Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/oUBAQLyoFa-DYazAd17yOa8Btpw.roa
File: oUBAQLyoFa-DYazAd17yOa8Btpw.roa (raw, json)
Hash identifier: 3E9zqGfTNFuQZ1R9xL/m7//HCggaPE6ZTZucgAMMmWk=
Subject key identifier: A1:40:40:40:BC:A8:15:AF:83:61:AC:C0:77:5E:F2:39:AF:01:B6:9C
Certificate issuer: /CN=325a8b688deadbb91efbe0772308bac9f304a533
Certificate serial: 01856C0114405494ECC514D19BA7BFE910DF
Authority key identifier: 32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/oUBAQLyoFa-DYazAd17yOa8Btpw.roa
Signing time: Sun 01 Jan 2023 06:24:48 +0000
ROA not before: Sun 01 Jan 2023 06:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204901
IP address blocks: 2a0b:6647:b000::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Jan 2023 23:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:14:40:54:94:ec:c5:14:d1:9b:a7:bf:e9:10:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325a8b688deadbb91efbe0772308bac9f304a533
Validity
Not Before: Jan 1 06:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1404040bca815af8361acc0775ef239af01b69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c2:b8:68:1d:bb:35:0f:83:45:c4:61:89:94:
e2:da:fc:9c:7c:4c:30:c2:f4:c3:91:a9:63:29:68:
63:16:b2:4f:85:c9:0b:e4:19:f8:79:41:5d:1d:33:
c3:08:55:0c:16:a1:68:34:58:20:46:4f:9d:e8:7c:
d8:f2:63:87:c3:03:3e:bc:f4:21:9d:1b:cf:77:a2:
2e:bb:be:7d:7f:ce:27:8d:50:39:cd:03:49:70:1e:
63:86:f2:48:88:41:44:8c:b5:f7:0b:40:d5:a3:b2:
86:43:dc:57:01:26:ef:5c:30:52:f4:2e:bd:cd:c1:
f3:3e:79:ac:25:a2:63:07:9e:d3:48:4e:b6:29:65:
57:5d:9f:25:8b:e5:b8:a4:31:9d:08:7a:bb:3d:bc:
30:55:14:48:46:4c:98:03:f8:95:cc:76:a0:d0:6d:
ea:fc:2a:e5:c4:e6:c3:ad:f7:88:a1:c5:08:4b:f0:
53:26:2a:5e:af:08:0b:b7:91:ab:ec:a8:16:bd:73:
76:b9:3c:6d:d9:57:d1:1a:66:f4:28:cb:b8:20:02:
75:ab:04:27:ef:3a:88:7a:0b:42:44:b0:5e:69:a0:
5c:7e:25:70:ec:db:21:73:92:ba:ec:f9:cc:50:4b:
a1:d4:b9:37:39:2a:09:94:76:ae:3d:39:33:6e:a6:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:40:40:40:BC:A8:15:AF:83:61:AC:C0:77:5E:F2:39:AF:01:B6:9C
X509v3 Authority Key Identifier:
keyid:32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/oUBAQLyoFa-DYazAd17yOa8Btpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/MlqLaI3q27ke--B3Iwi6yfMEpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6647:b000::/40
Signature Algorithm: sha256WithRSAEncryption
94:4b:b1:0d:57:e3:d3:02:03:be:5c:2b:cc:d6:49:d8:07:96:
7d:06:7d:ea:82:e6:3c:26:ef:4e:06:4d:92:82:3c:91:f2:43:
3f:56:db:3a:d7:ee:f7:68:30:19:0d:b8:00:d6:d8:7c:a3:ec:
c0:17:9c:2b:ad:b6:15:50:d7:c5:c3:e3:38:d9:7a:49:c0:7c:
3d:ce:79:26:05:52:66:83:74:7e:36:ef:16:0f:34:e9:88:6d:
05:01:f5:d7:80:39:79:3a:17:8e:34:bf:fe:6a:b4:20:7b:2c:
6d:5c:0b:ed:17:64:15:be:2e:bb:04:3a:bc:7f:0f:4e:b4:32:
ae:4c:ef:f5:c7:82:76:60:64:0a:3c:20:f5:bb:f6:14:ef:32:
05:fc:67:36:22:ff:49:42:0f:3d:f8:38:25:e0:02:4c:00:2e:
14:39:2c:67:8f:d7:ff:fc:dd:11:30:83:db:99:fe:c8:ba:27:
e2:b6:86:30:28:67:67:d5:56:0d:1b:1c:3a:6b:3b:3d:55:99:
a3:c6:70:ab:38:b0:d6:47:86:20:aa:b3:52:2d:2f:80:7f:6e:
f6:81:ab:c6:36:0e:0d:5f:c2:e7:23:f3:23:88:ca:c6:19:97:
71:65:b1:88:73:10:28:e8:eb:4b:c8:fc:1a:90:0f:9d:ef:54:
6a:83:56:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:23 2024 by rpki-client on console-fra.rpki-client.org