Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/w3c2hBNwrRdfm68fsczO_S5E01o.roa
File: w3c2hBNwrRdfm68fsczO_S5E01o.roa (raw, json)
Hash identifier: 1d9UksuRPZnLJNfOWHcRr2F3tn3hBWwJU8yy7P0LT4E=
Subject key identifier: C3:77:36:84:13:70:AD:17:5F:9B:AF:1F:B1:CC:CE:FD:2E:44:D3:5A
Certificate issuer: /CN=9ef19871b1759f3237012e4b6dbb6c2fd2be8b4b
Certificate serial: 01856EB9038A47288C3B19978556A2648B57
Authority key identifier: 9E:F1:98:71:B1:75:9F:32:37:01:2E:4B:6D:BB:6C:2F:D2:BE:8B:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvGYcbF1nzI3AS5LbbtsL9K-i0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/w3c2hBNwrRdfm68fsczO_S5E01o.roa
Signing time: Sun 01 Jan 2023 19:04:56 +0000
ROA not before: Sun 01 Jan 2023 19:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213152
IP address blocks: 2a0f:b480::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:03:8a:47:28:8c:3b:19:97:85:56:a2:64:8b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ef19871b1759f3237012e4b6dbb6c2fd2be8b4b
Validity
Not Before: Jan 1 19:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c37736841370ad175f9baf1fb1cccefd2e44d35a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:06:af:84:4e:fa:4d:17:5d:28:9e:76:01:0b:
55:e9:42:05:02:0b:ed:f1:5f:e4:57:bc:20:bf:b1:
20:e2:16:5a:c8:b3:86:1d:ed:30:33:4b:4b:4a:54:
aa:38:5e:38:28:37:0d:77:5a:66:90:fa:b6:81:f0:
7d:9e:22:b2:ab:eb:41:e1:8c:20:e0:d3:ae:65:ea:
5c:f1:cc:1a:26:1e:d7:e2:1c:c7:fb:63:91:21:1c:
a1:1c:0f:49:b4:95:df:a4:57:2a:bd:86:37:4b:e9:
0c:53:fa:68:aa:f5:fd:0a:6a:b8:87:2e:ed:be:a8:
f3:6a:25:ab:94:29:d4:8a:e0:bf:7e:eb:ea:91:4f:
4b:99:62:2e:a4:89:7d:b9:f1:01:55:8f:8f:71:b0:
e8:a7:c6:03:e8:e8:68:2e:05:4c:f6:ef:80:35:e6:
c3:9e:6a:bb:f0:0d:03:b8:9b:e2:62:5d:35:88:db:
e8:26:e3:0e:fe:0a:48:31:d5:c6:95:b0:04:7c:74:
ef:94:29:b2:52:10:c3:fa:bd:ce:7f:4d:45:d6:c1:
f7:f7:a5:f9:7e:36:92:91:3e:7e:d7:7c:26:9d:10:
44:e3:34:80:82:e2:c6:ba:2a:88:e2:20:8f:6f:16:
58:4f:c3:4d:61:a0:22:f5:0d:95:24:16:3d:44:06:
04:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:77:36:84:13:70:AD:17:5F:9B:AF:1F:B1:CC:CE:FD:2E:44:D3:5A
X509v3 Authority Key Identifier:
keyid:9E:F1:98:71:B1:75:9F:32:37:01:2E:4B:6D:BB:6C:2F:D2:BE:8B:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvGYcbF1nzI3AS5LbbtsL9K-i0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/w3c2hBNwrRdfm68fsczO_S5E01o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/nvGYcbF1nzI3AS5LbbtsL9K-i0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b480::/29
Signature Algorithm: sha256WithRSAEncryption
7f:2e:e1:d7:c3:4a:cd:61:23:db:00:f1:f2:b8:aa:4e:b6:a4:
3e:49:25:e4:8b:3d:b4:74:31:7e:d8:d4:df:9f:59:7a:7d:5b:
b4:fc:58:d7:3f:88:48:8d:5f:6a:c0:73:b9:ad:3f:4b:95:f8:
bf:a0:c8:a8:5b:a6:1f:0b:a0:39:24:7e:05:91:35:cb:64:1b:
39:92:6e:55:96:d2:33:9c:b0:84:1f:d9:66:15:2d:eb:fb:f1:
04:35:e1:99:85:52:20:d2:2a:a2:d5:ec:d0:a9:c8:f0:96:be:
58:c5:93:c6:ef:e7:e9:8e:3a:49:38:68:67:c7:a4:7d:39:72:
5a:86:f1:f4:8e:df:4c:2c:ca:05:ee:ff:28:0e:2d:84:3a:56:
ad:41:f8:9d:32:f0:d7:f5:d1:96:0a:d7:98:ab:da:cf:ec:b1:
d1:aa:36:f0:69:98:eb:fe:1f:6e:72:a8:9e:57:f9:bb:d0:dc:
be:ab:7c:69:27:f8:ad:af:fe:95:1d:ac:24:01:82:37:18:b5:
9b:2b:9c:8f:fb:40:66:1a:07:11:13:6e:68:c2:9a:c1:c9:a8:
01:f8:c9:73:c7:83:be:6b:df:f8:f1:be:05:de:fd:79:90:e3:
82:2b:9d:d9:a8:14:bb:a1:26:26:ff:db:bc:ed:e5:59:90:5b:
ef:68:f3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:31 2024 by rpki-client on console-ams.rpki-client.org