Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/rStDikHZ6yWBYc7H7jF0e6XeZd4.roa
File: rStDikHZ6yWBYc7H7jF0e6XeZd4.roa (raw, json)
Hash identifier: kpadjOnGe8sBv947rbDRbI6gO/c7Jalvt5KLMjJUNEc=
Subject key identifier: AD:2B:43:8A:41:D9:EB:25:81:61:CE:C7:EE:31:74:7B:A5:DE:65:DE
Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Certificate serial: 018B1EEEE92DA62A34D46BF671335658C8BA
Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/rStDikHZ6yWBYc7H7jF0e6XeZd4.roa
Signing time: Wed 11 Oct 2023 13:30:55 +0000
ROA not before: Wed 11 Oct 2023 13:30:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216176
IP address blocks: 2a14::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 11 Oct 2023 14:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:ee:e9:2d:a6:2a:34:d4:6b:f6:71:33:56:58:c8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Validity
Not Before: Oct 11 13:30:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad2b438a41d9eb258161cec7ee31747ba5de65de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:1c:dc:c9:d5:d5:8e:24:8f:99:57:f6:02:
80:5c:32:60:d4:42:29:f2:39:26:1f:ee:d6:5f:cd:
ca:74:b4:24:d4:53:ac:ab:8e:2b:0a:54:cc:58:ed:
1f:1a:25:2e:a1:8f:6e:6c:38:a9:e5:a9:21:96:ca:
58:df:fa:09:9b:42:db:e0:43:ba:cf:cf:af:eb:f0:
87:ee:82:ad:5e:d7:eb:28:07:5f:1c:ba:3c:de:a9:
b3:c7:82:1e:c2:de:a8:49:3a:ce:9f:31:67:94:61:
cc:9e:f7:e3:d3:c9:97:b2:32:25:c1:39:eb:50:d2:
89:fd:14:11:86:d3:6c:b3:57:25:cb:62:d0:75:67:
28:7c:c5:64:bc:6c:2e:92:d9:7f:6c:e2:20:9f:8d:
27:7b:fe:9c:96:9d:ce:31:9a:20:e5:e0:4c:83:33:
e2:36:b8:97:da:71:54:81:59:d5:c4:97:74:9c:91:
7e:c8:14:44:e3:33:ab:50:a8:91:16:01:a7:89:a9:
f7:01:97:7d:96:79:8a:39:a1:99:de:7e:92:9d:65:
4f:69:44:e2:99:ef:bf:e2:41:9b:ce:f7:1c:34:c1:
8a:1f:1d:f4:e4:8b:bf:e7:28:da:8f:13:da:b9:3c:
ad:c7:13:23:87:4d:c1:f5:e9:3b:b0:1e:91:97:ff:
21:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:2B:43:8A:41:D9:EB:25:81:61:CE:C7:EE:31:74:7B:A5:DE:65:DE
X509v3 Authority Key Identifier:
keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/rStDikHZ6yWBYc7H7jF0e6XeZd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14::/32
Signature Algorithm: sha256WithRSAEncryption
ab:6c:54:c5:28:79:39:f8:0c:74:b1:37:fa:44:9d:c7:e6:9a:
7e:d6:f6:c0:18:fe:f9:0b:77:51:bc:88:bb:f2:44:44:50:aa:
0f:37:bd:25:34:16:0f:7a:d5:7c:47:e5:51:a2:4c:c3:84:d1:
47:ff:07:7d:dd:78:11:b7:2e:92:90:25:72:85:bd:ef:e6:8f:
11:5a:78:60:fc:27:4f:11:6c:89:1b:db:47:d7:32:05:bf:84:
58:09:0d:72:6c:b3:30:15:78:b2:ef:02:e4:a9:35:2d:b1:24:
e5:b6:82:80:c5:77:66:20:a3:d9:00:41:f0:bf:3d:74:5b:84:
0b:95:b2:7f:90:3e:0f:88:bd:92:7d:24:85:3d:c2:72:a8:2b:
e1:13:2d:85:31:81:64:3c:d5:33:e0:cf:bb:5e:60:ab:0a:29:
97:c5:ba:7f:f3:08:f4:0a:c0:9e:d3:f1:f4:22:34:82:1a:46:
e9:c0:1a:a7:87:ce:3b:b4:ca:bf:b3:ec:4b:92:cd:25:48:27:
16:91:a2:e5:9e:48:26:b2:b8:10:f6:05:e3:f4:77:69:85:92:
d1:f4:64:f1:a6:b3:a7:c2:8b:23:57:29:8d:2d:2e:1f:0b:76:
84:98:cb:3e:88:10:e2:34:63:b5:a1:03:d9:85:d6:d3:12:83:
52:7e:82:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org