Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/mpbqOVDHEuT9DhgnlfJH3UyD2f0.roa
File: mpbqOVDHEuT9DhgnlfJH3UyD2f0.roa (raw, json)
Hash identifier: wePD+9L9UjRCPw1jPH5hw+iRMZbZXySpqEx5q65zZd0=
Subject key identifier: 9A:96:EA:39:50:C7:12:E4:FD:0E:18:27:95:F2:47:DD:4C:83:D9:FD
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 01856FCBBC3200887FE0373A669668F5097F
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/mpbqOVDHEuT9DhgnlfJH3UyD2f0.roa
Signing time: Mon 02 Jan 2023 00:05:00 +0000
ROA not before: Mon 02 Jan 2023 00:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47837
IP address blocks: 2a0e:e704:50::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 28 Dec 2023 21:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:bc:32:00:88:7f:e0:37:3a:66:96:68:f5:09:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Jan 2 00:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a96ea3950c712e4fd0e182795f247dd4c83d9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:16:db:c8:a9:e5:19:5c:ac:a4:b1:36:70:53:
34:6e:c0:ac:70:74:35:6d:79:35:f8:a4:4a:02:a5:
f6:31:14:56:cb:d1:8e:f0:ed:52:f1:d1:18:9a:e5:
cb:b7:33:1d:ff:bf:17:90:53:17:4d:e1:43:5f:5d:
24:3b:6b:c5:53:1d:84:bc:37:6d:99:19:28:d4:07:
5c:f1:27:e8:be:50:c5:f8:dd:b6:35:29:5a:7a:0a:
e8:ad:25:77:a3:b5:c4:80:d1:a1:d8:ab:b8:5a:af:
02:01:d7:37:ec:be:40:7f:71:1a:55:45:4f:a4:63:
38:99:d3:ff:05:70:8d:a4:88:75:f5:3e:46:ec:48:
b9:21:98:28:d1:68:53:26:48:0d:6d:df:4a:c3:42:
14:b8:50:9b:ec:3d:30:8c:bc:f4:c4:83:cb:f4:6d:
d7:67:0a:fd:ec:4b:1f:65:d0:6c:8e:8e:d6:fb:a2:
e2:35:3e:e3:e9:47:b7:4f:5b:7b:e1:ec:76:be:3e:
d4:36:ca:22:cc:a6:8d:ef:4b:8a:3d:ae:ed:1a:39:
14:5a:8a:3c:59:54:89:f7:a1:e0:83:a6:33:aa:46:
72:ef:14:a5:19:ef:4e:57:3e:a8:8f:1d:9a:1c:c6:
67:ce:b5:98:59:6b:9c:f7:78:f1:8b:b2:0c:0d:cf:
a7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:96:EA:39:50:C7:12:E4:FD:0E:18:27:95:F2:47:DD:4C:83:D9:FD
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/mpbqOVDHEuT9DhgnlfJH3UyD2f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e704:50::/44
Signature Algorithm: sha256WithRSAEncryption
5b:ff:96:60:77:27:bb:5f:55:76:93:a2:eb:37:4d:ff:25:a8:
aa:dc:98:ee:8d:eb:7d:f3:53:44:60:58:bd:53:ea:84:20:2e:
89:9f:40:15:c2:4b:dc:1c:2b:bd:b3:7b:59:38:d2:3c:62:f6:
d0:85:71:47:c8:9e:45:fe:f7:fb:22:84:e1:38:4f:b3:96:bb:
b2:b9:8c:a4:5c:5d:b4:5a:5b:f8:d3:cc:92:43:87:88:40:18:
7b:29:1c:2d:54:d6:ab:53:2f:53:ff:b2:17:2c:60:39:15:53:
57:94:5f:c5:27:11:2f:e1:02:ae:3e:38:00:a4:3f:41:ae:c1:
ce:f9:64:4d:81:cb:ff:da:40:20:18:aa:f6:e6:cb:1d:31:d1:
69:11:d1:0c:36:1e:64:8c:bf:0e:5f:00:cc:70:bd:60:34:99:
8d:af:77:84:e9:ad:58:7a:b3:ad:27:de:14:68:99:9b:d8:01:
6a:d6:2d:68:a8:82:5a:5c:a4:24:4c:8d:11:0e:1c:54:25:64:
d2:9d:5a:97:de:98:61:ac:10:a7:25:c5:84:0b:d1:17:93:0f:
6c:37:f2:15:d6:ba:e9:2c:1d:ba:80:4b:d7:95:8f:e2:9f:f4:
e3:a1:4a:dd:d6:e1:4e:ed:eb:20:64:ea:9a:34:84:af:c9:72:
4a:16:33:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:10 2024 by rpki-client on console-ams.rpki-client.org