Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/f2LCgIOGKmJEtuz2l8xXeYtugDg.roa
File: f2LCgIOGKmJEtuz2l8xXeYtugDg.roa (raw, json)
Hash identifier: pV+Mk/jOgFGUKhTqoNX0bF72/b8QUHFYI+UVXxS/RPQ=
Subject key identifier: 7F:62:C2:80:83:86:2A:62:44:B6:EC:F6:97:CC:57:79:8B:6E:80:38
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018CA2F3D66B35388B424C279CC325BD4545
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/f2LCgIOGKmJEtuz2l8xXeYtugDg.roa
Signing time: Mon 25 Dec 2023 21:48:58 +0000
ROA not before: Mon 25 Dec 2023 21:48:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0f:5707:ba0f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a2:f3:d6:6b:35:38:8b:42:4c:27:9c:c3:25:bd:45:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Dec 25 21:48:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f62c28083862a6244b6ecf697cc57798b6e8038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4a:19:a5:3e:77:bd:12:85:6f:a5:23:55:6f:
2d:57:2d:2d:b5:83:91:19:d7:8e:22:96:f2:21:b6:
24:ff:98:24:66:fe:78:a3:6d:09:93:d7:b3:46:61:
82:dc:9d:28:ec:b1:f6:e9:2d:c2:ee:93:00:dd:cd:
f6:2c:fa:54:7b:66:3c:75:ad:66:5d:93:96:f9:02:
75:36:5d:9e:03:a9:a6:40:40:2a:4e:80:9c:8b:7b:
cf:8e:96:13:66:8d:a8:3d:a7:07:16:4c:fd:a2:20:
a2:ac:0d:07:67:93:23:0a:6d:5a:ab:61:8e:4d:04:
67:69:35:5a:dc:97:c1:58:fa:4b:84:75:11:28:f8:
42:ba:d3:76:5c:90:ad:02:77:bf:d0:4e:5c:79:ad:
79:71:0d:8e:43:cd:33:2f:c6:f9:d1:6e:4b:32:c0:
a3:0f:ad:d4:6a:1d:0f:b3:44:77:70:89:0a:98:5b:
09:75:23:79:e9:cd:59:90:06:1f:9f:d5:f0:d1:23:
19:a3:9d:00:2e:4a:c6:dd:e4:91:30:0d:56:df:fd:
d8:26:41:f0:70:a7:87:2d:55:e5:32:64:f7:9f:11:
60:f2:c0:33:d5:e2:f9:6a:0a:43:a9:d6:6b:59:09:
c9:9b:3e:1d:a8:b9:d3:28:b8:f1:3e:03:38:81:69:
14:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:62:C2:80:83:86:2A:62:44:B6:EC:F6:97:CC:57:79:8B:6E:80:38
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/f2LCgIOGKmJEtuz2l8xXeYtugDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ba0f::/48
Signature Algorithm: sha256WithRSAEncryption
67:aa:ea:13:16:6b:74:30:ec:ba:76:fe:af:0a:32:90:58:e1:
4c:cd:6d:b9:e9:f4:5a:9c:bb:0d:a8:6b:1e:59:ea:f9:6e:7a:
5d:17:f6:5a:9f:70:0b:24:78:01:f8:11:71:22:63:f2:4f:a2:
2d:48:7c:19:61:37:ef:21:22:3e:d2:d2:61:ae:a6:0d:10:9a:
32:a1:0d:62:b6:34:be:0c:1b:54:e2:17:c8:33:c6:92:05:d9:
df:8a:1c:b6:2e:d4:ac:09:c8:80:de:24:ca:2d:00:e1:bb:6a:
77:95:dc:f1:d7:21:88:15:8d:f2:ff:fe:7b:33:73:74:89:80:
79:03:67:d8:10:5b:bb:65:e5:b8:0d:67:5f:fb:85:9b:d1:ef:
93:99:0f:77:7a:94:27:22:c2:3f:12:db:ac:f7:5e:bb:d3:a6:
64:b8:e5:c8:60:e3:ed:0a:77:de:12:eb:76:2b:ee:c4:de:14:
78:12:e2:88:8a:18:88:4b:41:ce:18:bf:d0:2e:4a:46:7e:7b:
a2:7b:7f:29:4f:3a:90:a8:a3:f3:55:5f:9e:fd:99:19:a2:05:
cb:88:3f:60:cf:4c:9f:6d:f4:ce:a7:52:c0:58:23:f7:8c:0f:
8c:47:61:60:b0:b3:81:14:fe:1f:83:6c:38:b5:7d:ed:03:54:
28:05:1f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org