Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/S1lcQbjm_7rN_-Du6Rv638o4n70.roa
File: S1lcQbjm_7rN_-Du6Rv638o4n70.roa (raw, json)
Hash identifier: 5Qbj9q0Ni2VTfgYEUgK3HFTaBOvUMgV5/nTcODjtMtw=
Subject key identifier: 4B:59:5C:41:B8:E6:FF:BA:CD:FF:E0:EE:E9:1B:FA:DF:CA:38:9F:BD
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018A45262DB017F366D8F69B50034C27BD78
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/S1lcQbjm_7rN_-Du6Rv638o4n70.roa
Signing time: Wed 30 Aug 2023 06:34:04 +0000
ROA not before: Wed 30 Aug 2023 06:34:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38915
IP address blocks: 2a07:3500:1200::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Aug 2023 09:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:26:2d:b0:17:f3:66:d8:f6:9b:50:03:4c:27:bd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Aug 30 06:34:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b595c41b8e6ffbacdffe0eee91bfadfca389fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:48:c6:56:0a:98:3c:ff:74:74:7c:dc:50:18:
c6:43:fe:bc:17:bf:04:6d:d1:62:c4:e5:d9:0f:bf:
01:30:3c:e4:38:98:1b:e9:fc:1d:f8:b4:15:f6:03:
f6:f2:db:74:6a:49:61:fc:e3:45:26:1c:89:4a:f2:
2a:98:d2:85:d7:4c:d5:6c:a7:c9:30:ba:74:76:0c:
a1:2f:94:89:97:e2:cb:40:04:71:4e:ce:b1:a3:e5:
9d:f3:30:a8:7b:d6:4b:ed:91:2f:e8:9d:72:e4:e9:
4a:18:4a:ea:11:69:6b:45:e9:a0:71:6f:1d:18:59:
b4:99:f8:27:43:60:07:c7:6b:75:f7:d1:09:45:82:
d2:2a:ec:3b:4f:10:29:3b:92:14:dd:56:fb:c2:7d:
dc:5e:4b:cb:21:9f:77:90:78:15:29:df:31:62:c1:
2e:71:47:35:4e:f4:ab:ea:30:de:ee:3d:bd:f2:3d:
43:74:9b:a6:21:22:46:96:98:25:4b:9a:ce:42:c5:
ae:dd:c8:dc:c2:e6:ea:b0:e4:6c:78:47:16:ae:14:
28:17:86:d7:ff:a8:0b:2d:a1:5d:b2:8a:d8:db:73:
b4:09:74:e7:16:39:85:57:bc:46:03:2c:1f:b2:53:
5b:77:c1:8d:53:de:c0:da:2a:97:69:6b:10:2b:09:
fb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:59:5C:41:B8:E6:FF:BA:CD:FF:E0:EE:E9:1B:FA:DF:CA:38:9F:BD
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/S1lcQbjm_7rN_-Du6Rv638o4n70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1200::/48
Signature Algorithm: sha256WithRSAEncryption
c0:9a:13:0f:32:58:90:c8:ab:be:73:46:ed:db:04:fd:85:7f:
bf:d0:70:05:20:30:12:3c:ac:43:3c:a7:6e:57:f6:bb:a9:3d:
0e:7f:d1:3e:32:ce:01:14:a5:70:bf:a3:8e:d0:40:7b:f4:a3:
e6:44:03:ba:be:c3:ad:84:81:cc:a5:96:ef:19:cd:bd:bf:08:
0e:8a:07:e7:db:7d:ce:24:ab:d9:ad:cb:7c:08:4e:b6:62:70:
9e:ce:99:46:eb:c4:12:b7:c1:f3:ae:8d:9a:d7:0a:14:c7:45:
f9:b2:be:82:11:49:66:7e:33:a8:ce:0f:6c:85:a0:50:26:16:
ef:a7:e5:0a:65:8d:eb:e2:fc:93:db:27:bd:0a:50:6e:4b:6c:
51:81:1b:60:c1:18:f2:33:9a:0c:4f:bd:69:77:4f:1a:27:16:
ff:78:52:72:a5:b1:ad:8c:8e:4c:a9:2b:97:d1:b1:b1:a9:e8:
96:35:98:f6:e6:67:fe:6e:f1:d9:e1:9d:e8:5c:50:fa:28:37:
e4:5b:98:6c:c2:31:d4:82:fa:89:6f:67:14:d8:5e:c8:da:da:
3e:5b:73:55:9d:8a:36:8a:67:e2:2f:bf:c9:5f:75:c5:91:eb:
01:f1:2e:70:44:13:6e:5e:95:59:98:37:97:0a:66:36:f8:71:
75:1b:44:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:49 2024 by rpki-client on console-ams.rpki-client.org