Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/an8hUw3b__AsU31mbFzVv9mfW_Q.roa
File: an8hUw3b__AsU31mbFzVv9mfW_Q.roa (raw, json)
Hash identifier: 4fu4+VxutE8XRTJCfxKxUXNlQghIpydgKq+GgSPRLWs=
Subject key identifier: 6A:7F:21:53:0D:DB:FF:F0:2C:53:7D:66:6C:5C:D5:BF:D9:9F:5B:F4
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 0188E8AEE9351423CC7C587EEED032F28D2A
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/an8hUw3b__AsU31mbFzVv9mfW_Q.roa
Signing time: Fri 23 Jun 2023 14:35:57 +0000
ROA not before: Fri 23 Jun 2023 14:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50867
IP address blocks: 2a0a:eec0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 28 Jun 2023 09:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e8:ae:e9:35:14:23:cc:7c:58:7e:ee:d0:32:f2:8d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Jun 23 14:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a7f21530ddbfff02c537d666c5cd5bfd99f5bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:b7:6d:ae:f0:d4:69:b6:5c:b3:ab:57:11:
9e:bf:0b:98:48:d8:e9:9d:00:e2:13:41:fd:d5:85:
d3:bd:20:6e:86:e1:4a:fc:4a:3d:e2:4d:4f:9d:fe:
62:41:b3:8c:5b:25:9a:67:74:00:15:7b:22:cf:c6:
13:a9:e4:4d:23:fb:50:2a:33:a1:d9:1c:1e:d9:99:
3a:11:df:5c:4e:a5:76:3d:7a:70:61:56:de:9e:38:
ff:1d:9b:3e:d9:ed:17:49:07:d8:2e:65:b6:09:14:
67:f2:12:32:88:29:f2:47:c8:09:70:33:e4:b8:ec:
81:5b:26:54:e6:38:cc:fd:34:fb:19:61:2a:ff:5f:
76:25:11:80:4f:e6:50:e1:a9:b4:cd:87:8e:ee:7a:
f0:21:c3:ac:11:f4:31:93:64:de:19:76:27:e5:06:
d0:f6:5b:74:bf:47:09:1b:f9:ff:51:c6:60:1a:7f:
79:fc:40:13:e2:5c:21:2d:49:d4:31:d8:da:51:04:
67:58:7a:87:a6:2b:73:95:b6:c8:3c:85:05:71:4b:
40:b3:97:21:c2:9d:b3:16:cb:17:73:88:67:5e:23:
8d:c3:e9:3d:cc:47:9d:6a:57:07:8d:19:1c:0f:57:
28:0d:36:a1:e7:c7:8f:51:ac:79:cc:7a:2c:a1:4f:
eb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7F:21:53:0D:DB:FF:F0:2C:53:7D:66:6C:5C:D5:BF:D9:9F:5B:F4
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/an8hUw3b__AsU31mbFzVv9mfW_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:eec0:1::/48
Signature Algorithm: sha256WithRSAEncryption
5c:38:85:f1:15:7f:74:e8:7c:71:fe:74:84:e0:28:d2:62:65:
ed:59:f3:18:83:a4:f3:28:9b:35:17:b7:63:3b:66:ab:ca:b0:
ff:5e:15:91:ce:cc:7e:09:a9:f6:1e:2e:34:77:39:33:c9:e0:
05:d9:90:06:8e:58:63:cf:2d:f0:48:7c:a6:9c:9d:71:62:54:
07:25:e5:fb:5f:22:35:92:3c:3c:61:22:e7:61:08:19:8c:a2:
10:ce:09:ef:2d:0c:e1:37:52:bc:53:0a:ed:b2:db:d7:bb:0c:
78:65:3d:64:38:39:ae:94:5b:da:29:89:91:e7:5c:3b:05:66:
93:96:c5:f7:ee:0a:97:8d:e0:4a:68:c1:12:86:88:86:52:93:
06:36:10:ed:82:ca:a4:9d:fa:d9:c2:68:97:54:df:55:b7:3c:
81:6c:d2:21:80:50:6b:f9:88:08:71:7b:b8:2b:3b:91:e4:ec:
40:06:45:1a:f1:d3:a4:a8:dd:a7:9c:1c:2c:f4:b7:41:37:2f:
a7:c0:57:04:f8:8b:05:fc:21:8e:fc:23:86:69:11:ba:a5:3a:
5a:c8:7c:e6:5d:5b:40:eb:19:2e:2d:9c:e0:20:d7:60:9a:3f:
bf:7f:87:da:d9:26:4d:bb:5c:56:54:e3:dc:ce:ca:3f:e2:c2:
e6:52:6b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:36 2024 by rpki-client on console-ams.rpki-client.org