Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/JJ9qmoY5Rum0yXa92yjFu6uMPmg.roa
File: JJ9qmoY5Rum0yXa92yjFu6uMPmg.roa (raw, json)
Hash identifier: Us68qYhnbTuetRLR/vGK0O9WiVsEWCY9BQVYXD5bG7k=
Subject key identifier: 24:9F:6A:9A:86:39:46:E9:B4:C9:76:BD:DB:28:C5:BB:AB:8C:3E:68
Certificate issuer: /CN=2874e46bf636ea63e5d12362f551b80b27714780
Certificate serial: 018571BA092D28D4BE57FF5556DDD4F8E486
Authority key identifier: 28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/JJ9qmoY5Rum0yXa92yjFu6uMPmg.roa
Signing time: Mon 02 Jan 2023 09:04:55 +0000
ROA not before: Mon 02 Jan 2023 09:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203871
IP address blocks: 2a00:4cc6::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:09:2d:28:d4:be:57:ff:55:56:dd:d4:f8:e4:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2874e46bf636ea63e5d12362f551b80b27714780
Validity
Not Before: Jan 2 09:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=249f6a9a863946e9b4c976bddb28c5bbab8c3e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e0:1e:b3:56:a5:b0:63:72:7d:a6:c5:e5:4a:
6e:0f:a3:99:00:d0:a4:20:5d:86:01:13:a8:58:ff:
03:46:64:fd:1b:6c:9f:b3:6e:38:fe:43:19:b9:0d:
4a:2a:46:27:dc:58:f6:70:89:7f:fa:e9:32:34:69:
5d:02:7d:93:43:26:75:08:0d:e1:6a:b6:8c:63:ed:
0c:2f:4f:d2:7d:99:f5:f9:fe:e8:5f:f3:dc:b3:c5:
d1:62:42:3d:76:36:e3:c2:e9:60:a6:da:ee:1f:45:
44:da:e3:ba:bf:f3:35:ea:66:19:87:04:da:33:d7:
55:7b:56:e7:3c:98:d9:9b:9a:f2:01:b3:65:14:2f:
b0:a7:40:22:8c:16:b5:37:06:5d:54:5b:45:51:89:
1f:00:d1:0a:f6:ec:39:61:7e:a5:7d:14:97:15:33:
61:1d:ae:70:5b:de:4b:de:39:07:f0:ad:e3:86:52:
56:22:37:6e:41:8f:42:b4:f4:e6:bd:c7:1c:0c:b8:
b9:cc:27:b5:22:c4:8e:05:5b:c3:0b:7e:11:dc:e8:
b2:51:c1:4f:58:b3:44:5b:30:a4:15:52:36:22:8d:
41:25:8b:c1:54:54:a6:f6:c4:ba:4d:0c:2b:51:d0:
e6:49:2f:51:c3:4f:52:1d:61:1d:24:cf:f5:49:03:
07:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9F:6A:9A:86:39:46:E9:B4:C9:76:BD:DB:28:C5:BB:AB:8C:3E:68
X509v3 Authority Key Identifier:
keyid:28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/JJ9qmoY5Rum0yXa92yjFu6uMPmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:4cc6::/32
Signature Algorithm: sha256WithRSAEncryption
26:64:0b:eb:ba:37:6f:29:d7:f3:2a:12:31:9f:02:3d:c3:f3:
5d:66:07:46:ba:8d:4e:a3:ca:bc:5c:96:55:62:22:1a:84:53:
38:1a:ef:46:c6:6f:71:33:59:d0:e0:1f:4b:c8:e3:e1:89:24:
33:f2:cd:02:28:32:86:aa:1a:e4:b3:e2:ba:79:6c:f1:01:30:
ca:1e:b5:db:13:77:04:04:ad:ec:f3:50:6d:b0:de:29:56:4d:
c9:25:86:98:89:1a:7e:a3:2d:4f:5f:be:fb:a4:ae:84:f3:b1:
8f:de:6d:47:98:b4:0d:21:72:98:ee:49:22:64:49:19:ed:f0:
be:14:97:72:db:6d:ec:df:e0:85:34:c0:98:03:4b:fb:b3:0e:
95:42:68:cb:06:a6:af:64:15:7d:61:2d:41:88:27:7f:fc:1a:
00:c3:c5:e4:f5:03:cc:79:1b:e2:aa:08:51:61:fa:43:f7:65:
8e:1c:bf:bd:99:1d:ba:ea:fe:44:15:52:90:55:ce:b8:c1:48:
93:54:28:f6:d9:72:7f:ba:20:e4:8a:90:a2:39:5b:0e:f3:cf:
89:89:3e:b9:7a:42:8c:14:29:fc:74:b0:d4:54:15:75:28:f8:
ce:9f:f8:73:81:90:49:18:f7:a4:b6:3b:99:ca:58:c6:d5:f4:
a8:f1:f1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:16 2024 by rpki-client on console-fra.rpki-client.org