Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/iuXtxrM1JxMgONRpRN2MMR2Bscc.roa
File: iuXtxrM1JxMgONRpRN2MMR2Bscc.roa (raw, json)
Hash identifier: 2u43zzyffcZeaN5HUo1y2y304yTdFVzEvP19ndNo6vw=
Subject key identifier: 8A:E5:ED:C6:B3:35:27:13:20:38:D4:69:44:DD:8C:31:1D:81:B1:C7
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA85DBED47F167A6204A41788FF4CB
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/iuXtxrM1JxMgONRpRN2MMR2Bscc.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212000
IP address blocks: 2a0f:5707:20::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:85:db:ed:47:f1:67:a6:20:4a:41:78:8f:f4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ae5edc6b33527132038d46944dd8c311d81b1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3b:3c:a7:69:5b:21:b6:9f:a9:05:ec:6e:43:
ea:48:7f:ea:81:e9:ef:2e:f1:ee:75:be:f6:fc:27:
9e:9a:1a:c1:e6:7e:9e:14:b9:f1:a7:9d:c6:f1:02:
a1:64:cd:7c:0a:be:b1:4b:af:68:26:9f:ea:0d:f7:
27:43:a1:6e:0b:08:bf:29:11:f6:89:10:d9:25:07:
d7:51:80:71:70:8c:64:3d:83:83:76:34:48:02:fd:
8d:ef:e8:e4:12:01:d6:a9:ba:e1:7c:63:1a:68:0c:
ba:54:fc:c4:94:cb:7f:89:04:c5:64:12:9e:8a:06:
e9:26:a1:72:69:1c:b3:7c:c9:83:44:fc:dc:13:46:
97:2d:75:9c:19:87:4f:d3:72:76:7c:24:b4:d8:07:
5e:c6:a4:c0:51:98:f9:3b:8b:da:23:5b:34:43:33:
31:30:44:4e:1f:a6:76:8b:eb:f2:38:64:f7:0f:1b:
48:7e:0f:90:1e:12:e8:4e:05:6d:18:9b:01:b2:76:
33:52:9e:52:5a:79:eb:fb:61:94:df:76:2b:84:55:
91:3b:58:36:b8:7d:7b:19:08:40:9b:94:20:bc:df:
69:d6:d3:09:c8:23:e7:7c:ea:02:c2:71:b3:e8:3b:
95:c0:b9:bf:9b:f7:4d:80:03:44:f3:61:3f:6a:4a:
ee:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E5:ED:C6:B3:35:27:13:20:38:D4:69:44:DD:8C:31:1D:81:B1:C7
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/iuXtxrM1JxMgONRpRN2MMR2Bscc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:20::/48
Signature Algorithm: sha256WithRSAEncryption
b4:ce:88:60:60:d3:ea:0f:e7:8d:96:af:54:98:7a:e5:47:59:
68:1c:1f:d0:df:39:23:b2:7b:aa:dd:47:31:c9:ad:a3:8c:05:
5a:60:b7:4f:57:10:6f:f2:86:41:88:f2:2d:bc:17:1c:ab:b1:
1d:b8:5d:d9:26:f1:5c:79:7c:e6:91:1c:ce:cb:27:ee:96:ad:
70:86:ba:5e:a8:a2:f8:ae:43:10:81:dc:4d:04:a6:f6:88:01:
6a:83:ff:70:94:6b:63:4c:65:cb:12:a8:97:3b:65:8d:a8:2f:
9f:b0:ef:0c:9d:70:53:46:f3:44:13:00:b3:df:b4:30:7b:6f:
2d:7d:b2:20:7d:33:ac:05:03:70:3d:4a:08:b1:c2:fe:4c:ee:
3e:3d:d2:0e:ac:50:a9:3b:6c:c8:9e:e1:46:38:01:b4:5f:53:
de:53:2f:cc:af:9f:fc:54:da:47:bc:cf:a0:65:9e:5f:58:c1:
36:f8:92:2d:5e:b4:6e:81:d3:fd:bd:02:e5:4e:72:54:57:db:
a2:c1:9b:48:60:95:e6:f6:fc:ab:10:07:6e:c3:4c:1e:5e:88:
4e:03:cf:ed:88:d6:bf:5f:5b:73:eb:ed:0c:99:79:61:c9:dc:
e4:08:36:00:9c:3f:1f:38:5d:b4:c8:7a:01:28:89:e3:8c:4d:
32:7c:5e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org