Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/JmEjUuqP5TwqzbUfHAG_ZB8n-q8.roa
File: JmEjUuqP5TwqzbUfHAG_ZB8n-q8.roa (raw, json)
Hash identifier: J/nAuv2IVQxCBc/+VRtIbd5SPfALfPPXPyVqqav7HQU=
Subject key identifier: 26:61:23:52:EA:8F:E5:3C:2A:CD:B5:1F:1C:01:BF:64:1F:27:FA:AF
Certificate issuer: /CN=dfb8ff2f3a0bfc41eadc18af9e52acd100524149
Certificate serial: 018570F08B56072B3542AC892C5C1368F099
Authority key identifier: DF:B8:FF:2F:3A:0B:FC:41:EA:DC:18:AF:9E:52:AC:D1:00:52:41:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37j_LzoL_EHq3BivnlKs0QBSQUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/JmEjUuqP5TwqzbUfHAG_ZB8n-q8.roa
Signing time: Mon 02 Jan 2023 05:24:50 +0000
ROA not before: Mon 02 Jan 2023 05:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0a:2b00:20::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:8b:56:07:2b:35:42:ac:89:2c:5c:13:68:f0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb8ff2f3a0bfc41eadc18af9e52acd100524149
Validity
Not Before: Jan 2 05:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26612352ea8fe53c2acdb51f1c01bf641f27faaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e5:25:91:38:96:02:84:6b:a0:1b:a3:12:fb:
0f:01:1e:9d:4b:8f:0e:f8:d7:b9:2d:97:23:ac:b1:
ac:f8:dd:46:7d:5d:a9:63:00:33:0b:ce:92:c2:7c:
13:65:21:0f:7d:eb:e5:eb:ff:ce:bc:ad:79:2c:c4:
af:4b:4b:95:44:5f:91:e8:8e:fb:03:56:b0:6b:94:
d7:2e:b2:35:60:77:01:e3:13:fa:fa:e0:29:1e:5c:
6d:e6:81:2e:45:73:d1:cc:a8:c7:3b:d3:2f:39:03:
64:c5:6a:06:5b:10:ee:fe:83:84:b6:49:cd:0f:06:
37:38:89:89:8a:70:8d:95:d8:9d:4f:86:a6:5f:a0:
bf:d0:aa:3e:0b:9c:19:ec:cb:6e:4f:25:eb:6b:7c:
50:dc:95:ba:b0:99:d9:03:03:fe:72:b7:21:09:bd:
26:97:d7:c0:72:0c:24:af:38:a2:45:72:59:cc:fa:
2f:9e:29:6f:ef:68:fc:ed:f2:d1:77:76:ca:aa:04:
47:4b:1a:21:ee:60:2f:88:c8:1b:c3:3e:a6:98:95:
da:f9:79:eb:f4:ce:b8:02:37:1b:7a:96:c9:af:a8:
c6:b1:08:10:ed:10:19:a4:94:33:13:bf:aa:6e:7c:
bc:1e:76:a7:0a:5e:52:f4:45:14:43:e1:44:fd:80:
b4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:61:23:52:EA:8F:E5:3C:2A:CD:B5:1F:1C:01:BF:64:1F:27:FA:AF
X509v3 Authority Key Identifier:
keyid:DF:B8:FF:2F:3A:0B:FC:41:EA:DC:18:AF:9E:52:AC:D1:00:52:41:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37j_LzoL_EHq3BivnlKs0QBSQUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/JmEjUuqP5TwqzbUfHAG_ZB8n-q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/37j_LzoL_EHq3BivnlKs0QBSQUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2b00:20::/48
Signature Algorithm: sha256WithRSAEncryption
93:25:49:89:e6:87:14:91:10:8e:09:aa:37:5c:11:99:9c:f5:
68:7b:00:a2:15:f6:2b:58:de:c1:e6:76:83:38:ba:d2:19:e1:
d2:16:bd:e4:a4:d5:31:6f:49:3c:bd:81:f2:07:37:3e:e5:e6:
62:69:16:f9:50:18:fa:fa:b3:b0:ca:c8:50:ba:b4:5a:35:29:
78:f2:f6:38:70:80:1c:af:f8:8e:e1:75:42:85:b4:aa:ef:7d:
75:c7:35:a9:6a:1e:26:eb:6f:c5:a4:72:2c:60:ff:9d:17:36:
40:9e:41:60:4b:15:d5:cc:bc:b5:41:5f:f7:ec:dc:f7:d6:21:
7b:58:cb:4b:64:a8:e0:56:80:00:e8:ea:8b:bc:2f:9d:28:ef:
ef:7f:50:38:6e:04:cb:4a:49:69:c6:38:6e:6c:02:d2:89:be:
a7:7a:e4:80:99:58:9d:a8:0e:4e:6d:ef:73:9f:7a:66:87:2c:
64:f6:2d:f1:78:40:dc:81:c6:83:6c:09:c3:63:5c:d2:a3:d1:
f7:a4:76:c0:ff:da:eb:8c:f3:25:ff:e4:7a:07:81:e8:07:99:
ea:c7:62:65:5f:e2:31:02:d4:9b:3a:f4:b8:b6:a6:75:69:cc:
d8:88:26:be:59:e8:f0:89:db:03:57:3e:50:88:e3:20:44:e1:
1a:fa:a8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:58 2024 by rpki-client on console-ams.rpki-client.org