Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/iMwAc2Z-g7VdD4bzUSUWs8Wcb3s.roa
File: iMwAc2Z-g7VdD4bzUSUWs8Wcb3s.roa (raw, json)
Hash identifier: JV+dSMmq+4pBzpAnV2rrm9BSb+G/SW203UjisDOKv1I=
Subject key identifier: 88:CC:00:73:66:7E:83:B5:5D:0F:86:F3:51:25:16:B3:C5:9C:6F:7B
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018A16EF20DA8DD3B9A52077575A41C3D19B
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/iMwAc2Z-g7VdD4bzUSUWs8Wcb3s.roa
Signing time: Mon 21 Aug 2023 07:11:24 +0000
ROA not before: Mon 21 Aug 2023 07:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197477
IP address blocks: 2a0f:5707:ab30::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:16:ef:20:da:8d:d3:b9:a5:20:77:57:5a:41:c3:d1:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Aug 21 07:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88cc0073667e83b55d0f86f3512516b3c59c6f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:3f:c2:aa:85:b4:d0:72:10:c3:65:42:ae:
ed:78:87:85:35:d6:08:49:3e:72:59:cf:4e:bf:70:
dc:ff:a8:4b:f5:54:b7:60:41:ae:cc:c5:67:6c:ad:
8b:a9:30:cd:e3:64:01:c8:58:ec:86:9a:fd:06:72:
cf:4e:c0:64:b6:3a:36:20:43:9b:b4:c2:84:fa:0d:
b5:80:9c:16:13:ea:26:96:17:90:37:39:9e:9b:9d:
48:1b:01:e5:16:e9:2e:98:dd:33:9b:77:c2:e1:31:
e6:b1:ad:8f:1e:aa:45:ea:d0:d7:fe:c8:12:70:cf:
36:65:09:fb:d0:ea:07:66:ec:6a:34:9a:e7:ec:9a:
f4:96:ff:1a:13:f0:a5:08:8a:9f:49:37:cc:3f:fe:
e2:66:1b:46:8d:9e:c3:6f:ff:b9:27:38:87:f9:b7:
e5:55:4b:b4:5a:ae:59:8f:a5:e5:8e:71:d1:94:72:
29:28:48:c2:7b:7a:bf:7a:d7:1d:04:25:a8:bb:a2:
77:0c:d9:6c:12:70:4f:d9:6a:6c:41:f3:e9:2f:b9:
cd:4f:07:76:94:af:b4:43:0f:73:87:d3:ab:83:3b:
d1:66:db:82:79:8d:c9:f4:2f:b7:27:17:ea:74:5f:
f5:6b:96:42:e7:7d:65:b7:7c:79:68:f7:41:5c:de:
b7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CC:00:73:66:7E:83:B5:5D:0F:86:F3:51:25:16:B3:C5:9C:6F:7B
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/iMwAc2Z-g7VdD4bzUSUWs8Wcb3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ab30::/44
Signature Algorithm: sha256WithRSAEncryption
18:56:a9:c9:4a:1d:1d:5c:e7:67:f7:02:2d:9b:26:81:e3:63:
37:5d:4f:14:70:78:9e:bb:19:67:a2:31:a0:3e:22:49:90:60:
cf:c5:57:bc:a4:3d:0b:17:a0:9c:f5:3f:c8:22:a7:2f:08:96:
64:6e:31:47:e4:61:57:01:20:a7:dd:dc:58:ef:73:ef:c3:05:
e9:73:25:e2:07:bc:e5:ac:6b:15:54:77:6d:13:34:a3:8f:be:
4c:34:94:94:2c:b6:9e:ce:6a:81:31:12:8a:62:9a:64:c6:d9:
2a:b7:d8:2c:86:56:00:c3:f1:7d:d9:d8:ca:5e:3f:fd:1c:76:
6f:d7:d1:43:21:6e:67:5a:bd:a1:e0:36:b3:a4:d3:ca:39:23:
f2:7f:cc:5c:c2:c5:d1:db:6d:e5:80:bb:8c:08:fe:31:cc:86:
6b:b4:aa:b9:ec:3a:ad:56:77:0d:e6:7d:75:09:28:59:11:44:
75:e9:81:8b:3e:ab:0f:15:28:58:55:96:c3:4c:9b:a2:b7:46:
b7:c7:b3:a3:df:bf:97:52:17:dc:ff:11:b0:31:df:e4:dd:49:
cf:25:23:99:d8:52:3a:99:a4:2d:c0:1b:14:d3:43:84:55:ee:
70:a3:0d:bd:71:8f:1d:9c:a5:fa:e1:ed:d0:62:1d:2d:52:6b:
59:a6:e9:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org