Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/S1qVN0hihqHq2NvNx9J6SvG-L9Q.roa
File: S1qVN0hihqHq2NvNx9J6SvG-L9Q.roa (raw, json)
Hash identifier: uG4XFzVUyIW56AGMGcDZOYD3b/AiCutn5Wg8ptp012w=
Subject key identifier: 4B:5A:95:37:48:62:86:A1:EA:D8:DB:CD:C7:D2:7A:4A:F1:BE:2F:D4
Certificate issuer: /CN=c6f53c03d2f4e7f07a81ea903ecef01d68c68137
Certificate serial: 018B170882A09AEAFD6D63E2FE32F6EB882A
Authority key identifier: C6:F5:3C:03:D2:F4:E7:F0:7A:81:EA:90:3E:CE:F0:1D:68:C6:81:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xvU8A9L05_B6geqQPs7wHWjGgTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/S1qVN0hihqHq2NvNx9J6SvG-L9Q.roa
Signing time: Tue 10 Oct 2023 00:41:55 +0000
ROA not before: Tue 10 Oct 2023 00:41:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216225
IP address blocks: 2a13:d8c4:40::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:17:08:82:a0:9a:ea:fd:6d:63:e2:fe:32:f6:eb:88:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6f53c03d2f4e7f07a81ea903ecef01d68c68137
Validity
Not Before: Oct 10 00:41:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b5a9537486286a1ead8dbcdc7d27a4af1be2fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1a:39:32:1e:be:9f:38:90:5b:59:8d:e1:78:
79:d6:fa:cb:53:0f:3e:32:02:d7:46:34:00:bc:a7:
3e:85:f1:0f:77:83:c5:c0:5c:51:ba:6f:46:ef:96:
92:3c:85:26:e7:ce:5a:29:db:f1:b4:fd:b5:64:9f:
62:80:79:05:a3:4f:e9:33:3b:45:0d:7f:bf:7b:9b:
1f:ec:a0:a7:7b:7a:8f:f0:e7:8a:ed:39:4c:3e:6b:
97:40:e8:b1:6a:3a:ba:f2:b6:53:ba:5a:62:8e:21:
7a:ed:6b:5f:38:7a:f0:07:e0:27:67:27:5b:6b:a0:
c0:c4:f0:80:5e:14:bc:8f:0a:68:db:21:88:9d:6b:
de:83:fa:aa:9c:6e:4a:9d:1d:ec:4d:70:0c:a6:d3:
a4:4f:a4:1f:f5:65:09:88:9c:5a:01:8b:5e:d1:f6:
07:8f:3d:11:ad:1b:c4:df:17:d8:b9:83:a0:b9:34:
62:b2:a7:81:86:dc:31:82:0c:34:fe:98:19:ff:0a:
e8:5e:24:4f:52:21:a7:02:2d:ba:1a:ea:c1:06:6b:
17:dc:6a:6b:17:af:d8:3e:c1:80:45:ef:b1:c2:45:
ec:f2:c7:99:bc:3f:58:24:e7:a4:d5:93:a5:60:76:
b0:c0:c8:2e:e5:4b:0e:40:e2:9d:4f:63:c0:6c:0b:
06:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5A:95:37:48:62:86:A1:EA:D8:DB:CD:C7:D2:7A:4A:F1:BE:2F:D4
X509v3 Authority Key Identifier:
keyid:C6:F5:3C:03:D2:F4:E7:F0:7A:81:EA:90:3E:CE:F0:1D:68:C6:81:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xvU8A9L05_B6geqQPs7wHWjGgTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/S1qVN0hihqHq2NvNx9J6SvG-L9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/3c227c-4706-4787-9a07-90ea3729c574/1/xvU8A9L05_B6geqQPs7wHWjGgTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d8c4:40::/44
Signature Algorithm: sha256WithRSAEncryption
2d:4f:79:f6:f6:5b:b2:2b:b0:2b:23:62:22:30:84:dc:12:a2:
00:bb:9a:6c:8e:67:7e:53:b7:0c:ab:87:ba:2f:03:78:79:63:
37:e7:02:0f:55:fc:ef:c6:80:de:d9:5f:29:64:c6:55:2e:85:
18:d6:03:b8:ea:68:05:58:af:7c:c7:41:49:da:02:16:43:a5:
db:f5:1b:87:ff:a2:1b:4a:e6:17:65:e6:5d:46:a7:97:ad:10:
41:5d:6f:d9:2d:85:ba:73:57:ec:fa:75:52:e1:cc:bf:00:5c:
87:cd:4f:53:aa:43:d6:06:ca:a4:86:a5:d1:d6:0d:b1:89:c9:
57:62:95:7a:eb:e5:84:23:30:14:67:9c:c5:e9:af:96:f1:af:
e8:e7:8d:3b:e3:bf:08:47:36:d0:85:db:5c:4e:79:29:d8:94:
ea:71:c1:5c:5d:6b:52:80:6e:ca:5f:64:98:9f:49:f9:54:d5:
71:dc:6a:c8:bc:a1:db:e2:b8:94:cd:16:7a:f5:78:65:0e:98:
9f:60:35:56:c2:24:90:bb:c8:dd:63:7e:53:a0:bc:63:86:8e:
04:6a:62:66:2e:fa:12:f8:ce:9f:81:e0:9f:45:e9:24:27:aa:
5b:d8:c2:5d:3b:a9:1e:af:de:e5:56:2b:27:c6:96:0a:35:a0:
ee:e5:ab:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:22 2024 by rpki-client on console-ams.rpki-client.org