Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/zxFxgPv7omHmJIjhQvlhHE-jBAU.roa
File: zxFxgPv7omHmJIjhQvlhHE-jBAU.roa (raw, json)
Hash identifier: fEUGym/y3fK18Mp/Ng6ZuPkP4rsLzheNacGp/WFefD4=
Subject key identifier: CF:11:71:80:FB:FB:A2:61:E6:24:88:E1:42:F9:61:1C:4F:A3:04:05
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A90CF998BFD9F001EEBE6F42D13E
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/zxFxgPv7omHmJIjhQvlhHE-jBAU.roa
Signing time: Sun 01 Jan 2023 21:35:17 +0000
ROA not before: Sun 01 Jan 2023 21:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398105
IP address blocks: 2a01:488:bb10::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a9:0c:f9:98:bf:d9:f0:01:ee:be:6f:42:d1:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf117180fbfba261e62488e142f9611c4fa30405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:78:c8:61:1c:5c:03:ac:e1:c9:f3:3a:61:
d9:15:86:ac:ff:12:1b:56:fd:e7:c9:db:44:ba:5f:
ec:d1:d8:8d:c7:f8:f8:fa:23:e4:5d:a0:84:8d:e6:
1b:5e:ed:c4:c2:fd:84:ac:53:79:b9:59:7e:8c:66:
75:a7:f3:a7:13:58:29:6d:cb:93:21:81:90:ec:d1:
25:2a:af:ef:ad:cd:04:ae:9f:ee:ac:53:f0:b5:e3:
4b:ba:ca:a5:c1:72:26:8d:dc:b8:4b:4c:c1:eb:e7:
c1:8b:e4:b3:e7:5f:77:80:93:ed:1d:8d:cf:ab:fa:
3d:6a:f0:46:7b:74:5a:9c:d2:0d:c6:b0:9d:93:5c:
23:ea:a0:79:71:4f:9f:09:57:8a:b0:c3:d5:13:2c:
fe:ec:d9:b7:5c:ab:b3:cb:a3:2d:81:05:ef:f3:66:
16:f7:4d:e3:1b:2b:8f:36:33:bd:64:74:12:75:fd:
c1:76:e0:9c:4f:89:c5:d3:a7:be:78:a0:4a:92:ac:
ce:cc:65:27:3e:78:12:17:3f:16:b2:94:8c:3e:65:
2a:e9:18:1b:73:5e:72:85:ea:3a:6d:09:b3:87:da:
02:48:0d:6f:e7:26:b9:69:25:bc:7f:fd:b9:a4:75:
0e:ef:ba:1a:6e:b1:c9:84:0f:3c:a5:e2:6f:4a:cd:
ab:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:11:71:80:FB:FB:A2:61:E6:24:88:E1:42:F9:61:1C:4F:A3:04:05
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/zxFxgPv7omHmJIjhQvlhHE-jBAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb10::/48
Signature Algorithm: sha256WithRSAEncryption
23:12:a2:e8:92:78:6a:66:c4:ff:b8:12:a5:dd:47:b3:b2:06:
d6:a7:3d:9b:90:3c:a9:e7:6f:35:c9:48:1f:17:7a:19:d7:1d:
f5:64:1b:af:d1:da:dd:47:72:27:a7:6b:be:33:a2:b7:43:02:
4c:5d:c9:70:00:b7:52:9f:63:77:e8:e5:39:c2:8d:0c:71:eb:
dc:08:79:a7:30:e9:75:3a:eb:01:35:cd:03:eb:1b:b7:9c:1c:
ea:78:b8:35:7a:56:f6:ac:c5:57:dd:be:a1:8e:51:49:ae:7c:
3d:e2:41:0c:a4:e3:02:68:93:a7:3b:1b:e7:b9:75:8d:f5:69:
b7:67:c2:5e:cc:f4:c5:09:d5:93:1d:0f:ca:2f:b3:33:ba:3e:
54:ed:da:04:c6:57:a5:79:f0:8b:27:d5:88:fd:09:ad:fa:9e:
3f:2b:98:98:ea:2e:ab:88:ee:8f:03:4b:0f:98:a2:71:7b:72:
1f:ed:90:5f:37:c9:4a:ce:f4:fd:0d:a5:75:2e:9e:bb:d3:e8:
76:be:58:12:33:31:4d:76:20:c7:12:bd:bb:a6:ef:98:10:50:
b5:b6:b1:e0:69:c2:96:b6:ba:86:31:03:20:78:47:43:35:53:
8b:d3:b2:dc:4e:92:0d:ed:02:6e:8a:d8:5c:b3:d1:f5:1d:ce:
61:49:5a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org