Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/lX_YeDoge4rfZVOuhTRy7tNMh-4.roa
File: lX_YeDoge4rfZVOuhTRy7tNMh-4.roa (raw, json)
Hash identifier: S1o2JDoZdIdbfhYrU/ihZbjA47JLrpCKrZnh3dg6pNo=
Subject key identifier: 95:7F:D8:78:3A:20:7B:8A:DF:65:53:AE:85:34:72:EE:D3:4C:87:EE
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A5EEF1120BCB4F764A5B74DA2B36
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/lX_YeDoge4rfZVOuhTRy7tNMh-4.roa
Signing time: Sun 01 Jan 2023 21:35:16 +0000
ROA not before: Sun 01 Jan 2023 21:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397521
IP address blocks: 2a01:488:bb1c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a5:ee:f1:12:0b:cb:4f:76:4a:5b:74:da:2b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=957fd8783a207b8adf6553ae853472eed34c87ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:53:2e:23:09:86:62:7f:04:81:a9:17:42:8e:
f4:d8:a7:df:f8:1d:d9:73:27:b5:93:8d:07:b1:4b:
5e:35:9f:ad:8d:9e:d6:e7:6e:88:05:18:e2:15:de:
85:9a:20:6a:ca:2b:09:4a:1d:f1:f5:65:03:6f:59:
1e:1d:b7:5a:0c:6f:8d:e7:35:5f:f2:fe:5c:2b:44:
3e:a3:e0:34:fc:a0:e5:85:f4:d8:09:47:05:92:0e:
26:a1:cc:27:c8:11:b1:bd:77:e7:c0:e4:af:72:d4:
cd:92:ae:3b:76:7f:fe:90:6f:4f:96:35:e0:f0:66:
1d:c2:9a:38:7a:06:51:59:18:ae:e3:91:06:56:7a:
5d:96:7b:67:10:3b:d4:b9:2c:bf:be:e6:13:17:25:
cf:94:0e:d3:fa:4f:93:df:f9:af:63:05:3c:83:22:
13:ae:15:a9:a6:87:e1:01:a8:16:1c:da:f0:59:d1:
2c:9a:e7:93:9c:fa:84:90:41:43:d3:b8:df:5d:a2:
e3:be:2c:b6:1b:e0:e6:b6:f3:86:37:35:73:0d:74:
ef:5e:99:c3:56:2b:70:78:8a:6d:0d:80:a5:90:a1:
ec:e1:bf:64:bb:72:8f:e1:12:1a:cc:2c:13:83:4b:
f5:13:19:23:75:da:93:d8:2d:84:f9:31:49:d6:ac:
53:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7F:D8:78:3A:20:7B:8A:DF:65:53:AE:85:34:72:EE:D3:4C:87:EE
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/lX_YeDoge4rfZVOuhTRy7tNMh-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb1c::/48
Signature Algorithm: sha256WithRSAEncryption
1f:ca:01:85:bf:8c:bc:cc:6b:9b:8b:e4:43:2f:d1:36:5e:b5:
a9:dc:7c:d5:7b:f4:43:fd:17:15:d8:ea:fd:a9:91:06:10:ab:
c9:02:e7:0a:ba:e4:33:94:34:04:d5:67:3c:31:02:eb:7b:ae:
e0:4d:b9:79:e4:ba:d9:56:3d:bc:89:d8:7a:19:cf:dd:17:c4:
8d:a0:88:82:cc:f7:89:fc:fa:03:85:c8:58:66:8c:36:41:27:
6e:1f:10:e1:b2:0b:bf:7f:9e:3b:04:e1:c6:df:39:53:34:4b:
de:3e:26:5e:20:db:07:d0:98:dd:a4:64:de:f3:7c:50:86:28:
3c:7a:fa:e3:df:99:00:ff:40:f4:f4:8b:44:98:06:21:cd:34:
3c:d5:6d:cd:47:bf:cd:82:82:5e:af:50:9f:05:ca:aa:8c:55:
89:08:20:16:0b:9f:38:8a:09:ae:28:9c:78:bb:f7:bd:d4:7d:
8c:cd:dd:6a:a2:bb:67:52:8e:b8:b4:3d:d7:2a:22:42:75:d3:
5c:e3:b5:4e:fa:18:14:d5:d9:a2:be:e2:c5:41:61:f6:b0:97:
bc:20:dd:5e:1e:9b:27:b0:3d:e3:8f:92:6b:a7:3c:0a:87:db:
d5:f2:fb:78:17:77:96:fe:f4:08:8e:0c:9f:61:f0:b7:5e:40:
9f:92:2a:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org