Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5TxGW6_mQ_VF3XYE5jrmcacG5J8.roa
File: 5TxGW6_mQ_VF3XYE5jrmcacG5J8.roa (raw, json)
Hash identifier: XMN9VGVk8lxC1bXEYDI3/SRDQJu5HqTYoIptOTGJchI=
Subject key identifier: E5:3C:46:5B:AF:E6:43:F5:45:DD:76:04:E6:3A:E6:71:A7:06:E4:9F
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A456D6F3B3DD92E87D29598AFE2C
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5TxGW6_mQ_VF3XYE5jrmcacG5J8.roa
Signing time: Sun 01 Jan 2023 21:35:16 +0000
ROA not before: Sun 01 Jan 2023 21:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397519
IP address blocks: 2a01:488:bb0c::/48 maxlen: 48
2a01:488:bb1e::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a4:56:d6:f3:b3:dd:92:e8:7d:29:59:8a:fe:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e53c465bafe643f545dd7604e63ae671a706e49f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9c:6b:e2:e3:65:26:b1:bb:e8:0b:9c:20:45:
6f:79:dc:f5:90:9c:cc:a4:83:0c:87:78:42:5b:00:
a8:2f:21:d9:b2:aa:bd:d6:ee:8d:77:a2:58:d9:8e:
a9:9b:83:f9:25:22:57:6e:d4:6e:4b:dc:0c:48:e7:
46:0e:7d:8f:9c:2a:ae:63:28:f9:21:b2:54:9e:26:
38:06:9f:98:73:b7:ad:1a:87:d0:d2:cb:d4:a8:a6:
21:27:af:98:8a:4d:d0:0a:c3:80:79:9f:4c:23:64:
9b:30:b1:43:ec:a2:36:66:98:6a:52:10:cf:e1:30:
25:46:64:2a:19:83:87:4a:0e:43:90:de:8d:70:3c:
34:a9:97:e3:b3:93:3d:e0:8f:6c:c6:d5:4a:6e:da:
b9:85:7a:f8:0b:53:7e:c5:e7:b7:55:2b:f8:98:f1:
3a:4a:55:ae:38:86:d4:6f:5a:b9:47:cd:d3:dc:ff:
32:ff:c6:04:77:9b:e6:a6:68:cd:b9:93:47:2a:3e:
33:4b:4c:0f:6b:a3:95:2f:6f:9c:23:b1:27:66:fe:
68:a5:7a:f6:c5:56:5e:fe:9e:77:3f:9b:24:4f:6e:
1f:34:ff:3d:6d:ba:7c:76:cb:60:ea:cb:b0:eb:cb:
df:ad:8e:b0:41:6e:63:82:27:07:1d:cc:29:5e:56:
dc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3C:46:5B:AF:E6:43:F5:45:DD:76:04:E6:3A:E6:71:A7:06:E4:9F
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/5TxGW6_mQ_VF3XYE5jrmcacG5J8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb0c::/48
2a01:488:bb1e::/48
Signature Algorithm: sha256WithRSAEncryption
01:d6:cd:fa:17:28:63:44:10:60:54:06:bf:a7:5b:22:1b:e8:
95:72:26:01:7a:e9:97:d5:94:be:1b:8e:12:d1:f8:57:39:04:
ff:1e:27:34:e0:1e:a4:81:32:e1:aa:b9:bc:d3:c0:4b:ce:dc:
fa:68:7f:c2:7a:d3:9c:e9:59:b7:40:57:c1:60:1f:7b:bb:c8:
62:3a:28:df:ac:5c:30:6c:06:ba:c5:02:63:dc:93:9c:18:66:
53:34:c7:f2:64:45:44:db:49:16:dc:3a:57:bb:a1:9c:5a:74:
51:47:18:62:26:e1:75:26:a2:73:5c:60:37:73:fe:70:d2:04:
3f:c8:82:a6:96:8c:a8:3b:11:3d:c0:5e:b2:91:9c:0a:8c:ec:
ca:97:46:3f:84:cc:c2:b3:db:86:ac:b4:6e:8c:66:4d:8b:95:
3f:cf:c3:f3:85:fc:a7:96:e0:40:41:6f:44:29:4f:26:17:ff:
f0:6d:21:a6:b5:6c:0c:51:6d:a0:97:a8:29:e3:6a:e6:09:1c:
ea:7d:3d:4d:ae:1d:b2:3b:fb:13:ee:12:dd:ef:e8:e1:82:5a:
74:f0:a0:be:03:2d:36:a0:03:8a:c3:94:a8:bf:2c:83:eb:13:
df:34:05:f9:fd:33:d6:d9:d2:8a:5a:b9:fb:9d:e9:b8:10:da:
21:6c:b7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org