Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/K96Hok7qdDd-uATVJSPUjshY7Ak.roa
File: K96Hok7qdDd-uATVJSPUjshY7Ak.roa (raw, json)
Hash identifier: 19bwjAsZMcMRxA4A3z9PbBt2FaNyV0AufJ/q0xbVy/Q=
Subject key identifier: 2B:DE:87:A2:4E:EA:74:37:7E:B8:04:D5:25:23:D4:8E:C8:58:EC:09
Certificate issuer: /CN=2f367c7949fa0f6cf05a21027e75b84612dc13b0
Certificate serial: 01912BB20AB0C87139E607FB4588012FEFE8
Authority key identifier: 2F:36:7C:79:49:FA:0F:6C:F0:5A:21:02:7E:75:B8:46:12:DC:13:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzZ8eUn6D2zwWiECfnW4RhLcE7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/K96Hok7qdDd-uATVJSPUjshY7Ak.roa
Signing time: Wed 07 Aug 2024 07:16:14 +0000
ROA not before: Wed 07 Aug 2024 07:16:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201565
IP address blocks: 2a03:820:4000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 23 Aug 2024 14:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2b:b2:0a:b0:c8:71:39:e6:07:fb:45:88:01:2f:ef:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f367c7949fa0f6cf05a21027e75b84612dc13b0
Validity
Not Before: Aug 7 07:16:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bde87a24eea74377eb804d52523d48ec858ec09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:16:aa:43:ce:39:57:c3:4b:59:be:f8:17:
c1:43:a9:b2:80:77:66:4d:fe:07:ab:dd:3f:a7:15:
bc:57:2b:80:dd:0b:a8:7c:4c:bd:f4:57:bd:ba:b9:
48:1f:c0:2c:e8:62:74:fa:a4:2e:74:26:c1:b3:17:
a7:48:02:70:d7:03:4b:63:86:95:6b:44:f4:86:6a:
c3:02:1b:ea:74:5d:3a:8f:0f:4c:28:d2:7e:07:de:
39:13:2e:c9:18:d7:fc:c5:da:55:5d:ea:a3:e6:37:
2b:38:3e:fe:aa:5b:bb:d6:54:27:f3:73:d2:14:13:
ed:f6:82:76:3b:43:7b:80:57:d4:7a:ab:d2:aa:f6:
8a:fe:b7:f6:99:58:c6:b1:2e:58:47:35:fc:f9:fd:
d7:20:2c:64:26:95:d0:d8:a1:93:93:92:3a:e8:39:
0f:9d:ad:51:21:67:c6:51:0b:85:a8:91:cc:2e:75:
bc:36:e8:66:a8:f2:2a:54:ed:8b:7c:41:27:68:83:
bf:de:6c:5b:dc:70:91:8f:58:98:06:29:1b:77:b2:
b4:59:5d:bf:52:26:f5:95:09:6f:cf:02:09:08:88:
c9:c8:2b:65:e3:0c:6f:68:bf:d6:23:3c:1e:ec:66:
d5:74:80:de:d1:47:96:c3:fa:5d:56:3e:a1:cf:61:
d1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:DE:87:A2:4E:EA:74:37:7E:B8:04:D5:25:23:D4:8E:C8:58:EC:09
X509v3 Authority Key Identifier:
keyid:2F:36:7C:79:49:FA:0F:6C:F0:5A:21:02:7E:75:B8:46:12:DC:13:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzZ8eUn6D2zwWiECfnW4RhLcE7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/K96Hok7qdDd-uATVJSPUjshY7Ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/08e183-64eb-4999-9f78-7ce7322671eb/1/LzZ8eUn6D2zwWiECfnW4RhLcE7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:820:4000::/36
Signature Algorithm: sha256WithRSAEncryption
a5:e0:7b:33:53:20:f5:0e:b1:55:90:cc:3f:c3:d6:4d:c7:bf:
34:2f:d4:ec:23:4d:26:69:8d:8f:c1:59:0e:23:f4:d1:7d:17:
7d:cb:b8:29:7a:3e:07:26:a5:58:55:08:5d:dd:1b:2e:13:d6:
86:cc:1a:26:f4:6c:9e:fd:9c:79:d2:f6:75:f3:51:50:14:f3:
10:f8:eb:e8:cb:03:88:ae:0b:0a:e4:50:0c:7d:1a:11:73:2f:
ad:bf:9f:3a:dd:d2:ad:1b:61:4a:d9:eb:a4:73:5a:38:a0:3e:
05:61:8c:a5:bc:ad:82:7c:55:37:6a:58:92:e0:ce:6a:f7:78:
98:99:77:63:9f:b5:cc:a6:1d:36:a6:9e:94:df:e8:dc:71:06:
90:48:29:fc:da:32:e7:dd:da:71:21:fe:c4:c8:f5:42:40:55:
63:e4:85:54:d4:c7:3a:3a:18:36:54:fa:ff:63:7e:1f:08:c5:
03:1b:23:aa:29:7f:9f:ad:c7:8d:00:65:ce:9f:9f:a9:90:67:
d7:68:af:71:00:b9:27:6e:2c:8b:e2:83:14:0b:18:c7:32:0b:
46:cc:c1:66:a0:1f:e7:3e:45:7e:c0:d9:06:88:84:93:16:03:
2f:55:10:bb:7b:70:bd:10:b0:d1:99:56:51:c0:15:f4:db:bf:
f6:b2:42:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 20:10:36 2024 by rpki-client on console-ams.rpki-client.org