:2b:8b:5d:51:4c:ec:17:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49e09543b04ca8770b157b996ed396f6ea9a7e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:81:eb:50:aa:45:8e:fa:80:cd:3b:b6:89:01:
36:fb:ba:ac:7e:08:70:e9:31:ab:8f:a2:32:9b:61:
06:e9:41:a1:c8:ef:1a:8c:3d:9f:f8:de:96:4b:9d:
51:f6:3d:79:82:d3:34:e6:a5:9c:8c:c9:98:aa:65:
a2:cc:f2:7b:70:71:a2:54:95:7c:4b:d3:e6:59:9b:
27:92:c7:34:b7:de:9d:7b:30:1c:eb:dc:1c:15:fb:
b3:10:49:46:e1:54:0f:ed:c8:79:59:45:2e:ff:37:
98:2e:d8:1b:92:80:3b:2c:d5:d8:f8:a3:fa:7e:76:
6c:8f:14:d7:5b:8d:8c:97:f0:cc:1a:49:77:d8:27:
50:cb:9c:16:68:54:97:4f:a8:d2:4e:a5:36:a4:cb:
8f:ef:7e:82:50:b8:a0:4c:e3:f4:23:83:b6:7c:31:
34:b9:c7:dd:d8:30:2c:5c:d4:1e:a8:f4:8e:f5:c1:
6b:75:25:6f:d3:bc:30:04:cf:25:76:74:52:2e:b8:
1f:25:88:d3:c6:3c:9f:7c:ce:50:b5:c3:99:51:a4:
7b:49:e2:e2:95:4e:53:1a:a2:49:e8:43:16:13:ac:
86:16:c2:8c:6e:ef:16:13:9c:96:61:79:bc:6f:30:
30:f3:99:c0:a9:44:54:6b:dc:a1:79:9f:64:0d:a1:
b1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E0:95:43:B0:4C:A8:77:0B:15:7B:99:6E:D3:96:F6:EA:9A:7E:88
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SeCVQ7BMqHcLFXuZbtOW9uqafog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ab00::/44
Signature Algorithm: sha256WithRSAEncryption
72:b0:00:da:d4:4e:e7:64:09:6b:b7:bf:03:9f:d0:18:eb:27:
c7:03:dd:6a:f8:8f:7f:74:87:e3:df:5f:c4:75:fe:b6:02:2c:
f0:2e:e5:ac:03:c5:c8:42:0d:de:a7:33:14:92:cc:bb:51:fa:
21:2e:59:61:21:2c:63:9d:bb:ec:85:db:c7:5e:79:8e:a2:db:
68:ac:96:a6:19:99:c6:40:fb:28:ea:c3:c3:23:27:92:56:db:
ba:71:22:f1:12:17:77:70:d8:00:06:c2:d8:98:da:25:53:47:
98:f0:c8:d9:63:e6:51:f3:61:15:35:03:2a:bd:c6:ce:e8:33:
f3:b8:df:94:b3:3d:8a:3f:29:f4:c7:ef:00:26:67:c0:ab:45:
b5:2c:74:4a:7f:2c:df:38:f9:09:bd:27:f8:a3:a2:f6:96:80:
38:31:41:bd:ef:a8:3e:34:94:b1:e4:79:e0:6c:c5:79:1c:7c:
9d:71:fc:cd:d4:41:06:41:09:41:13:f6:a8:de:fc:d4:21:89:
0f:6e:0d:e9:a2:df:27:67:cf:44:36:c6:bb:da:8e:af:aa:e6:
f9:29:e3:1e:07:f4:b6:04:65:bd:1e:aa:94:6a:c5:57:15:96:
c0:b4:ea:d2:a7:83:ed:09:ce:a9:f9:33:cc:66:00:5e:f6:71:
f1:d2:91:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org