Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/7QCpb-VUuG9ZVWD0lLTnlEeA0oI.roa
File: 7QCpb-VUuG9ZVWD0lLTnlEeA0oI.roa (raw, json)
Hash identifier: H5G3Lik8lcDEy/aTKhxJbTwd87SmTXLx/FNztI++O7g=
Subject key identifier: ED:00:A9:6F:E5:54:B8:6F:59:55:60:F4:94:B4:E7:94:47:80:D2:82
Certificate issuer: /CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Certificate serial: 018570C2AC23312237A0062BC77D1E028A05
Authority key identifier: 92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/7QCpb-VUuG9ZVWD0lLTnlEeA0oI.roa
Signing time: Mon 02 Jan 2023 04:34:43 +0000
ROA not before: Mon 02 Jan 2023 04:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395403
IP address blocks: 2a00:edc0:1007::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:ac:23:31:22:37:a0:06:2b:c7:7d:1e:02:8a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Validity
Not Before: Jan 2 04:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed00a96fe554b86f595560f494b4e7944780d282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:38:42:c1:33:9e:72:86:b2:98:a2:d7:40:b7:
0b:1f:58:e4:d7:3e:b8:13:2d:0b:ec:c3:24:31:0d:
19:4d:48:5b:2d:52:fd:1d:07:cf:7f:3d:89:63:b6:
a1:0e:23:74:e2:20:64:b2:34:d7:13:00:d6:ec:25:
fa:c0:5a:1d:64:7e:46:09:9a:e7:19:ef:b5:ad:99:
00:ed:46:d9:29:5c:f4:ea:77:65:86:04:af:39:e9:
01:c3:82:d5:d4:de:32:3f:78:e5:96:30:b5:2e:e9:
db:ee:c1:67:f1:09:e8:fb:45:a1:6d:6e:a8:f8:e8:
b8:d2:6e:ee:c4:fd:db:24:4b:a5:08:7e:12:21:61:
cf:95:ee:e1:33:ee:e9:70:3b:f8:6b:fb:5e:ff:06:
94:e8:7f:f6:c8:1a:9b:02:43:42:29:7f:67:65:f9:
ce:94:39:37:4d:d5:fb:90:37:1c:4a:bb:10:8b:e9:
e3:cc:74:52:af:12:08:0c:ba:c1:2d:d6:6e:c7:bc:
60:6e:b9:d9:f1:25:d4:df:0d:ed:71:25:77:94:f3:
10:30:38:36:3a:7c:31:5b:d5:7f:62:21:0c:ef:96:
e7:10:b1:b1:bc:1f:09:18:ca:40:b5:c5:5e:fb:1b:
81:0a:f9:25:c1:df:2a:8a:fd:d1:66:ba:22:58:c7:
b2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:00:A9:6F:E5:54:B8:6F:59:55:60:F4:94:B4:E7:94:47:80:D2:82
X509v3 Authority Key Identifier:
keyid:92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/7QCpb-VUuG9ZVWD0lLTnlEeA0oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:edc0:1007::/48
Signature Algorithm: sha256WithRSAEncryption
65:8d:2a:7d:70:f9:d0:09:d5:0b:76:62:2d:f0:73:4a:e8:07:
15:99:01:18:f6:0e:ef:c6:37:bb:8e:e2:7f:f3:c2:c3:7b:2e:
c5:87:c3:9b:57:86:c8:66:f4:88:2d:39:9d:c0:26:21:29:18:
f6:91:83:5b:8b:cd:4a:9b:e0:df:f7:f0:be:b0:56:4e:91:6b:
4d:72:10:31:cc:4a:58:3d:07:0c:57:8c:64:c6:2b:48:7f:68:
c4:e0:9c:29:fd:11:23:4a:99:1a:50:1f:ea:8b:4c:52:83:d4:
90:19:ea:e7:94:85:a5:17:e4:67:34:08:1b:33:43:7b:d0:f2:
57:22:6c:01:e7:9d:8c:d4:63:0b:72:8c:3d:36:41:cc:77:00:
ee:07:47:d3:18:2a:be:4c:47:fe:64:18:cb:b2:dd:cc:4f:18:
e5:dc:02:2e:b9:ea:5e:b1:ed:4e:cb:c2:2e:08:6a:d6:48:3c:
fd:72:d6:00:37:ed:f9:bb:66:06:35:42:bf:6f:f8:c4:20:49:
13:dc:dc:4c:fc:68:46:e0:50:8c:6b:15:4f:bd:38:0c:0f:dd:
b2:2d:a7:24:69:11:ec:ef:a1:53:fc:59:67:17:e3:e8:53:ae:
49:c0:66:f1:40:e5:cd:1b:56:bf:39:b1:f1:4b:79:eb:60:f7:
11:12:bc:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org