Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/4JbWyWTO__WZbl0i3Nocs044ZPQ.roa
File: 4JbWyWTO__WZbl0i3Nocs044ZPQ.roa (raw, json)
Hash identifier: 7KFMRJoPRR76GeRmCO7PopWMXckyVAfdhMHZAD0aCKY=
Subject key identifier: E0:96:D6:C9:64:CE:FF:F5:99:6E:5D:22:DC:DA:1C:B3:4E:38:64:F4
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A65CFB0DABAB54DFC5FB2A43EE08
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/4JbWyWTO__WZbl0i3Nocs044ZPQ.roa
Signing time: Sun 01 Jan 2023 21:35:17 +0000
ROA not before: Sun 01 Jan 2023 21:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397522
IP address blocks: 2a01:488:bb1d::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a6:5c:fb:0d:ab:ab:54:df:c5:fb:2a:43:ee:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e096d6c964cefff5996e5d22dcda1cb34e3864f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0f:dd:57:23:cd:03:9b:16:0c:7e:29:e1:9f:
cd:ce:3d:c4:c1:68:2a:d4:05:35:44:36:9c:d3:85:
45:22:4b:c7:6a:fa:08:b8:65:d4:f5:b6:f7:10:ce:
c3:d1:dd:f4:89:07:0f:5e:c5:9c:e1:a5:6c:f1:9c:
c6:6b:46:42:0e:9d:ca:f7:18:07:ba:81:74:80:38:
08:3b:2d:82:5b:b7:95:5f:37:bb:61:73:8a:ca:18:
a1:54:aa:18:00:48:c4:e1:7d:af:48:f7:8f:86:5c:
9d:4d:55:03:86:cf:f6:81:20:d7:74:0b:0c:0c:0f:
c0:14:ed:2e:1f:78:82:dd:e7:6c:b9:b0:8b:aa:a3:
d9:3a:58:b2:fd:c3:9d:49:19:5b:e2:8b:27:e6:a7:
ae:ee:35:37:15:10:51:39:bd:77:c8:57:69:b5:f1:
cb:a2:f0:cc:eb:0c:82:fe:1a:28:db:7f:c9:80:fd:
03:3e:80:d1:39:bf:b2:ad:a4:41:04:a7:2b:64:ec:
c9:af:22:fe:1f:9d:45:19:a1:9a:f5:be:95:ef:3d:
3b:8c:84:2c:0a:bd:c9:a5:61:f4:8f:8a:88:65:36:
6e:5c:68:14:b5:9d:9a:1a:c0:f6:3d:cb:ff:b8:30:
5b:31:e7:7c:a4:b8:0f:50:fd:e4:dc:8a:b3:f8:3b:
cd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:96:D6:C9:64:CE:FF:F5:99:6E:5D:22:DC:DA:1C:B3:4E:38:64:F4
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/4JbWyWTO__WZbl0i3Nocs044ZPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb1d::/48
Signature Algorithm: sha256WithRSAEncryption
2f:80:e1:28:3a:de:d0:44:7d:cd:21:5b:2c:8b:81:95:29:12:
7a:64:c2:f3:be:79:55:f3:11:d5:a8:ca:f4:11:0e:69:d8:63:
e3:05:54:fd:b8:51:8f:78:7f:67:ee:59:92:d1:a8:cb:5f:4e:
07:40:4e:db:18:cc:5d:1a:88:48:e6:5d:da:53:8e:64:64:fd:
e4:62:7b:1f:3a:b3:6f:16:c4:35:36:d9:b5:a6:b9:d7:58:e4:
8e:99:b3:02:1a:d8:1f:1b:f7:5a:96:fd:96:d5:6b:53:ae:af:
ab:81:7a:14:85:e2:cd:75:4c:f0:cd:26:3f:e6:c6:5c:70:92:
ab:59:fb:31:ae:24:d8:89:fa:d5:c3:2f:e8:5e:69:53:29:ea:
57:82:c2:a6:4b:d3:59:4d:c3:37:ce:8a:e5:1b:a0:a4:60:cf:
4d:ae:45:f4:8b:51:e8:34:e4:3b:bf:9e:21:90:da:cd:8b:58:
49:06:80:54:9c:36:a8:93:c7:cb:34:1c:90:ae:ee:49:09:28:
c4:f3:a5:54:ea:e5:ce:f2:fb:29:50:c5:4e:74:dc:a7:ca:e1:
39:38:a0:49:25:33:fc:7f:af:f2:13:24:ba:bf:a8:9c:22:76:
3b:b6:29:65:6e:9a:84:20:4e:c7:e2:15:d6:28:47:53:7d:27:
73:1a:b3:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org