Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/_4_s2Z5BQAGsi2GThWXe9FIhpOg.roa
File: _4_s2Z5BQAGsi2GThWXe9FIhpOg.roa (raw, json)
Hash identifier: 9ve0bcB9sWSGjO5+vb/fmlAw4QwRhpSNpY12Es4VOSA=
Subject key identifier: FF:8F:EC:D9:9E:41:40:01:AC:8B:61:93:85:65:DE:F4:52:21:A4:E8
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 018571C30280471E292B819917961813EBEC
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/_4_s2Z5BQAGsi2GThWXe9FIhpOg.roa
Signing time: Mon 02 Jan 2023 09:14:43 +0000
ROA not before: Mon 02 Jan 2023 09:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206264
IP address blocks: 2a00:1ca8:2c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:02:80:47:1e:29:2b:81:99:17:96:18:13:eb:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Jan 2 09:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff8fecd99e414001ac8b61938565def45221a4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b6:80:78:49:14:d2:c4:bf:66:43:88:22:02:
d2:2f:ad:65:f4:f4:68:29:d8:fb:7b:1c:fc:53:b6:
38:a4:ae:56:75:c9:9c:c4:a1:51:b2:d0:bc:6e:19:
46:3d:b8:f1:c2:82:95:fb:4f:ea:b3:59:13:7b:2b:
bf:81:f4:1e:54:0d:90:11:56:93:f5:1d:ff:dd:42:
f0:1a:0b:65:fb:55:90:a4:13:d9:28:bb:32:c5:d3:
a2:ea:69:de:51:d9:52:96:ae:31:43:d2:f7:ba:2a:
6a:00:19:9c:83:eb:24:b4:2d:2f:0a:2c:da:9e:f0:
21:9b:66:b1:23:3c:e3:e0:7c:c5:2f:d4:f8:bd:83:
5b:6a:38:ca:a8:86:e5:bd:e5:79:6c:fa:be:cf:02:
a2:27:c5:94:58:8d:38:56:58:cc:e5:7b:19:6d:5c:
5d:17:39:0c:84:83:e8:57:e8:7e:21:7b:0c:4c:46:
99:54:9c:62:81:80:b5:50:1a:2f:5f:1c:9d:40:e0:
76:5b:67:95:1e:ed:18:3b:b6:07:6c:28:05:a0:ac:
87:28:61:46:d3:dc:8f:3a:eb:a5:ab:7c:19:42:db:
72:00:92:a4:0a:dd:f6:4b:dc:1c:07:d7:ee:ee:37:
21:4a:93:40:cb:ac:a7:5c:80:c3:c5:49:03:f8:ca:
8a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8F:EC:D9:9E:41:40:01:AC:8B:61:93:85:65:DE:F4:52:21:A4:E8
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/_4_s2Z5BQAGsi2GThWXe9FIhpOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1ca8:2c::/48
Signature Algorithm: sha256WithRSAEncryption
75:9a:19:42:e6:7a:96:e2:42:be:c0:dd:fa:c9:cb:29:fe:a9:
96:71:13:93:63:72:7d:72:0d:16:9a:a5:d1:da:26:39:df:ef:
69:98:d7:c5:5f:68:b8:e6:54:bd:07:25:81:a8:e9:ee:71:40:
c1:a3:2d:e2:c2:3b:4c:7a:b2:8f:cf:1e:f5:7f:05:8e:68:df:
1a:ed:df:28:5b:a1:db:d5:2d:7f:c9:6a:5d:3e:b4:d1:bc:50:
47:6b:e2:63:8f:ac:a7:1c:63:eb:1e:16:54:df:a9:f4:c4:1a:
33:a5:a7:55:4f:b7:f5:ab:d7:db:ed:a9:64:fa:ce:fb:ce:94:
53:f3:40:83:74:b5:4c:c4:b3:f2:4e:d2:e6:76:ae:e4:99:07:
c5:e1:bd:bf:9d:ba:92:b8:7b:8f:d6:38:fb:40:12:a3:ba:54:
9f:54:17:9b:b2:1d:7f:25:4d:7c:c6:19:a1:9c:23:b3:8b:50:
8d:d8:fc:79:97:77:5b:de:5d:7d:1c:33:c4:99:9b:a0:01:de:
92:5f:2f:3d:9d:3a:9e:85:87:17:ac:c0:ec:c3:4a:f1:9b:f6:
e5:c4:98:bf:bc:bf:c4:ab:c4:42:a0:74:00:f5:a4:67:bf:30:
83:67:95:99:21:83:0f:05:63:80:24:15:12:c2:a1:25:e3:77:
24:61:d2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:26 2024 by rpki-client on console-ams.rpki-client.org