Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4r6m2IYF3QTxv-i60jPJDaK6sqQ.roa
File: 4r6m2IYF3QTxv-i60jPJDaK6sqQ.roa (raw, json)
Hash identifier: m13xeaTsRFJ39AYFEwyWHi5spx6sBtc2305cZKbCFkw=
Subject key identifier: E2:BE:A6:D8:86:05:DD:04:F1:BF:E8:BA:D2:33:C9:0D:A2:BA:B2:A4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018E0D9F82EE30B44C87AF0AE4B30ECF2322
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4r6m2IYF3QTxv-i60jPJDaK6sqQ.roa
Signing time: Tue 05 Mar 2024 07:59:01 +0000
ROA not before: Tue 05 Mar 2024 07:59:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 2a07:7880::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 05 Apr 2024 06:27:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0d:9f:82:ee:30:b4:4c:87:af:0a:e4:b3:0e:cf:23:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 5 07:59:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2bea6d88605dd04f1bfe8bad233c90da2bab2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2c:3a:1e:ba:de:92:30:68:dc:e9:c6:9a:03:
0d:4a:90:16:dd:9c:a6:21:be:20:b7:0a:6e:08:c4:
8f:ed:61:8a:20:bf:14:9a:d2:5f:a2:2c:13:7d:12:
cc:c7:65:a4:c0:c2:7a:76:32:a7:66:9d:75:66:94:
83:15:b9:d4:b9:a6:76:9c:82:1f:73:87:02:e3:d0:
ef:dd:bb:e2:a2:4a:f3:f9:3f:db:7c:a3:4a:5c:0b:
81:38:37:86:07:5b:0d:c0:fd:cf:9a:6b:b1:1d:39:
aa:41:2d:c6:30:75:88:99:d5:27:59:9a:cf:75:1b:
6c:b7:f7:1b:a2:44:06:3b:1a:68:50:76:05:78:71:
fa:28:39:30:48:e1:8f:40:d2:b7:9a:69:aa:f4:81:
62:1e:de:92:71:b4:62:bb:58:ac:60:5d:ef:f8:04:
32:21:f7:e8:63:7b:3f:20:37:33:dc:53:b2:f8:de:
1a:b7:bc:30:c7:c9:03:08:f0:c2:6b:a6:ff:55:1b:
61:5a:ae:8c:4b:d9:2c:43:84:1a:88:69:a0:77:36:
46:10:86:53:b8:10:bf:38:05:b1:21:8d:73:e0:b3:
d1:9d:47:a8:06:86:31:fb:9a:2d:59:14:7b:2d:df:
1a:03:bd:49:bf:91:e3:67:2b:e5:c0:54:5c:56:6d:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BE:A6:D8:86:05:DD:04:F1:BF:E8:BA:D2:33:C9:0D:A2:BA:B2:A4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4r6m2IYF3QTxv-i60jPJDaK6sqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:7880::/29
Signature Algorithm: sha256WithRSAEncryption
c3:dc:aa:a4:8a:c2:34:79:e6:a5:82:7b:22:e5:42:f1:4a:98:
e8:60:6a:8b:07:02:38:cb:d9:9c:9e:76:b8:7f:6e:5e:6c:c9:
63:3d:0b:2b:46:bf:76:de:5c:44:01:00:b9:71:90:7c:98:94:
95:28:22:f1:84:63:68:24:d5:5c:91:c1:a7:4c:2d:01:8b:f8:
be:11:e3:a0:fa:07:1c:79:6a:2c:21:1a:d5:d5:08:60:d0:ed:
e5:55:24:ba:b5:3d:8f:41:31:4b:4c:4a:b5:36:6f:bb:9c:c6:
90:02:59:97:5d:f1:49:40:68:93:e2:64:c5:39:a3:17:76:63:
a0:fd:f4:d5:22:32:10:c8:db:28:24:d8:5b:19:10:a7:25:6f:
cc:5d:1d:02:8c:45:a6:ca:dc:f6:c0:71:59:74:09:75:c3:56:
89:ed:0a:b9:45:cc:99:c4:cb:dc:7a:2e:f4:69:4e:03:61:ec:
4e:9f:d6:44:5b:a2:cb:60:41:42:4c:a2:4a:24:79:ca:d8:69:
52:42:f2:44:5d:1f:0d:e8:46:1e:86:59:a1:0e:53:b4:46:f8:
1c:0f:83:0f:18:31:98:b0:41:f3:bd:f3:5e:6b:55:8b:4f:0f:
3c:b2:b7:eb:f3:2e:8e:ec:94:99:fb:79:5f:fc:a4:38:69:6e:
42:5c:3d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 5 10:11:10 2024 by rpki-client on console-ams.rpki-client.org