Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/49A0cjxJmPhomDTKoCMdKPcG-Gs.roa
File: 49A0cjxJmPhomDTKoCMdKPcG-Gs.roa (raw, json)
Hash identifier: VuHsrsLIAnjyAWJ+TdaOwsOsvg1GJ6GyXgpZaCmIGb0=
Subject key identifier: E3:D0:34:72:3C:49:98:F8:68:98:34:CA:A0:23:1D:28:F7:06:F8:6B
Certificate issuer: /CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Certificate serial: 018B28EEBBC592941BC866DE969A03F77F14
Authority key identifier: 5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/49A0cjxJmPhomDTKoCMdKPcG-Gs.roa
Signing time: Fri 13 Oct 2023 12:06:55 +0000
ROA not before: Fri 13 Oct 2023 12:06:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49542
IP address blocks: 2a11:68c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:ee:bb:c5:92:94:1b:c8:66:de:96:9a:03:f7:7f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Validity
Not Before: Oct 13 12:06:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3d034723c4998f8689834caa0231d28f706f86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7e:38:00:14:11:54:24:c2:32:22:c7:88:9c:
9d:bb:4e:e8:10:1d:0b:15:31:de:fe:fa:90:95:d5:
d7:e7:26:ed:e2:f3:8c:ca:8c:65:68:78:0d:21:0d:
cb:a0:09:95:3b:78:42:63:54:f7:47:50:f0:d7:13:
22:5c:e3:14:8a:0f:81:e4:8c:8c:21:27:42:90:69:
9d:ea:fc:e7:16:35:dd:60:a6:f1:a2:0b:08:a6:84:
9f:1e:7e:f0:d4:de:32:12:70:68:89:04:29:21:9c:
d4:e5:b3:84:b6:21:67:5d:df:d5:e9:44:3f:9d:8a:
00:29:18:11:fe:32:5a:f7:5d:fe:b9:09:56:33:fa:
50:ef:0a:86:f8:14:cb:dc:f4:09:00:65:c4:32:77:
86:a9:77:85:93:9b:d2:95:89:7a:19:82:5a:2a:f4:
45:90:39:fc:12:30:5b:1c:8d:03:4a:29:4a:a4:7e:
21:b8:cf:c4:41:0e:6c:fd:3d:ca:92:d1:5c:0d:62:
88:e5:fd:60:dd:8f:46:c0:6d:2d:b9:62:23:4a:61:
2e:c5:b1:9c:5d:27:2d:e8:c4:3d:76:95:fc:96:9b:
64:bd:95:e0:3e:c5:11:57:c2:de:51:0a:3a:73:8e:
f9:cf:f8:fe:e6:53:d5:85:7f:a1:24:34:d3:79:02:
ff:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D0:34:72:3C:49:98:F8:68:98:34:CA:A0:23:1D:28:F7:06:F8:6B
X509v3 Authority Key Identifier:
keyid:5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/49A0cjxJmPhomDTKoCMdKPcG-Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/W9dOOd2kANE2Em5sPvsc-TRCd-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:68c1::/32
Signature Algorithm: sha256WithRSAEncryption
b7:76:af:98:98:de:56:fd:f8:8c:cf:9f:75:a3:1f:08:dd:bd:
6a:87:14:57:e6:80:1b:4f:0f:aa:2c:ca:18:07:33:73:cc:bb:
5f:ee:05:50:21:7d:21:70:d2:04:aa:e5:df:22:fb:7e:66:0b:
69:5d:9b:f1:5d:b9:26:75:33:0d:57:95:28:7d:9b:68:1f:ea:
74:3d:6b:a2:5b:23:4f:17:4f:9b:a8:e0:3e:92:c3:4c:04:33:
a5:fa:b0:18:2e:e5:60:a0:53:46:63:49:ed:01:ef:ab:f0:23:
b3:2a:f1:2a:c2:29:16:3d:6b:f9:2e:b0:1f:fc:11:cf:e0:b5:
19:e3:b3:80:78:fa:57:fa:9b:33:b7:05:da:8c:c5:15:f0:66:
db:09:f8:35:00:32:81:d5:a2:40:8e:64:6d:4f:c0:78:83:ce:
3d:3f:ce:9a:3d:a6:aa:78:76:e1:ff:60:ad:d4:52:ef:12:0c:
a4:ee:41:d7:63:aa:58:c5:28:0a:4a:0c:fb:4c:74:8f:36:0e:
a4:c9:b8:1b:41:68:67:20:70:e5:9e:ce:ab:2c:58:74:39:6a:
92:5e:bb:f5:e7:66:2e:04:2a:f1:e4:f0:f6:9e:5c:a6:5a:15:
0d:04:3f:ea:6d:8b:36:ff:ad:58:30:f6:b0:b7:0b:0e:e7:90:
71:d6:37:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:14 2024 by rpki-client on console-ams.rpki-client.org