Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/sht1Ud1k9o7wPr_siZbJDE6vTyw.roa
File: sht1Ud1k9o7wPr_siZbJDE6vTyw.roa (raw, json)
Hash identifier: 4tcMp3x3i8gz8IoEp6Mqsd+j4Isxu31VBpzZS2smuSs=
Subject key identifier: B2:1B:75:51:DD:64:F6:8E:F0:3E:BF:EC:89:96:C9:0C:4E:AF:4F:2C
Certificate issuer: /CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Certificate serial: 01856FF01A296DBB1EF9FD0160EA465A0BDA
Authority key identifier: 32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/sht1Ud1k9o7wPr_siZbJDE6vTyw.roa
Signing time: Mon 02 Jan 2023 00:44:44 +0000
ROA not before: Mon 02 Jan 2023 00:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36268
IP address blocks: 2a09:b280:ff90::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:1a:29:6d:bb:1e:f9:fd:01:60:ea:46:5a:0b:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Validity
Not Before: Jan 2 00:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b21b7551dd64f68ef03ebfec8996c90c4eaf4f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b0:62:4a:00:18:d7:9e:f6:6a:9b:35:db:12:
4d:9a:13:19:02:3c:ad:eb:64:75:5f:16:42:ad:f1:
b3:22:f5:b9:21:a9:2c:d4:e2:80:10:ac:2a:f3:d2:
09:a1:b4:b1:05:2d:95:4b:11:0f:35:45:8f:af:70:
3d:6f:6d:17:19:3c:5d:b2:8b:74:15:bd:fb:f0:c5:
ed:c5:05:c5:65:2c:e0:3a:bb:f8:8c:04:c6:1d:da:
d9:10:c9:52:2f:b3:a6:e3:9e:db:1c:e7:dd:db:69:
93:ab:73:63:04:95:54:6f:36:c8:46:f2:12:95:46:
22:b2:30:cd:24:49:81:8a:2e:15:67:4f:dc:0d:b0:
45:d2:b6:e2:41:d5:8a:fd:26:9f:20:54:4d:77:60:
a1:d5:a5:48:de:2f:46:76:fb:c7:4a:9b:e1:0b:4f:
45:d0:2a:55:a2:f6:45:6d:d6:56:d8:b0:e3:41:39:
ba:26:b7:e5:e9:73:60:74:c5:97:45:90:a4:21:06:
ba:62:57:62:cb:1f:13:09:ea:8e:8c:d2:f0:2d:0d:
fd:7a:87:4e:47:78:f4:c3:70:98:b8:57:53:75:05:
f8:40:4e:c1:6d:9a:3d:f4:98:8f:7e:ea:81:3b:50:
8e:16:ea:fa:84:96:97:3d:2f:b6:bc:63:dc:d2:66:
bd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1B:75:51:DD:64:F6:8E:F0:3E:BF:EC:89:96:C9:0C:4E:AF:4F:2C
X509v3 Authority Key Identifier:
keyid:32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/sht1Ud1k9o7wPr_siZbJDE6vTyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/MlCPt4HKbb2CIfLC-VSjp0RrK0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:b280:ff90::/44
Signature Algorithm: sha256WithRSAEncryption
26:e5:c6:48:6d:24:ed:b0:e5:bb:0b:a1:cc:9e:2a:97:3a:9c:
71:cc:7b:e2:85:7b:41:76:3d:92:67:92:75:e2:20:7e:56:c4:
cd:9a:9b:ad:bf:b9:29:d6:2f:cd:1c:d3:0c:ab:34:0f:18:22:
c8:f0:0b:6f:67:59:cc:20:d0:9f:78:2b:de:f8:a6:ba:af:1d:
3b:b2:bf:7c:86:60:1c:4c:40:25:e8:40:83:d3:c4:61:58:4b:
18:c7:13:15:49:4f:20:27:8f:bf:bb:c0:64:5d:37:c9:89:be:
be:48:69:75:03:bb:0d:41:ba:66:1c:36:ca:34:79:7d:e7:ad:
6f:27:d1:b8:01:c0:d6:bf:ca:8b:09:e5:43:d5:14:42:1d:5a:
10:47:21:27:9f:f9:cd:a3:ae:03:18:8a:c5:1d:4f:e7:40:6d:
a6:94:1c:a0:8a:74:08:c2:ff:a0:b8:d4:0a:4d:2a:54:b8:ef:
46:cd:62:dc:34:35:9d:53:4e:f3:ab:25:fd:7a:9b:79:66:d0:
94:4f:07:2d:1a:01:ec:5f:2d:07:ed:6d:ac:23:4c:88:4d:dc:
c4:01:44:32:77:79:f3:88:0f:53:2e:91:8f:31:82:cf:e1:49:
19:cf:62:d6:d7:48:aa:eb:8b:02:65:ff:8f:55:e5:3e:bd:98:
fd:36:53:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:24 2024 by rpki-client on console-fra.rpki-client.org