Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/HToj3HLsYtM7kISc3QoYPXyR4hk.roa
File: HToj3HLsYtM7kISc3QoYPXyR4hk.roa (raw, json)
Hash identifier: XVpAiZvnzg1q5Snv04CHgUc8OcF23jISs3TQ82C50Jo=
Subject key identifier: 1D:3A:23:DC:72:EC:62:D3:3B:90:84:9C:DD:0A:18:3D:7C:91:E2:19
Certificate issuer: /CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Certificate serial: 018EDD51C3F130FC66B67FB334373FDC48EF
Authority key identifier: 99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/HToj3HLsYtM7kISc3QoYPXyR4hk.roa
Signing time: Sun 14 Apr 2024 15:55:07 +0000
ROA not before: Sun 14 Apr 2024 15:55:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 2a07:5900::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Apr 2024 13:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:dd:51:c3:f1:30:fc:66:b6:7f:b3:34:37:3f:dc:48:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Validity
Not Before: Apr 14 15:55:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d3a23dc72ec62d33b90849cdd0a183d7c91e219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:60:d8:99:0c:56:9e:70:7c:c4:f3:66:b1:a7:
15:12:d7:4c:b2:74:a0:0b:42:17:2d:a5:32:c7:cc:
2e:89:9a:45:ac:90:f0:e0:58:2f:9e:24:75:c1:77:
76:7e:f3:fd:cb:ec:8e:f7:d6:57:0a:eb:84:e9:a7:
b5:c0:49:cd:67:9b:b6:22:9f:e9:ee:b4:a3:12:6a:
20:54:95:4a:cd:84:ee:58:d9:d9:e3:6b:c5:53:7c:
20:b2:3f:b5:c7:6c:a5:de:ab:fa:3c:14:e7:9a:b2:
90:4f:04:f4:01:3f:66:0e:32:5b:8a:0f:f5:5c:64:
de:32:04:53:e2:47:b1:9d:85:e1:4b:32:f4:89:82:
e0:c4:a3:ef:f1:fa:cb:05:3d:cd:18:84:62:24:70:
de:77:78:d5:67:4f:26:48:7d:2c:bc:26:16:96:dd:
25:ac:a1:c5:db:d1:5f:0c:f9:b5:bf:35:8e:db:2c:
13:b8:ca:0b:1a:a9:71:cd:d6:d1:0f:61:90:fc:00:
d8:f5:be:f4:88:9e:35:98:b2:0a:a8:d2:e7:18:fd:
5f:5f:02:bf:29:14:d5:c0:7f:63:e9:c6:aa:cd:d6:
3d:04:0d:d1:e1:ed:fc:2e:82:45:32:e2:f1:8f:23:
4a:71:0f:d5:c6:39:a8:4d:4e:28:d9:1d:c8:7a:51:
f9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3A:23:DC:72:EC:62:D3:3B:90:84:9C:DD:0A:18:3D:7C:91:E2:19
X509v3 Authority Key Identifier:
keyid:99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/HToj3HLsYtM7kISc3QoYPXyR4hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:5900::/32
Signature Algorithm: sha256WithRSAEncryption
15:d5:9f:ff:71:8b:91:f7:9f:d3:f1:4a:fc:19:02:b5:a6:38:
30:f6:3f:58:4a:0b:61:89:9b:62:80:c0:64:db:1a:15:fd:b5:
0b:3d:eb:7c:b2:2c:f7:f7:b1:d7:38:08:30:44:5e:8e:4f:ad:
2c:3c:bf:c2:bd:4d:d6:8a:1f:5f:43:f6:6f:37:f0:9a:97:8e:
3e:7c:c4:69:4e:4e:56:54:4d:4c:c7:b4:0d:82:b2:a4:71:95:
f8:0b:b6:d5:5f:bd:4a:c9:58:c5:34:f0:26:c8:e0:fc:3d:58:
07:a4:2f:55:16:ed:b0:df:de:e2:c2:61:3f:ea:88:6f:87:a3:
57:2c:02:6a:ce:50:e9:cb:39:d2:3d:e9:8a:7e:9d:41:c1:9b:
2a:04:3c:b9:0a:d6:fe:5f:51:0c:85:18:23:70:f7:91:e9:7f:
18:e1:5e:27:cb:d7:62:02:7a:b8:bc:52:1a:71:ae:55:84:e3:
f8:ca:11:a7:e7:01:e3:ae:7b:60:29:fe:05:1b:cb:51:f6:1d:
a5:7c:be:18:bb:5d:ff:20:6e:5d:ce:f9:7e:9e:2c:4e:53:73:
37:01:9e:41:55:fb:11:0b:81:4a:af:a2:2b:ce:03:99:90:08:
31:3d:77:dc:a3:28:4f:49:0b:70:aa:d1:f0:9c:00:e4:fa:d8:
3d:5a:4a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 15:34:52 2024 by rpki-client on console-fra.rpki-client.org