Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/n7zfM-yhgCps-_iEwsmcX8xoow8.roa
File: n7zfM-yhgCps-_iEwsmcX8xoow8.roa (raw, json)
Hash identifier: wGVFTFd2sjggljjCUNIRXVUv2P5+QVFpbY4GmWW2uJQ=
Subject key identifier: 9F:BC:DF:33:EC:A1:80:2A:6C:FB:F8:84:C2:C9:9C:5F:CC:68:A3:0F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018D426D04595DC0DB5D0D16154DBD1D43F0
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/n7zfM-yhgCps-_iEwsmcX8xoow8.roa
Signing time: Thu 25 Jan 2024 21:00:57 +0000
ROA not before: Thu 25 Jan 2024 21:00:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 2a00:48a0::/29 maxlen: 48
2a0a:dd80::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jan 2024 22:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:42:6d:04:59:5d:c0:db:5d:0d:16:15:4d:bd:1d:43:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 25 21:00:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fbcdf33eca1802a6cfbf884c2c99c5fcc68a30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f2:70:b2:e6:db:69:be:77:cf:3f:05:a1:0b:
df:f0:12:96:88:ab:e2:0e:6e:1e:fe:dc:53:c5:84:
16:bc:f0:7d:80:6a:7b:69:1c:e3:cc:85:c2:a7:b8:
20:f3:e9:4f:1b:62:ba:fd:e6:5b:82:18:20:90:ee:
4a:2d:d9:25:8a:ca:a3:d8:95:52:98:2b:5c:e6:6c:
19:6d:c9:b4:41:b8:02:ca:ef:70:e5:9d:4d:2b:6d:
2d:bd:d3:14:a2:51:c7:07:e9:26:9f:a4:2d:9b:46:
7b:24:25:c5:7a:b1:f1:37:79:31:15:57:a8:81:35:
95:ec:27:b8:d7:13:99:68:c9:a0:5e:46:91:27:7d:
be:dc:b9:03:65:f8:df:ee:01:90:7f:c7:6f:1e:da:
2a:de:c6:e3:40:32:7b:3f:a8:33:5e:f4:51:8f:05:
b0:fa:d9:3b:6e:a3:6c:f8:a6:f3:03:d0:40:6e:fc:
46:eb:3d:7b:55:79:85:26:c0:5d:a8:d4:d5:58:e6:
7c:92:4f:f7:68:69:ec:08:9a:96:fb:2d:95:8e:bf:
5a:ca:dc:6c:95:a2:14:56:24:c7:8f:0c:2b:81:0b:
0e:f4:10:f7:2c:3f:50:b5:d3:cb:2e:61:35:10:40:
be:1f:b0:e3:23:c4:21:ae:12:f3:79:ff:78:42:6b:
06:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BC:DF:33:EC:A1:80:2A:6C:FB:F8:84:C2:C9:9C:5F:CC:68:A3:0F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/n7zfM-yhgCps-_iEwsmcX8xoow8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:48a0::/29
2a0a:dd80::/29
Signature Algorithm: sha256WithRSAEncryption
75:fc:6b:6b:38:7b:60:32:60:e0:62:a5:38:2e:5f:ca:96:18:
54:e8:45:cc:f5:64:cb:b2:31:0a:c2:84:b1:1d:e3:69:4f:d8:
b1:6d:28:86:99:31:6d:79:c1:7b:e8:93:d3:1b:d1:8d:ac:cb:
6b:1a:6e:ee:88:05:cf:a6:5b:4a:70:75:db:73:1b:d5:2e:c3:
5d:66:bc:44:84:5f:6a:97:0e:7c:47:5b:b8:e6:62:f9:1b:c1:
c2:2c:03:6e:25:f5:f4:5d:8f:ec:f7:78:2a:7c:58:3e:32:05:
8a:4e:c2:e6:98:d3:fa:4a:86:6e:9e:14:0e:11:7b:b7:af:11:
69:af:9b:00:82:17:2d:10:f3:4e:0c:d8:f0:3a:07:3e:b3:c9:
b0:b7:79:be:b6:bf:af:f1:ef:3a:fa:3c:9d:01:e8:50:38:0b:
11:74:f7:32:fc:ee:5d:4a:c7:7b:b0:18:ed:bb:38:72:be:dc:
cc:20:5e:af:63:ab:3b:53:58:b4:4b:ad:01:f0:c2:9e:34:f9:
68:57:c6:f4:6c:98:08:87:9f:6c:58:db:dc:0b:a2:f8:09:09:
ed:c4:7e:a5:f7:76:8c:46:d2:12:dd:2e:95:13:bd:27:e9:e6:
16:77:17:27:32:47:29:d6:ad:93:6d:d4:93:a7:ab:cf:4f:88:
15:63:3f:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 26 01:41:52 2024 by rpki-client on console-fra.rpki-client.org