Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/dSsgM8Q_jGhwttDRQ7CenJyDZEc.roa
File: dSsgM8Q_jGhwttDRQ7CenJyDZEc.roa (raw, json)
Hash identifier: ExbuuHfyUXx3t5gZyqSdzglAdUXvKotsrq25uhwBaJk=
Subject key identifier: 75:2B:20:33:C4:3F:8C:68:70:B6:D0:D1:43:B0:9E:9C:9C:83:64:47
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A0F68AA1FB329B1521B66F04FDC4
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/dSsgM8Q_jGhwttDRQ7CenJyDZEc.roa
Signing time: Sun 01 Jan 2023 21:35:15 +0000
ROA not before: Sun 01 Jan 2023 21:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397513
IP address blocks: 2a01:488:bb0e::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a0:f6:8a:a1:fb:32:9b:15:21:b6:6f:04:fd:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=752b2033c43f8c6870b6d0d143b09e9c9c836447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ed:79:99:af:72:17:88:85:7c:1e:3a:c1:2a:
1d:4d:39:9d:8e:a3:70:e6:71:b1:0b:29:80:25:92:
d0:64:23:62:ed:7c:5a:f0:17:bd:59:15:b0:94:79:
60:a0:95:c5:5a:7e:dd:8e:dc:9f:49:63:2d:f1:d0:
b0:68:35:b3:d6:c0:03:27:44:32:55:79:f7:a6:1a:
8c:32:00:f2:a8:93:69:51:66:f1:3c:50:67:76:bf:
94:34:04:e0:08:04:f9:6a:02:fe:5a:87:d8:5c:70:
9f:90:2f:9f:24:08:de:e3:28:c7:84:05:46:ff:fb:
7f:0c:66:76:ac:35:a7:0c:c8:c1:68:7d:8a:3b:6d:
c0:f4:f8:a2:0f:39:68:a7:b4:09:61:04:de:a7:a9:
3a:81:01:18:75:4c:82:2a:87:e8:97:2d:19:96:f1:
72:bc:ba:81:c9:81:36:a0:7b:0a:4b:72:de:a0:10:
f3:7b:f9:4f:61:3c:d3:1b:90:2d:86:66:7d:69:b0:
2f:e6:2c:ed:81:a1:24:b9:37:0d:f0:e7:26:f6:9f:
79:8d:c8:b8:0c:86:d6:fa:be:7e:98:b1:bd:c1:41:
bd:02:b8:21:17:23:5a:3f:0d:f0:6b:93:76:d6:4e:
66:b8:80:c7:41:e7:7a:c4:29:07:3e:40:b2:98:42:
da:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2B:20:33:C4:3F:8C:68:70:B6:D0:D1:43:B0:9E:9C:9C:83:64:47
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/dSsgM8Q_jGhwttDRQ7CenJyDZEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb0e::/48
Signature Algorithm: sha256WithRSAEncryption
61:65:fd:a8:b7:44:de:4b:4d:c7:d9:eb:5e:42:85:25:a9:16:
59:a8:58:a9:5b:4b:11:c4:ad:66:e0:05:26:66:d6:5e:26:3e:
9e:6a:18:26:dd:62:f1:ea:d2:e2:ef:ec:b2:c0:33:60:f7:26:
8b:56:0b:1e:b1:5f:d9:e2:12:30:85:99:84:10:33:32:0f:70:
40:b6:37:d5:21:73:85:d5:21:81:3c:63:80:09:45:25:c8:00:
a9:f9:24:04:d5:e4:43:e9:e3:4d:82:46:28:06:98:6e:fd:18:
44:8b:1a:c1:e5:86:d9:db:9f:49:63:6d:45:8a:1d:b9:02:22:
6e:7f:b6:35:fa:84:51:51:e6:97:5c:5a:92:0e:63:dd:24:6d:
91:a6:33:87:7d:9d:20:e6:c0:5e:4b:8b:2b:25:c1:df:1e:7c:
f7:cb:d0:23:ba:5a:03:e1:36:41:32:59:6c:0f:9e:82:fe:8b:
8a:ed:c3:28:77:f7:f9:05:ef:fd:c4:d0:d8:6d:6b:d0:6e:f4:
63:8f:63:31:17:62:63:57:45:16:06:20:d9:25:1c:36:b2:67:
6d:cb:b2:f5:27:05:a5:f7:2b:ab:70:11:99:35:35:0f:dd:ae:
e2:79:71:e1:10:f2:ae:ba:d1:a2:99:44:0b:1f:88:cb:eb:fc:
23:9d:c3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org