Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/4mFaGD71a8CfKpZi-ELs9HJT_f4.roa
File: 4mFaGD71a8CfKpZi-ELs9HJT_f4.roa (raw, json)
Hash identifier: Eeg6fkabEVEwf9ptRNLSaxPBrvC8s8SZ6zvA5ZV9U/8=
Subject key identifier: E2:61:5A:18:3E:F5:6B:C0:9F:2A:96:62:F8:42:EC:F4:72:53:FD:FE
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0185CA6572230BB3913DF68CF55972A12A60
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/4mFaGD71a8CfKpZi-ELs9HJT_f4.roa
Signing time: Thu 19 Jan 2023 14:18:44 +0000
ROA not before: Thu 19 Jan 2023 14:18:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133752
IP address blocks: 2a11:840:46::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ca:65:72:23:0b:b3:91:3d:f6:8c:f5:59:72:a1:2a:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jan 19 14:18:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2615a183ef56bc09f2a9662f842ecf47253fdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:56:7c:72:9a:66:fa:e3:79:c7:5d:e4:51:d3:
4c:2d:ce:96:8b:78:cd:a9:6c:56:79:1d:4b:fa:d6:
da:26:e7:74:04:a9:20:4b:a7:c4:ed:85:b2:d9:7b:
2b:20:0f:31:ca:ff:f1:42:f1:da:aa:79:ab:11:e3:
e9:e2:47:2b:34:b9:77:ad:f3:5f:e2:26:b3:16:ee:
f2:1d:28:d2:d9:79:dd:d3:ab:57:e3:8b:b9:c1:64:
96:d7:43:22:ed:5d:ae:49:bb:39:96:09:31:68:dd:
43:9b:91:df:6a:53:9b:49:f3:e8:41:9a:0d:57:03:
19:83:2e:9b:aa:9b:63:4a:eb:e5:69:1d:69:4a:54:
0b:df:0f:93:85:dd:8e:71:6f:ba:c9:b7:f2:a2:cb:
82:a3:bc:39:ca:b1:d6:36:2a:96:91:ba:b5:1d:f6:
6e:d9:c1:d0:21:ab:b4:66:57:4d:fa:65:a6:0a:1a:
46:4e:82:56:75:d3:ac:91:d8:7b:71:c5:70:ea:76:
da:a5:9f:5b:dd:14:ca:29:03:46:8e:42:7e:69:c3:
3e:bd:ee:95:2e:43:43:d7:ee:73:1a:0b:65:57:05:
64:84:73:df:fe:f7:64:97:e5:68:29:98:7a:1a:ef:
46:f5:e5:ad:cd:18:2c:41:ee:f4:dd:88:ca:2b:b2:
6e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:61:5A:18:3E:F5:6B:C0:9F:2A:96:62:F8:42:EC:F4:72:53:FD:FE
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/4mFaGD71a8CfKpZi-ELs9HJT_f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:46::/48
Signature Algorithm: sha256WithRSAEncryption
2a:46:d8:14:fc:cd:65:fd:d6:18:62:36:7f:d2:d5:14:38:0b:
1a:01:ae:60:6e:8c:6c:cd:04:db:92:93:c1:1e:f1:fd:e4:e6:
19:6b:f0:d7:bf:8e:93:48:69:44:15:e7:1e:41:e2:c4:30:4c:
c2:29:2d:5d:b1:b6:83:d3:d0:63:35:c5:d1:d7:45:fb:88:37:
0f:9f:36:a0:e1:cf:ce:cc:5a:86:79:a0:fd:cf:b4:f2:a1:26:
c1:28:ba:6b:6a:3c:e7:07:28:7e:89:0f:3e:e2:5a:4a:c8:5f:
33:e3:f0:96:50:37:a2:e4:25:4d:70:a5:72:ea:37:07:99:5f:
a8:ea:b5:7e:ac:1e:01:84:77:63:6d:92:5b:58:6d:04:80:e8:
50:58:e1:7d:55:a9:5a:94:6c:3b:db:b8:a2:0d:48:cc:15:2c:
a0:2c:ab:f5:88:a5:71:3b:ea:c1:8a:4f:0d:61:ff:1f:47:ac:
0b:60:f5:17:d9:47:05:53:53:86:fd:20:2b:e6:5d:00:66:da:
f7:8e:22:9b:92:2d:d7:92:f3:9b:0a:d4:43:82:97:95:4b:ae:
bb:07:1b:cf:9d:b2:ec:f9:6f:3d:d3:72:69:aa:66:e2:0a:ea:
74:ba:7a:72:ef:4a:df:9c:1c:b4:c7:78:b2:c5:72:4a:70:81:
bd:66:5a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org