Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/NIYjRx7MoNKC3tL_TWv-MGnzGA8.roa
File: NIYjRx7MoNKC3tL_TWv-MGnzGA8.roa (raw, json)
Hash identifier: U+3h3lLWf87jjh3F7UcfgadLqWiK/kWmdZSiTEaVJVU=
Subject key identifier: 34:86:23:47:1E:CC:A0:D2:82:DE:D2:FF:4D:6B:FE:30:69:F3:18:0F
Certificate issuer: /CN=97ea541c123faa9c0edc729f829e959fd292e37d
Certificate serial: 018573CCECCD4C2CD54F9D6408F032C3E1A4
Authority key identifier: 97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/NIYjRx7MoNKC3tL_TWv-MGnzGA8.roa
Signing time: Mon 02 Jan 2023 18:44:47 +0000
ROA not before: Mon 02 Jan 2023 18:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0d:9b84:ff00::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:cc:ec:cd:4c:2c:d5:4f:9d:64:08:f0:32:c3:e1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ea541c123faa9c0edc729f829e959fd292e37d
Validity
Not Before: Jan 2 18:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=348623471ecca0d282ded2ff4d6bfe3069f3180f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:31:bc:7c:7b:20:f6:3e:40:79:f4:72:b0:91:
5f:ac:45:31:e4:0c:87:8c:0e:ad:bf:57:34:19:f4:
20:93:8b:c5:35:5a:52:d8:f9:64:ba:5e:5b:9d:e8:
cc:d2:92:5d:38:0d:ac:89:e2:cd:d6:4f:26:a6:49:
7a:68:6b:78:f8:70:e3:7f:1c:66:37:57:ef:0d:cb:
6b:7f:12:01:cf:28:a9:f0:02:08:99:df:3f:07:11:
d3:0f:2c:1d:2d:2f:e8:8b:d0:dc:2b:1a:b1:04:d0:
31:61:4f:19:83:c7:75:17:83:0b:ea:65:24:1e:58:
85:0e:dd:07:8e:59:88:a8:14:18:82:d5:ed:ed:8b:
a8:26:ab:9e:8c:fe:b2:91:62:4f:0d:3b:05:e8:da:
81:f0:f5:7b:6b:ed:7f:0a:3a:eb:9d:70:f3:50:54:
31:9d:02:d4:92:7a:df:1a:81:15:07:d8:d6:72:58:
26:71:fd:e2:4b:40:c8:96:1c:18:db:00:34:52:ee:
7b:44:c6:fe:fe:2f:9e:71:21:83:99:98:ff:de:75:
42:dc:78:8f:ed:80:d3:c3:09:86:74:b4:7b:e4:f4:
22:40:ab:c9:a4:cd:92:15:be:9d:e2:b3:be:63:81:
be:c5:a4:cc:72:52:b4:3f:17:c4:3e:28:50:bc:5e:
72:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:86:23:47:1E:CC:A0:D2:82:DE:D2:FF:4D:6B:FE:30:69:F3:18:0F
X509v3 Authority Key Identifier:
keyid:97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/NIYjRx7MoNKC3tL_TWv-MGnzGA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/l-pUHBI_qpwO3HKfgp6Vn9KS430.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:9b84:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
b1:3f:c8:57:96:3a:27:d6:bf:d4:90:5d:b7:f2:fa:3f:44:17:
9f:f4:e4:0c:e0:33:79:ff:8c:0d:82:f3:c4:52:b4:e1:e9:3d:
9b:af:04:a6:30:af:2a:8e:6f:d3:c2:3a:3a:41:ad:58:48:a4:
df:2f:1b:8e:3e:b2:d4:17:02:35:d3:dc:6d:34:2e:8c:47:40:
88:dd:44:e3:f0:dc:78:09:86:3d:c6:6b:20:e3:ff:84:a9:e4:
68:8e:67:1e:43:e6:f6:e5:f7:4d:f5:35:bd:50:7f:e0:bc:6b:
52:ec:7d:82:fb:44:70:02:2f:6a:ed:a9:ff:68:d1:6d:dc:85:
41:9b:3f:cf:b7:3c:fb:e1:bf:7b:06:e8:3f:7d:07:1c:b1:9a:
76:fb:f7:e5:73:7b:37:fc:77:04:19:c7:61:08:20:19:41:ba:
58:d0:59:30:81:a5:36:c4:98:0e:58:cd:b5:20:6e:0a:43:9b:
59:c9:c0:88:df:49:8e:3c:af:83:80:cf:30:52:a8:d6:f2:da:
98:37:8c:e8:a8:4e:97:63:7d:c8:72:bd:b9:25:84:7d:66:ef:
86:0e:74:b7:2b:70:8d:e5:78:d9:ca:ef:05:a9:7b:df:22:ee:
b9:50:a2:9c:19:93:df:06:51:f4:76:70:91:12:3e:02:53:db:
3f:de:87:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:25 2024 by rpki-client on console-fra.rpki-client.org