Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5JPw3UY1fnT9DyvZ5DqyxwYB9RM.roa
File: 5JPw3UY1fnT9DyvZ5DqyxwYB9RM.roa (raw, json)
Hash identifier: Fet5HxnI2sEiutseIusgOYhWhLD0rInnjb+PzIx85Q4=
Subject key identifier: E4:93:F0:DD:46:35:7E:74:FD:0F:2B:D9:E4:3A:B2:C7:06:01:F5:13
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A15AA855473FF92780C326C5A5D7
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5JPw3UY1fnT9DyvZ5DqyxwYB9RM.roa
Signing time: Sun 01 Jan 2023 21:35:15 +0000
ROA not before: Sun 01 Jan 2023 21:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397514
IP address blocks: 2a01:488:bb15::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a1:5a:a8:55:47:3f:f9:27:80:c3:26:c5:a5:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e493f0dd46357e74fd0f2bd9e43ab2c70601f513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:62:4f:06:88:f8:1c:19:ea:ea:c5:02:3d:
6a:3d:01:42:6c:66:9f:ef:6a:44:f9:2a:5f:e5:71:
60:ac:6c:e5:a7:22:b6:e9:23:87:3e:d8:8a:40:ef:
1a:bb:26:52:98:87:25:77:f4:fe:bd:c7:3a:42:01:
04:81:7a:d9:12:2b:c1:b1:7d:a5:6a:15:33:5b:e6:
78:5d:79:f5:09:ab:1c:11:4b:8b:c4:8d:9b:8a:36:
3f:83:b5:d1:ae:d7:14:bd:0a:ea:a0:a7:e1:df:e0:
ad:43:d8:cb:fb:5f:04:66:ed:6f:25:fd:40:c8:03:
7e:da:1f:1b:a1:c0:32:0d:87:4f:6f:0c:7d:62:84:
0a:6e:15:01:2e:9f:d5:b1:15:25:3f:4b:c3:99:da:
96:f7:0a:9d:d4:02:f6:05:25:57:38:3b:7b:f8:bf:
04:a0:20:08:2f:4e:2f:dc:2f:36:41:f4:c5:3c:41:
d2:45:83:fa:c5:e3:e2:06:fa:a5:a8:b5:78:b2:e1:
19:49:0d:29:86:f7:f5:68:ac:5d:57:0c:5f:c2:e9:
da:13:7c:6c:aa:32:04:83:03:28:19:63:02:a8:09:
83:bb:91:41:8f:4a:40:91:99:e7:ca:37:39:fa:8a:
59:83:73:6c:24:89:e5:ad:75:6c:15:bf:bd:de:5a:
52:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:93:F0:DD:46:35:7E:74:FD:0F:2B:D9:E4:3A:B2:C7:06:01:F5:13
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5JPw3UY1fnT9DyvZ5DqyxwYB9RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb15::/48
Signature Algorithm: sha256WithRSAEncryption
0b:9d:e8:1b:71:b4:0f:e1:cd:a3:9d:63:80:b5:b7:5b:7b:1e:
a3:50:76:bf:bb:a9:ed:65:eb:0c:29:b2:f4:26:72:7a:f0:be:
7c:d1:04:66:bd:d5:9b:64:39:7a:10:fd:a5:c3:a0:f3:8d:01:
73:2d:9e:09:82:ad:de:8e:f7:a9:60:ef:84:0e:60:1f:c3:b9:
e8:78:ed:a2:bf:c0:9e:78:ef:c8:0c:99:5d:d1:2c:bb:ec:0e:
40:7b:9b:63:37:79:81:a4:3f:cf:03:4c:54:52:27:1b:0c:64:
51:d9:f6:57:5a:b8:04:01:1b:8d:cb:51:78:ff:27:9f:88:f2:
c4:36:a6:b3:7d:3f:27:a2:98:3f:dd:b9:97:d0:11:9b:d8:9a:
52:9a:9b:e1:2c:09:50:b8:df:8d:2c:61:c9:2c:ee:5c:b7:19:
3c:af:6e:16:39:7e:19:6d:53:8e:3d:f1:99:f9:de:d5:8b:91:
fc:77:b3:3a:15:9e:f3:a5:79:55:89:55:18:90:b7:65:64:75:
6b:7f:b3:c1:69:5c:d3:57:21:2e:e5:99:f7:7a:56:2a:a7:29:
a2:85:0e:a1:7b:cb:a3:19:51:4c:0b:a5:df:2e:f4:82:7c:46:
0c:ad:47:80:3e:ed:e8:54:2d:ea:53:8c:a7:7b:74:f8:ee:99:
0a:fc:63:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org