Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/O4kHHJPldhE_h9o0hNa0j4RAWSQ.roa
File: O4kHHJPldhE_h9o0hNa0j4RAWSQ.roa (raw, json)
Hash identifier: nhBn+L7Y2CwzmaX2OSbWCjBvOqoGcf4ordTAq0GnqCo=
Subject key identifier: 3B:89:07:1C:93:E5:76:11:3F:87:DA:34:84:D6:B4:8F:84:40:59:24
Certificate issuer: /CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Certificate serial: 018CC500599A9F546CEDAB0A847B2A2E7557
Authority key identifier: 5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/O4kHHJPldhE_h9o0hNa0j4RAWSQ.roa
Signing time: Mon 01 Jan 2024 12:29:43 +0000
ROA not before: Mon 01 Jan 2024 12:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57487
IP address blocks: 2a11:68c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Feb 2024 10:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:59:9a:9f:54:6c:ed:ab:0a:84:7b:2a:2e:75:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Validity
Not Before: Jan 1 12:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b89071c93e576113f87da3484d6b48f84405924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:65:f1:c1:d6:e5:65:f0:9d:c9:62:06:81:dc:
b2:de:26:10:ac:03:17:29:1a:12:6b:c7:06:81:aa:
1c:31:59:f4:1d:c8:75:86:f9:3f:a1:2d:43:75:97:
d2:c7:54:aa:95:8b:19:49:69:d2:72:4b:75:e0:16:
b8:5b:09:48:ba:ad:bd:30:8c:3b:43:8a:fb:e6:91:
b6:5d:8d:fd:d2:66:fd:02:3c:50:63:e7:72:1a:57:
39:b7:af:ca:d6:84:c4:de:bd:4d:00:e6:02:cc:e0:
56:b8:1d:80:84:4a:f6:2d:9f:94:ec:e4:2a:01:fa:
ed:00:a2:df:d8:38:2e:2e:1d:ce:b1:d6:b7:28:de:
75:e3:0f:58:c5:2c:bd:67:17:61:a7:db:64:2c:e7:
13:fd:ac:56:9e:2e:3c:f3:37:df:09:18:bf:d2:56:
31:ae:d6:1d:ef:a6:66:2e:13:cd:da:c9:d5:6c:14:
68:59:f7:05:f8:b2:a7:90:5b:74:6b:6b:df:20:eb:
aa:fe:a9:a4:7d:50:21:54:6b:aa:5f:21:f0:e8:4f:
fa:a4:4f:7b:fc:ce:41:86:28:9e:67:ae:b5:fa:99:
d2:ad:6e:59:6c:b3:e4:67:88:06:a7:6b:ed:6e:29:
e3:f6:f8:0d:16:b1:0b:7a:21:f7:ef:d2:51:f1:22:
74:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:89:07:1C:93:E5:76:11:3F:87:DA:34:84:D6:B4:8F:84:40:59:24
X509v3 Authority Key Identifier:
keyid:5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/O4kHHJPldhE_h9o0hNa0j4RAWSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/W9dOOd2kANE2Em5sPvsc-TRCd-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:68c2::/32
Signature Algorithm: sha256WithRSAEncryption
92:6c:95:59:77:c6:cf:a4:88:04:a7:46:36:2c:85:0e:52:97:
ef:19:55:9b:29:4f:53:14:62:0b:b0:84:17:1e:9a:94:3d:57:
5a:6b:10:e0:f7:c0:1e:d0:08:53:dc:11:e9:ce:ff:af:d4:aa:
25:ba:68:69:5c:a2:df:b0:cf:36:db:85:1c:d0:a2:e3:a2:64:
22:41:47:19:8f:3a:3c:f2:7d:7e:43:9c:87:d7:c6:61:b7:ef:
bc:bd:db:07:73:cb:38:b8:3c:e7:59:61:cc:b3:f7:b8:78:76:
20:ca:a6:58:02:9f:52:14:91:43:1e:ca:5f:1f:9c:45:4c:18:
f9:5e:a3:7e:c4:0c:1a:28:6b:7e:3f:82:67:57:11:d3:3c:ab:
54:0c:71:10:ee:25:62:d2:b0:8f:ac:85:f6:fa:62:22:f0:57:
50:f8:ac:de:ef:da:d0:5a:20:60:67:16:f8:32:20:d4:66:e9:
20:22:59:e1:d0:63:f4:dd:dc:88:89:e8:b6:0c:88:dc:10:db:
3f:c2:16:a9:7a:57:4e:b5:99:42:e7:93:f1:a9:e4:49:74:54:
88:75:c7:3b:5e:28:2f:6d:b9:4b:b7:af:3a:45:ff:0c:1e:b1:
53:8b:7e:af:3c:17:9b:2c:4a:54:c8:80:5b:dd:1c:84:03:83:
4c:89:19:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:14 2024 by rpki-client on console-ams.rpki-client.org