Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Bv8SnnmNUj_wMP2azO5mIF2WXNU.roa
File: Bv8SnnmNUj_wMP2azO5mIF2WXNU.roa (raw, json)
Hash identifier: iXY8b17jYPbnudFdA1R9TYPhnI7em3AN1ULHOMZvrII=
Subject key identifier: 06:FF:12:9E:79:8D:52:3F:F0:30:FD:9A:CC:EE:66:20:5D:96:5C:D5
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE5C6A7DD3C822CDA102AB5B6106B
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Bv8SnnmNUj_wMP2azO5mIF2WXNU.roa
Signing time: Sun 01 Jan 2023 10:05:14 +0000
ROA not before: Sun 01 Jan 2023 10:05:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139833
IP address blocks: 2a0e:800:6666::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e5:c6:a7:dd:3c:82:2c:da:10:2a:b5:b6:10:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06ff129e798d523ff030fd9accee66205d965cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:86:29:85:1b:5a:0c:bb:e8:a0:ef:63:55:b8:
d0:56:b7:48:ab:bc:ca:92:80:c5:6c:e8:97:8b:fa:
69:ba:1b:df:22:c3:65:3d:25:dc:c4:f3:8b:73:35:
ff:22:3e:7f:1f:dc:f4:1f:89:0e:a0:e9:8f:b2:03:
44:de:1f:ef:c9:c0:06:51:93:9d:9e:c1:9c:2a:f2:
50:34:a9:0f:7a:28:75:b5:19:cc:bc:4e:a8:84:42:
05:28:8c:47:c0:f5:ce:05:b8:82:32:f8:c8:d5:f0:
7d:15:b0:04:79:43:28:92:dd:e6:1d:65:e0:cc:8e:
7d:69:67:ae:31:72:83:ad:cc:96:38:70:28:4f:d2:
88:32:f9:0f:11:09:25:1f:2e:f3:3f:a7:37:8c:bc:
41:2f:43:91:e8:75:19:2f:55:b9:97:4e:51:81:11:
54:ed:b0:9a:8b:43:74:20:70:1f:ac:73:f4:8d:bb:
af:e5:e1:ae:cf:93:61:06:71:d5:31:f8:9b:02:b7:
3e:6f:72:53:bb:68:2d:43:d1:23:3c:37:1d:b9:03:
c5:be:bf:fc:6f:4e:f1:e6:02:01:6c:2d:bd:e5:47:
19:52:ac:d4:75:92:be:11:9d:4e:1b:7b:25:32:01:
c6:99:7e:26:f4:ba:66:0b:2e:99:75:48:df:16:ad:
11:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FF:12:9E:79:8D:52:3F:F0:30:FD:9A:CC:EE:66:20:5D:96:5C:D5
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Bv8SnnmNUj_wMP2azO5mIF2WXNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:800:6666::/48
Signature Algorithm: sha256WithRSAEncryption
6e:99:26:2f:5f:1a:c2:10:a5:56:79:09:a0:f0:ab:32:d2:4b:
67:b3:87:61:fa:60:62:b7:f2:90:5d:64:b4:e8:a3:33:3b:78:
34:93:ff:0d:af:75:3b:5f:12:c8:0e:ed:c7:ff:fb:28:7c:a0:
36:ca:47:f2:49:ee:46:8b:ae:68:8b:cc:18:ae:63:c7:e1:4e:
18:ed:34:00:f2:cd:66:e5:15:96:f5:f1:87:fa:7c:a2:f0:ea:
45:00:9b:0d:3d:41:51:69:d4:ac:e0:dc:8b:4d:fa:70:20:99:
57:06:89:ac:74:53:ce:46:71:d3:d7:24:be:49:64:df:c7:18:
4e:ca:6a:c3:f0:16:aa:c2:0d:8d:88:25:2f:87:fd:02:bb:99:
36:26:8e:4c:eb:ce:c4:c4:eb:82:90:ce:26:f8:a2:4c:4e:bd:
ec:dc:74:b9:4b:5a:c6:a2:46:24:37:29:90:9f:9a:dd:d7:59:
ac:f8:16:83:3a:2f:b1:22:09:55:4c:44:a4:fc:30:a0:e2:20:
d9:21:d8:bb:95:e6:e5:ba:ed:2a:da:25:2e:33:c2:b8:d1:6c:
2f:7f:48:5b:3e:e5:ec:ab:29:4e:5d:80:63:8c:c3:dd:3c:05:
e3:e3:d1:d8:80:f5:29:07:ef:bf:83:82:17:f7:f2:b6:d5:47:
3f:40:ef:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org