Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/_-d7Y7anr7PoBHsHZgCBeSfM4Hg.roa
File: _-d7Y7anr7PoBHsHZgCBeSfM4Hg.roa (raw, json)
Hash identifier: lipLdK5B6StLxMyeZEMtTFtaGqFdzzcA7CH2QLy4VnI=
Subject key identifier: FF:E7:7B:63:B6:A7:AF:B3:E8:04:7B:07:66:00:81:79:27:CC:E0:78
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 018B90284180866E10A377761420EF7E9F35
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/_-d7Y7anr7PoBHsHZgCBeSfM4Hg.roa
Signing time: Thu 02 Nov 2023 13:10:39 +0000
ROA not before: Thu 02 Nov 2023 13:10:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44947
IP address blocks: 2a13:3cc0::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:90:28:41:80:86:6e:10:a3:77:76:14:20:ef:7e:9f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Nov 2 13:10:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffe77b63b6a7afb3e8047b076600817927cce078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ab:a3:22:44:b6:d6:c9:a1:85:b3:96:01:41:
f8:fc:77:ed:d4:f1:e0:13:62:a1:c4:fd:b2:31:94:
38:6e:59:ec:64:92:22:83:0b:cb:d6:1c:fe:63:7c:
5a:d2:fc:4b:79:f8:2a:7c:eb:3c:12:fe:aa:8d:6b:
81:c5:04:f4:55:ee:e1:e7:30:97:3e:32:99:7f:98:
2f:ec:8b:89:29:c6:03:96:60:f5:4d:ba:9f:e5:81:
a0:52:58:36:52:a0:86:04:d6:0d:2a:0b:7a:dc:0b:
4a:ab:22:27:94:92:ab:11:55:80:f6:45:a2:46:cb:
0e:eb:d5:de:c9:77:89:19:7c:04:22:6d:ce:e6:45:
93:55:dc:5e:73:b5:98:91:90:91:bd:4d:3d:32:91:
88:79:9e:d9:d7:8c:de:8d:29:ce:b0:d8:a5:11:b1:
81:86:98:6e:02:32:b5:61:d2:77:bf:19:62:50:c9:
d6:f9:3a:27:7b:30:86:1a:92:79:ac:22:98:1f:97:
e4:f5:8b:fe:9b:ed:eb:ec:d2:01:86:43:ca:dc:b9:
9d:76:ed:df:db:78:28:4e:8a:1c:28:f4:f5:6b:03:
7f:21:74:f0:a6:5b:d7:ec:e9:f9:eb:86:6d:63:82:
a0:82:ad:b3:ae:dc:aa:af:a7:4f:df:fc:56:ba:5d:
3b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E7:7B:63:B6:A7:AF:B3:E8:04:7B:07:66:00:81:79:27:CC:E0:78
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/_-d7Y7anr7PoBHsHZgCBeSfM4Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3cc0::/30
Signature Algorithm: sha256WithRSAEncryption
a4:5f:4b:8e:93:cd:14:a9:e9:33:9f:fa:27:8d:99:69:82:a7:
b7:10:45:5a:29:43:34:fb:93:e9:25:84:74:59:17:78:a7:cc:
d8:c9:49:4f:cc:29:67:31:0d:24:44:b9:1c:f2:3d:61:18:f8:
37:f1:d3:f9:a8:27:71:18:ec:5e:86:ed:05:5b:45:44:ea:4e:
ec:67:73:64:5b:83:65:81:91:7e:a6:aa:7c:30:d8:e4:3f:f3:
91:64:33:aa:88:b4:b1:3d:03:0a:e6:58:1f:4f:43:90:2e:c0:
80:2d:35:3e:ac:4b:d4:2f:1d:28:e9:f3:a6:88:f4:c4:b2:ba:
0b:43:cf:ef:1a:c0:0b:55:69:43:aa:8e:3b:36:ed:eb:82:6e:
fd:b8:8a:ea:b9:5d:81:5f:ff:06:09:98:4d:8d:8e:12:7e:83:
4a:c3:48:a2:b1:b3:bf:3b:8f:24:c7:40:a0:75:8f:e2:c4:d2:
0a:5d:b0:48:ca:11:84:03:a6:01:c2:f0:b4:b0:f0:da:bf:a8:
cf:0c:aa:74:d2:e8:c4:0b:42:46:11:e1:bc:20:18:05:d5:11:
2c:67:ed:2a:2b:bc:96:44:40:9d:fa:11:c4:d2:8d:63:f1:14:
7b:9a:7c:3c:63:76:f0:5c:6e:ff:7d:86:75:b5:0c:1b:6c:b8:
42:3a:07:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:24 2024 by rpki-client on console-ams.rpki-client.org