Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/IU5kxC5RH5RCj3dzaEv523AWieA.roa
File: IU5kxC5RH5RCj3dzaEv523AWieA.roa (raw, json)
Hash identifier: yzV3lNCdsUTSlWfruMyaB6Xlu2feynJPDoKXAy0ijcI=
Subject key identifier: 21:4E:64:C4:2E:51:1F:94:42:8F:77:73:68:4B:F9:DB:70:16:89:E0
Certificate issuer: /CN=17526ccac4f9064e058549b30172c84439787fbc
Certificate serial: 018FC8420C70DBF1AC30E0B1BAE4C9DD52DB
Authority key identifier: 17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/IU5kxC5RH5RCj3dzaEv523AWieA.roa
Signing time: Thu 30 May 2024 06:48:42 +0000
ROA not before: Thu 30 May 2024 06:48:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206074
IP address blocks: 2a0c:b6c2::/35 maxlen: 35
Validation: Failed, certificate revoked on Mon 03 Jun 2024 07:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:42:0c:70:db:f1:ac:30:e0:b1:ba:e4:c9:dd:52:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17526ccac4f9064e058549b30172c84439787fbc
Validity
Not Before: May 30 06:48:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=214e64c42e511f94428f7773684bf9db701689e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4a:5c:f7:c5:d5:68:b8:fb:5b:2e:1f:c9:6f:
c0:de:f3:ff:59:ac:d6:e4:05:aa:e2:da:1d:ea:4a:
72:95:45:5f:db:22:fd:02:5a:5a:76:36:68:b9:ae:
5d:c3:cb:f6:da:83:77:a9:19:6e:db:3f:88:6a:93:
ad:ff:a5:74:dc:fc:bd:d8:0a:84:00:be:77:56:5a:
bf:5f:17:77:79:97:0e:15:bc:45:6c:f7:28:35:cf:
1b:7b:e6:d4:f6:ab:01:20:0a:94:b8:b7:f5:c2:82:
97:b2:25:f7:8a:5e:78:ca:56:3a:48:47:4b:b1:48:
c9:82:59:86:ea:c4:55:b7:ef:63:4d:9f:12:8e:33:
7d:a9:c9:0c:f6:e8:49:10:9e:29:3f:c0:64:1d:0d:
35:63:ab:38:00:a4:ff:07:2c:e3:64:70:f0:99:12:
10:5e:61:15:82:04:aa:f5:be:35:a5:66:75:19:d8:
78:79:4f:01:a4:02:36:e0:f1:f3:c8:f5:67:a2:46:
f3:35:02:2a:3a:1e:75:5e:88:51:b4:9e:a9:11:b6:
90:ff:ce:41:18:98:79:0a:f8:6d:c4:60:59:50:e8:
20:ff:af:42:59:2c:f2:a0:8f:35:bf:28:a8:ae:06:
9b:c1:39:5d:c8:13:4b:97:53:48:0d:c0:a9:0d:ca:
aa:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4E:64:C4:2E:51:1F:94:42:8F:77:73:68:4B:F9:DB:70:16:89:E0
X509v3 Authority Key Identifier:
keyid:17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/IU5kxC5RH5RCj3dzaEv523AWieA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/F1JsysT5Bk4FhUmzAXLIRDl4f7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b6c2::/35
Signature Algorithm: sha256WithRSAEncryption
0c:1e:6a:b2:75:ec:30:b1:ae:d2:bf:24:6d:e9:22:53:18:59:
df:17:b0:42:6e:89:53:4c:03:1b:fd:ec:58:8a:ac:12:8f:39:
dd:46:b0:e7:d5:28:69:3a:c7:c5:ce:7a:3e:f2:7a:6b:14:fe:
66:17:45:44:ef:b5:fb:1c:80:c0:ed:95:33:66:91:e3:76:0a:
ea:70:52:ee:28:17:30:99:c2:6e:21:d9:ab:b6:5d:25:82:ee:
fc:f4:d6:3b:62:98:57:ef:6e:89:0c:53:a0:79:32:f9:76:3f:
d6:70:c8:dd:86:2d:a9:db:de:4f:d1:d9:02:0d:f9:d4:b1:25:
1d:f5:e4:bb:4b:a3:47:3c:82:1c:70:ad:b1:ca:b1:1d:c5:04:
87:b8:ea:2e:04:3b:03:a0:52:21:8e:a7:a3:dd:8e:eb:9f:99:
42:34:90:c2:c9:44:a0:94:c4:b9:12:48:4c:ee:f0:74:98:a3:
1c:ef:84:73:6f:f9:6d:12:70:59:d7:a6:ad:d6:5e:32:54:17:
bd:b1:65:80:10:2f:02:ea:fc:a2:ef:0b:44:07:ba:7c:85:8f:
f3:15:cf:ac:aa:5e:25:43:da:08:23:94:b4:c9:de:c8:29:a9:
76:7d:3e:d7:31:ab:a2:ac:dc:3f:05:87:f4:ee:f9:b7:97:e6:
76:53:e8:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:38 2024 by rpki-client on console-ams.rpki-client.org