Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/kTCSryamSdPmQoMzPT2JKkdQlF8.roa
File: kTCSryamSdPmQoMzPT2JKkdQlF8.roa (raw, json)
Hash identifier: Od8u5ZH/ONflrgPWQEUtp42pVXMWhTS1Tsq/mWdaKKA=
Subject key identifier: 91:30:92:AF:26:A6:49:D3:E6:42:83:33:3D:3D:89:2A:47:50:94:5F
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 018570671FF710CA8362B4F9ABF7249B3964
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/kTCSryamSdPmQoMzPT2JKkdQlF8.roa
Signing time: Mon 02 Jan 2023 02:54:44 +0000
ROA not before: Mon 02 Jan 2023 02:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57831
IP address blocks: 2a07:8f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:1f:f7:10:ca:83:62:b4:f9:ab:f7:24:9b:39:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 2 02:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=913092af26a649d3e64283333d3d892a4750945f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1c:4d:94:ec:97:16:56:6e:30:ef:f6:94:e3:
c4:d4:3c:f4:17:de:97:32:72:ed:08:bd:4a:02:48:
a8:f6:9d:15:d4:b7:49:7c:60:c9:60:3f:fe:3c:90:
a4:46:46:d2:2e:a8:56:dc:78:26:67:1a:4a:a2:0d:
ac:1c:9b:93:5f:bd:eb:df:80:cf:1c:b8:00:ba:41:
fa:6f:fe:45:50:fd:68:e5:e8:c2:89:23:fd:73:6b:
9a:05:06:22:29:60:96:b4:a1:3a:ff:7c:bc:32:60:
62:60:2e:f2:9d:98:f3:18:b8:48:e5:b5:d5:ef:fa:
2b:58:45:48:87:43:b0:bb:ac:b3:41:00:be:d2:c3:
6d:a3:9d:1c:b7:cb:b8:68:8c:8e:5d:e2:20:fb:c9:
a6:31:d2:98:23:f1:10:b9:96:c9:89:e1:29:ff:42:
5f:6c:bb:e9:a8:05:2a:b1:e0:44:8a:e5:04:7b:89:
18:e4:bc:07:84:2c:01:c1:81:26:55:9e:4d:fd:9a:
66:c7:00:47:2b:47:7d:ac:e4:33:10:c2:aa:fd:a4:
20:02:25:53:a5:f7:ac:84:3a:f8:e4:9c:5a:16:40:
78:7b:8c:3c:05:c5:2e:ad:ee:9a:c3:a5:71:0e:f8:
2c:a9:86:0e:b2:c8:42:95:98:b8:d9:b2:da:c1:31:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:30:92:AF:26:A6:49:D3:E6:42:83:33:3D:3D:89:2A:47:50:94:5F
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/kTCSryamSdPmQoMzPT2JKkdQlF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8f40::/29
Signature Algorithm: sha256WithRSAEncryption
c2:39:6a:3d:da:b8:4b:df:6c:83:54:10:62:e2:61:0e:48:c0:
69:0c:9b:51:ef:1a:cb:8d:23:53:a4:84:2e:f0:c3:b1:96:42:
d2:51:8d:a2:92:3c:f7:49:f1:7b:61:bc:4c:ac:cc:14:04:82:
89:dd:f3:d4:ff:00:0a:31:f0:e9:04:39:2a:95:bb:cb:86:08:
14:0b:f5:ab:be:f3:8e:f8:68:ce:c4:10:1a:4c:3a:48:5b:50:
b2:ae:fa:ee:4e:58:b6:ab:39:a5:42:ef:fe:96:66:4f:d3:a4:
50:a4:22:6d:9e:86:a6:4c:5e:83:f5:ca:73:3e:8c:2f:d7:a9:
a3:48:8e:31:cd:55:70:42:4c:d5:eb:6c:27:ca:1b:f8:21:88:
44:64:7e:23:cc:0d:83:cd:c2:6e:6e:77:1d:27:15:cd:48:a9:
d0:2e:d9:ba:44:8c:f3:74:49:36:20:b8:b7:37:34:a0:d9:1d:
88:37:8f:67:98:00:c6:2a:11:a7:5b:ba:76:00:11:e7:72:64:
47:19:86:2b:db:59:8a:51:d8:75:63:ef:da:fd:0a:11:22:09:
c6:50:73:79:72:00:90:83:05:b5:f9:cf:d1:9e:d4:24:7a:db:
04:ee:b2:0b:f3:31:e1:51:b9:9e:18:75:6d:40:0d:a1:3e:90:
1f:7a:f4:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:34 2024 by rpki-client on console-ams.rpki-client.org