Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/m0u4s6WWxAbjBacpXcsTt0w7Es0.roa
File: m0u4s6WWxAbjBacpXcsTt0w7Es0.roa (raw, json)
Hash identifier: y9pYM3m5Y2J7WMUVPJPJB+xZZord05VNGEHg/OeqrL4=
Subject key identifier: 9B:4B:B8:B3:A5:96:C4:06:E3:05:A7:29:5D:CB:13:B7:4C:3B:12:CD
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE913BE04BB62B470D7E57E61451E
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/m0u4s6WWxAbjBacpXcsTt0w7Es0.roa
Signing time: Sun 01 Jan 2023 10:05:15 +0000
ROA not before: Sun 01 Jan 2023 10:05:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209083
IP address blocks: 2a0e:800:ff00::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e9:13:be:04:bb:62:b4:70:d7:e5:7e:61:45:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b4bb8b3a596c406e305a7295dcb13b74c3b12cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ac:9e:1c:1a:64:44:0c:4e:fd:b2:cc:4b:f5:
01:e2:79:63:4f:70:9a:7c:71:1b:79:ef:bc:70:6f:
e0:57:de:02:76:d5:5a:36:d4:a1:ae:4e:da:71:44:
20:e7:41:5d:04:4e:66:61:fe:98:db:1f:f4:7e:d1:
c5:91:0d:eb:fe:c8:f2:b6:25:ad:ea:4d:26:10:72:
8d:f0:53:27:f0:29:c0:0c:f9:57:b6:74:81:9a:0a:
dd:59:ef:e2:68:d2:ae:65:4e:92:75:17:54:47:ea:
ba:34:66:cc:17:75:8b:f2:99:21:d4:c5:00:bf:34:
5b:90:f1:60:b3:80:42:3d:dd:84:c6:6a:b2:1f:90:
84:fe:a2:c5:e5:fd:68:28:90:a4:db:49:2b:4a:16:
a2:ba:a8:65:b1:0c:a9:a0:47:22:97:03:10:32:fd:
e4:2b:d2:b2:e5:8b:53:d9:b3:b8:72:d2:84:27:41:
27:d2:e0:bb:38:fc:66:df:d8:8f:6c:85:87:36:88:
14:f9:e5:2b:3d:2b:83:d7:7f:b3:51:ec:86:8c:74:
78:9e:95:04:5f:6b:85:44:df:c3:92:3d:91:da:9e:
37:15:1c:e4:66:d1:ba:32:a7:89:41:6a:ce:ca:2f:
d3:59:d1:61:af:fe:15:f1:81:7c:c1:23:07:62:e7:
1c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4B:B8:B3:A5:96:C4:06:E3:05:A7:29:5D:CB:13:B7:4C:3B:12:CD
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/m0u4s6WWxAbjBacpXcsTt0w7Es0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:800:ff00::/44
Signature Algorithm: sha256WithRSAEncryption
27:e2:76:46:ae:7e:a0:d3:2b:59:01:9d:a8:88:cb:4a:f4:e6:
62:1a:eb:42:a4:89:0f:12:f0:18:1b:af:4e:e7:cb:a2:af:37:
fb:fe:ed:2a:04:1b:94:bc:d2:a2:27:bd:ef:e4:05:49:88:38:
ed:fc:7c:92:56:ec:3a:0e:82:da:13:ce:c0:5d:f6:d4:5b:a9:
97:94:e4:d8:ad:af:1c:c8:31:04:c3:26:b9:75:53:62:7f:ba:
08:48:43:32:1e:45:e9:ef:6e:9e:ad:60:f3:3f:d7:87:f1:3d:
bc:ab:02:3b:bc:ee:3f:10:80:68:c0:91:16:f7:fc:a9:27:82:
b6:8e:54:be:26:95:7c:39:17:f8:d9:21:54:a8:8c:97:d0:27:
26:e2:a4:8a:30:13:13:ff:df:7b:86:39:31:b1:74:13:c1:04:
c5:de:c3:c8:f2:cc:e5:11:7c:70:f4:ce:7c:48:f1:2a:0f:7c:
20:73:ff:c7:a8:a5:c7:fe:ca:78:61:9f:ee:99:0c:0a:08:48:
40:0d:93:de:35:e5:d1:cd:a6:5d:6f:69:66:e2:21:74:f9:a5:
73:2d:47:c5:3d:0b:8b:24:11:5f:63:c6:c4:a0:b4:6c:91:ce:
60:7e:2d:91:a2:88:4b:fe:b7:e9:07:09:45:86:6d:83:0a:c9:
8e:1c:06:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org