Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/pNJdO9DeL4KIU9QXjuWN0fQUuzQ.roa
File: pNJdO9DeL4KIU9QXjuWN0fQUuzQ.roa (raw, json)
Hash identifier: j6/pzwW06M0cRj2KGuKJ54ut3YW/aTlWEP88+SzPFzI=
Subject key identifier: A4:D2:5D:3B:D0:DE:2F:82:88:53:D4:17:8E:E5:8D:D1:F4:14:BB:34
Certificate issuer: /CN=a2d952245bb34e40cdab5d4b090143c0d8581390
Certificate serial: 01856F1D8F1826F244D468461614E5D55B6D
Authority key identifier: A2:D9:52:24:5B:B3:4E:40:CD:AB:5D:4B:09:01:43:C0:D8:58:13:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otlSJFuzTkDNq11LCQFDwNhYE5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/pNJdO9DeL4KIU9QXjuWN0fQUuzQ.roa
Signing time: Sun 01 Jan 2023 20:54:46 +0000
ROA not before: Sun 01 Jan 2023 20:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25091
IP address blocks: 2a0c:4144:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:8f:18:26:f2:44:d4:68:46:16:14:e5:d5:5b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d952245bb34e40cdab5d4b090143c0d8581390
Validity
Not Before: Jan 1 20:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4d25d3bd0de2f828853d4178ee58dd1f414bb34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:92:88:44:1b:36:82:33:a6:5d:fb:03:f0:a6:
b0:10:c8:70:49:8e:3b:2b:48:a0:a2:f1:08:ed:40:
d6:d3:63:c7:c4:77:a5:b6:ed:9e:d3:7b:63:df:3c:
d9:f8:04:1e:4e:b8:cf:fa:bb:9c:1a:65:cc:78:34:
53:8f:46:a7:a1:e8:43:6c:0c:51:a4:45:82:5a:62:
f4:8d:54:10:bf:4a:86:9f:b0:65:a1:a0:bd:6d:57:
7f:40:9f:a2:00:04:5b:2f:0f:82:a7:f2:4e:2b:2a:
4e:40:a5:c6:00:c5:93:2e:f8:6a:5e:70:b3:30:ad:
a5:3a:af:0e:ff:1d:f7:7c:4b:27:b7:62:2f:43:16:
53:0a:96:6e:47:72:eb:3f:95:4c:ce:54:85:4f:9b:
51:a2:5b:fc:c4:04:7e:10:18:c4:c4:a6:e7:5d:8d:
26:fd:80:4a:7a:14:17:55:68:20:89:03:3f:0e:cb:
06:6d:3b:c5:81:ac:b7:e3:91:ad:88:af:9d:2f:4f:
8e:53:e3:8d:ab:cf:49:47:b7:68:3d:2b:f2:e4:b4:
ab:e8:3c:0c:25:22:1a:05:0c:e0:de:ec:94:4e:0b:
3d:2a:a1:13:50:8b:b9:94:b9:b0:f6:79:aa:47:6e:
15:0c:9d:de:06:fe:ab:4a:fd:f8:6e:1e:de:51:86:
95:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D2:5D:3B:D0:DE:2F:82:88:53:D4:17:8E:E5:8D:D1:F4:14:BB:34
X509v3 Authority Key Identifier:
keyid:A2:D9:52:24:5B:B3:4E:40:CD:AB:5D:4B:09:01:43:C0:D8:58:13:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otlSJFuzTkDNq11LCQFDwNhYE5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/pNJdO9DeL4KIU9QXjuWN0fQUuzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/otlSJFuzTkDNq11LCQFDwNhYE5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4144:100::/48
Signature Algorithm: sha256WithRSAEncryption
bc:c5:08:26:6c:4f:22:93:02:26:30:c3:e1:c0:01:4e:ed:62:
b8:2d:ca:e6:85:97:05:a0:ad:27:04:b6:0c:7e:71:bc:41:2a:
04:f4:58:6f:cd:7f:38:a8:8f:e9:b7:8c:05:6a:b8:41:d9:b5:
27:bd:c2:41:8d:29:34:e3:e4:eb:e4:e7:d6:31:6e:e7:af:e3:
8e:2e:dc:3e:66:a9:ac:5f:9e:5b:08:ce:c9:97:6a:52:f9:64:
63:cf:e1:c7:af:e8:04:f7:b3:3b:e9:9a:a7:ff:a5:76:b3:a0:
1a:d8:9b:55:ea:87:99:02:8e:d2:d5:db:24:40:f6:53:b5:ea:
3d:50:a6:bd:27:a9:59:93:20:62:01:42:bc:71:5e:bb:ff:1e:
fa:ab:9a:92:b2:11:1e:fe:c9:db:ac:d2:e3:5c:ec:00:5d:50:
ec:49:1f:fd:7e:9c:c0:74:f1:cf:8b:12:db:26:e6:18:e3:d3:
bd:78:35:ed:fe:03:6f:55:f7:c3:12:8d:74:5c:6d:36:61:00:
5f:45:f8:2f:eb:00:42:5b:74:c0:da:64:ef:6a:e0:a2:42:00:
24:2b:65:3d:f2:24:df:1d:0e:a2:7c:aa:e7:af:f3:a0:31:63:
e6:b3:11:52:b9:20:5e:b5:c7:02:da:51:7a:27:cb:2f:a1:ef:
4a:ed:62:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:13 2024 by rpki-client on console-fra.rpki-client.org