Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/sLFjnmZavxK2NGDPhvATmObTgRs.roa
File: sLFjnmZavxK2NGDPhvATmObTgRs.roa (raw, json)
Hash identifier: uMGTPh0gFn9yMqzrqrCsWzyCmVejbxlG8k7jyXnml7g=
Subject key identifier: B0:B1:63:9E:66:5A:BF:12:B6:34:60:CF:86:F0:13:98:E6:D3:81:1B
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA796EDA85B84110747EF4DC488C82
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/sLFjnmZavxK2NGDPhvATmObTgRs.roa
Signing time: Mon 02 Jan 2023 13:45:01 +0000
ROA not before: Mon 02 Jan 2023 13:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207306
IP address blocks: 2a0f:5707:aa30::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:79:6e:da:85:b8:41:10:74:7e:f4:dc:48:8c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0b1639e665abf12b63460cf86f01398e6d3811b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:8a:28:ae:2b:a5:27:65:67:8d:a3:b4:42:
a8:1d:cf:ef:85:5f:1e:1a:6a:b6:3e:9c:22:8e:15:
3b:ad:25:36:f5:56:0c:47:c8:12:9a:5b:ac:c4:1e:
f4:65:28:bd:df:49:33:80:f4:07:02:b0:fb:82:3c:
46:3e:42:74:2f:7c:1a:11:15:b6:e3:13:83:c9:67:
4f:ad:81:b3:82:3f:4c:79:4d:8f:ae:09:2f:08:89:
b1:ae:e7:01:34:0f:1c:f0:dd:95:7b:46:48:8d:6b:
0c:09:b6:ca:8b:82:51:70:5f:9c:a5:f8:7c:c1:ef:
23:75:65:ee:79:e5:92:38:db:b7:75:09:ed:c2:96:
f4:13:8a:c0:c8:35:28:03:78:71:d5:73:fd:ee:7d:
78:f9:94:0d:96:da:9c:a7:13:61:b6:1f:51:5a:d2:
45:b8:ae:98:f2:88:f5:4b:3d:53:6f:ba:71:00:3b:
45:2d:34:d1:28:35:3c:01:b5:d0:b0:a4:76:2e:35:
8c:91:40:f5:b8:f1:18:cf:2d:2c:f4:be:ff:21:cb:
97:f1:6d:cb:a5:c7:2c:02:49:d6:a5:7e:1e:fe:3d:
0f:e6:b6:76:cd:52:1d:5e:10:aa:5d:05:ed:03:f4:
dd:d0:fe:31:31:af:e5:f4:54:7e:04:b4:bf:59:a7:
d5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B1:63:9E:66:5A:BF:12:B6:34:60:CF:86:F0:13:98:E6:D3:81:1B
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/sLFjnmZavxK2NGDPhvATmObTgRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa30::/44
Signature Algorithm: sha256WithRSAEncryption
95:e2:75:a9:60:97:98:f3:db:84:3f:d1:72:b8:3a:63:a2:2b:
75:b6:59:de:4a:ba:30:a2:86:7f:04:51:3e:19:7e:1c:da:77:
29:23:16:43:35:b7:1c:a5:1f:9a:34:12:db:d5:b3:1f:48:19:
6e:6f:ce:51:f4:57:95:dd:11:2b:f5:c8:30:02:6c:83:17:ea:
e2:9a:98:d9:3a:ac:54:0d:3c:6e:fb:46:ce:18:b9:6a:7d:8d:
ed:b9:d1:31:fd:95:0e:ec:4e:be:be:a0:d8:23:f8:23:cd:fd:
ce:81:68:86:a5:19:7f:ff:6e:db:bf:e3:65:90:df:d0:9b:c4:
81:1e:73:10:26:91:31:20:c3:0a:a2:a8:27:1e:d5:e1:89:6f:
e3:7a:1e:3c:ec:12:04:ba:7f:5f:3a:39:52:89:f9:2b:6a:e5:
56:18:b2:48:cf:c4:36:da:f6:9c:8e:d2:5b:e9:5d:17:04:75:
26:ed:c6:fa:3d:78:b6:d4:fe:b1:ee:2b:d6:68:36:0a:bc:e3:
02:ab:3d:29:75:33:55:88:f1:68:8e:a4:aa:7c:9b:9e:75:40:
ff:d0:45:71:e8:4c:92:9d:cf:7f:63:4a:1a:f2:eb:d9:9d:92:
b2:e6:c3:5f:73:6e:c2:f2:2e:db:cd:6d:70:ec:86:4a:36:16:
25:1f:03:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org