Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/_sCDZeEdYct1F5M_t11lk037NNI.roa
File: _sCDZeEdYct1F5M_t11lk037NNI.roa (raw, json)
Hash identifier: 5rDQ7mOVlnbu2iXr0qcAK6ztop+mbidL45aqWdwkvSk=
Subject key identifier: FE:C0:83:65:E1:1D:61:CB:75:17:93:3F:B7:5D:65:93:4D:FB:34:D2
Certificate issuer: /CN=17526ccac4f9064e058549b30172c84439787fbc
Certificate serial: 01865986355825571007BB9AEFF963095353
Authority key identifier: 17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/_sCDZeEdYct1F5M_t11lk037NNI.roa
Signing time: Thu 16 Feb 2023 09:20:13 +0000
ROA not before: Thu 16 Feb 2023 09:20:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 2a0c:b6c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 03 Dec 2023 10:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:86:35:58:25:57:10:07:bb:9a:ef:f9:63:09:53:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17526ccac4f9064e058549b30172c84439787fbc
Validity
Not Before: Feb 16 09:20:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fec08365e11d61cb7517933fb75d65934dfb34d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:00:a9:01:3a:59:9f:a2:7b:f1:b1:56:bd:
a6:0b:20:64:00:6d:39:22:5d:e0:dc:a0:87:eb:10:
22:73:9a:af:65:93:e6:56:5e:96:51:63:71:c2:e6:
09:61:8f:99:5a:65:6c:31:41:b9:71:ee:57:dd:8f:
6f:93:5e:11:dc:b3:92:22:3a:3e:ba:d0:1d:7e:8e:
ed:6e:32:f0:13:14:8d:dc:be:32:4f:b4:a8:fc:d4:
fc:ab:29:c9:40:9c:6b:1f:dd:a8:a7:0c:20:eb:9d:
be:d1:96:42:68:a0:14:b1:97:c4:af:4c:37:d0:81:
0e:0b:2b:61:55:1b:7d:f4:9b:32:66:97:67:9a:b9:
3a:cf:cc:ff:45:81:d9:da:3d:ce:d9:72:68:41:e5:
c8:59:c5:3e:40:33:67:9c:fd:06:a7:ab:a0:c9:70:
20:43:43:c4:28:89:55:78:10:04:c3:0f:89:46:bc:
30:8e:a9:5e:91:6a:9a:88:43:e2:c0:56:1a:35:fb:
c7:55:d8:c2:c2:29:d9:35:0e:33:f0:b2:80:17:21:
72:eb:fb:de:16:a1:95:e9:fe:03:3f:47:8a:e5:54:
e9:0c:5c:27:af:dd:00:ae:3e:06:34:00:41:d2:32:
ff:b7:4a:92:c9:75:49:5b:1e:c6:b6:fe:75:5f:63:
ac:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C0:83:65:E1:1D:61:CB:75:17:93:3F:B7:5D:65:93:4D:FB:34:D2
X509v3 Authority Key Identifier:
keyid:17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/_sCDZeEdYct1F5M_t11lk037NNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/F1JsysT5Bk4FhUmzAXLIRDl4f7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b6c2::/32
Signature Algorithm: sha256WithRSAEncryption
c0:dd:16:b3:71:45:5a:d4:c6:27:b9:26:1d:e1:7f:14:f4:48:
a9:02:16:f4:0f:60:0b:a3:ae:74:0e:b4:00:c3:ff:66:46:3b:
e5:2d:77:c8:5d:48:13:f5:77:1e:a8:07:b6:45:98:8b:22:05:
99:9e:e0:1d:ad:ee:e5:2c:18:d5:c0:7f:f3:62:96:5c:32:c0:
8b:46:2b:9e:58:b1:64:b1:49:34:b3:e0:c6:a9:c7:03:fd:2a:
ad:8b:2b:59:12:32:e9:c5:d8:f6:9f:9c:3b:c7:5d:fb:63:0c:
72:bd:66:1a:5c:36:c4:c7:d2:c8:c1:30:2d:0f:d3:31:a5:81:
39:2d:ee:04:fa:55:6e:8c:40:1f:ac:be:d2:d8:0d:fe:0d:18:
c6:65:dd:3c:2e:78:30:27:97:64:8a:c3:20:be:ca:ca:c8:ec:
6b:eb:c4:5f:9d:36:20:42:1f:06:5e:4b:3e:4e:95:6d:94:4b:
f1:8d:8a:d6:c3:f0:f9:c7:36:71:99:c5:b2:0d:a4:48:4b:c0:
46:47:fe:39:f9:c8:65:25:69:b7:ec:45:ac:0f:d4:e1:85:72:
66:d2:16:b0:42:6e:64:fc:20:4a:2a:6d:33:6e:f7:49:b6:da:
13:74:af:0c:18:1b:96:fb:5a:ae:f4:74:6b:fe:ef:ec:7d:6c:
ff:1b:16:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:15 2024 by rpki-client on console-fra.rpki-client.org