Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/5Htzo0CfFnaxDsVU9AUeWf1jgn0.roa
File: 5Htzo0CfFnaxDsVU9AUeWf1jgn0.roa (raw, json)
Hash identifier: HWQ8AzLUqzkzwNQiYyLCmgPtSTV12TCxnNJbui41HTI=
Subject key identifier: E4:7B:73:A3:40:9F:16:76:B1:0E:C5:54:F4:05:1E:59:FD:63:82:7D
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 0188E25E145DBDB1EE37A57E8D51DC69EE45
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/5Htzo0CfFnaxDsVU9AUeWf1jgn0.roa
Signing time: Thu 22 Jun 2023 09:09:56 +0000
ROA not before: Thu 22 Jun 2023 09:09:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24845
IP address blocks: 2a02:102e::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:5e:14:5d:bd:b1:ee:37:a5:7e:8d:51:dc:69:ee:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jun 22 09:09:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47b73a3409f1676b10ec554f4051e59fd63827d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d6:f0:4b:6d:d8:bc:27:c4:38:82:92:ed:18:
0a:6f:55:5a:ab:0b:1e:6e:55:b5:20:37:e7:19:19:
87:07:82:99:11:66:de:f5:96:ab:5d:2d:ed:fa:9a:
bb:c0:06:3f:de:01:c4:c6:ea:60:3f:ac:5c:d3:c1:
e0:39:0e:cb:f9:db:64:25:3a:8a:bf:90:67:ef:a4:
d0:a3:91:98:6c:a6:79:3c:1f:22:6e:37:21:05:d8:
23:92:14:74:d4:e5:b9:6c:fa:89:8f:8e:2c:f7:39:
71:f6:d4:5e:8b:f5:74:6d:eb:84:42:39:8d:08:75:
dd:8e:15:11:48:0b:7f:2b:c1:f1:dd:7e:09:ab:ad:
8a:e7:d4:51:1a:dc:d2:c5:be:23:6e:30:a7:f3:6a:
eb:fd:e2:5a:c5:eb:e3:1b:fc:d4:cd:b3:7e:17:09:
6b:c1:23:e3:84:fb:63:3c:39:c3:ed:86:b7:32:ce:
bf:41:99:9e:a3:45:3d:91:0e:50:31:95:79:7c:44:
31:25:95:bc:01:fc:d4:1a:36:a7:fa:b2:bc:54:f0:
39:1b:07:d1:66:bb:2a:7d:e1:7e:f4:7e:60:b3:c1:
ba:d9:ed:8b:4d:f9:6e:9c:74:25:14:59:7c:2f:cc:
0c:fd:66:60:fb:6a:73:8e:ea:61:ad:f9:ac:26:c9:
a4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7B:73:A3:40:9F:16:76:B1:0E:C5:54:F4:05:1E:59:FD:63:82:7D
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/5Htzo0CfFnaxDsVU9AUeWf1jgn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:102e::/32
Signature Algorithm: sha256WithRSAEncryption
8b:be:0a:e2:07:21:70:78:be:5c:fc:75:55:b3:60:e5:16:85:
38:bd:ce:95:69:26:d4:18:c3:b4:25:9c:e3:ee:d1:89:4a:d0:
8e:a9:84:64:09:9b:66:4b:1a:50:9e:cb:53:db:00:86:59:a0:
d0:84:6c:45:8b:e0:fa:93:45:cb:9b:d4:10:22:df:ed:5a:2c:
7a:20:fa:21:5b:9a:8b:d9:c0:9e:f7:6a:73:02:cc:a9:bf:bc:
b8:7c:d7:e4:00:98:8c:2a:c2:50:a8:e0:cf:02:05:4f:bd:2b:
dc:04:30:cc:1c:d5:dd:96:d6:ab:45:b3:eb:61:9b:64:41:4c:
15:85:bd:0e:37:ff:ca:cd:90:1f:41:43:93:f1:44:ca:3e:aa:
dd:57:6b:27:1c:f2:3f:0b:2d:87:5d:e0:4b:ec:b7:6d:ff:e6:
ac:f9:96:4e:9a:4f:62:63:d4:1d:93:ec:01:4a:97:81:b8:8d:
11:06:1a:8a:4c:47:91:04:31:aa:33:5c:5a:55:d0:f8:e7:f5:
a5:9e:9c:27:69:66:c5:76:f3:32:ea:dc:05:f2:71:4f:85:e0:
e0:03:0d:ac:66:25:44:58:94:52:86:97:a6:13:97:d0:fd:ae:
be:94:c5:15:50:7a:34:6b:dc:a9:3f:1d:5d:f0:d4:ad:fc:67:
cb:9f:46:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org