Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/0IeVYcIuOVP93Pu5_QLOOCNAs1Y.roa
File: 0IeVYcIuOVP93Pu5_QLOOCNAs1Y.roa (raw, json)
Hash identifier: Y35lIAW51HbSTRtbIG8RxQt3JrYQ2SOrWgoX/X9/g5A=
Subject key identifier: D0:87:95:61:C2:2E:39:53:FD:DC:FB:B9:FD:02:CE:38:23:40:B3:56
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 01856F66C59CDFF198E15AEE0885DFC076C0
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/0IeVYcIuOVP93Pu5_QLOOCNAs1Y.roa
Signing time: Sun 01 Jan 2023 22:14:44 +0000
ROA not before: Sun 01 Jan 2023 22:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208545
IP address blocks: 2a01:170:1050::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:c5:9c:df:f1:98:e1:5a:ee:08:85:df:c0:76:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 22:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0879561c22e3953fddcfbb9fd02ce382340b356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:04:b5:85:69:41:0f:29:c9:4b:f8:bb:a5:00:
e4:db:d5:83:d4:a3:6d:c0:25:90:8e:60:9f:07:c8:
ab:0e:32:36:8b:a4:0e:cf:1f:cb:c5:68:e4:15:1a:
65:3e:e4:91:85:98:b9:74:5b:b8:bc:91:29:0a:e0:
63:f6:13:e4:2b:f3:8e:96:30:65:99:95:41:b4:3b:
54:04:c1:f1:d1:24:0e:2d:dd:83:64:b3:13:42:e2:
15:da:86:5f:63:ca:c9:92:dd:b8:82:a6:c3:ff:19:
89:a4:90:b5:35:90:f7:39:93:a6:c2:35:2a:d4:ad:
d9:b2:a5:4d:ad:b2:9b:e4:f7:ff:07:6d:ef:0b:17:
89:65:a3:50:9b:97:6a:31:2a:6d:07:e6:86:26:66:
82:ae:5c:08:c0:91:25:bd:51:45:44:6d:a5:7f:06:
2f:cc:a0:7b:5c:af:83:ba:1c:87:c9:3d:29:39:6d:
c3:cd:f5:46:c8:e9:4e:5b:31:d6:98:f3:df:fd:27:
66:3d:bd:17:5d:3d:60:a9:25:cf:f7:47:7b:80:3b:
6a:57:25:4e:70:01:e7:2e:19:e2:d8:5e:bc:87:b9:
0c:76:3a:d1:db:2d:be:6c:19:f3:a0:89:0b:9c:d2:
67:1b:2a:8e:85:b9:02:51:48:10:9b:a3:80:9a:a3:
d5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:87:95:61:C2:2E:39:53:FD:DC:FB:B9:FD:02:CE:38:23:40:B3:56
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/0IeVYcIuOVP93Pu5_QLOOCNAs1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:170:1050::/48
Signature Algorithm: sha256WithRSAEncryption
5e:14:76:87:eb:22:68:25:66:3a:9f:65:c6:ad:b7:13:a2:61:
a3:0d:9d:65:de:35:92:79:b6:fe:7c:ba:b8:1c:8c:74:16:79:
09:e2:d7:ca:39:02:fb:19:46:fc:2a:87:37:bf:48:d6:49:90:
39:02:41:e6:2b:6e:eb:18:54:4b:d1:a9:17:59:19:08:dd:1e:
bd:91:f8:1a:50:78:9d:af:ab:ac:34:4a:3c:91:05:8d:44:2d:
f5:42:92:1d:18:ea:67:74:cd:1a:26:cb:e6:fd:81:53:6c:d8:
b0:7c:fd:64:54:a5:b1:5a:dd:37:65:f4:ae:d8:da:af:f6:31:
87:dc:20:bf:15:18:37:94:7f:55:d5:2c:f5:95:69:f5:a8:93:
fd:e5:7a:7e:86:4b:38:f1:37:f5:78:c9:4c:d4:f5:48:10:50:
fc:f2:32:ec:a8:67:05:17:82:d9:33:47:b3:7a:fe:11:67:7f:
44:b3:a3:7c:06:e3:fb:a8:23:db:bd:3d:c5:9f:c8:29:81:bd:
ee:bf:72:de:e2:a7:33:f9:05:dd:d6:08:73:90:54:11:ae:07:
f1:2d:6a:df:9a:c5:64:1e:48:80:52:1e:85:5d:2f:53:8f:f7:
7a:4d:69:9e:ed:3e:1d:27:f6:7d:54:dd:b5:fe:d4:af:30:e6:
d2:5c:c2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org