Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/14oZ0CAKjvDl_hpX3LPkR-WZMsw.roa
File: 14oZ0CAKjvDl_hpX3LPkR-WZMsw.roa (raw, json)
Hash identifier: hbn0zcNnXq02o1BxoWFldHhu6RGid9jLX6ErrehINCQ=
Subject key identifier: D7:8A:19:D0:20:0A:8E:F0:E5:FE:1A:57:DC:B3:E4:47:E5:99:32:CC
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 01856C2ED072177A12B71C12EF7009054900
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/14oZ0CAKjvDl_hpX3LPkR-WZMsw.roa
Signing time: Sun 01 Jan 2023 07:14:45 +0000
ROA not before: Sun 01 Jan 2023 07:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204443
IP address blocks: 2a0d:2146:8440::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:d0:72:17:7a:12:b7:1c:12:ef:70:09:05:49:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 07:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d78a19d0200a8ef0e5fe1a57dcb3e447e59932cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c7:68:3b:fb:80:99:9e:dd:19:89:8d:ea:d0:
10:79:81:71:20:5d:c3:2d:bf:4f:ac:a3:c6:b0:a1:
a4:01:e8:7f:74:c8:b8:18:b6:53:00:a0:1c:6d:c9:
3e:7a:07:2f:3d:01:73:ec:91:a4:cd:db:9b:fe:b7:
01:59:31:ac:5c:96:56:6a:df:66:51:88:a3:40:8c:
9e:ca:7a:5b:e1:94:a6:00:d4:9c:06:22:07:84:30:
15:73:db:5a:0b:b4:1b:d0:69:82:55:09:3e:7d:58:
54:3b:e6:a9:2c:e3:42:e5:eb:02:a9:a0:85:34:9d:
e8:d1:d3:36:eb:10:2b:b7:20:64:9d:0e:8b:e2:a6:
0c:62:b4:e7:9a:c2:b6:e2:54:0c:1a:f6:ba:41:7a:
b3:c8:4d:4f:34:ec:25:95:41:13:b4:26:6f:9a:54:
39:15:98:a3:91:ee:cc:1a:33:10:71:bf:28:58:b0:
67:fb:ea:78:2f:ed:32:35:d9:9e:7c:82:76:1c:2e:
7d:c0:c2:fe:9a:f7:e5:03:b7:94:41:d7:9c:7d:5c:
33:30:57:9f:e9:1f:ac:c1:03:fd:19:0d:39:08:10:
f2:61:e4:fe:ef:f9:be:f8:53:66:47:54:b2:37:59:
2f:22:4e:ac:7f:54:29:1b:98:d5:cb:3b:30:c8:1b:
58:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8A:19:D0:20:0A:8E:F0:E5:FE:1A:57:DC:B3:E4:47:E5:99:32:CC
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/14oZ0CAKjvDl_hpX3LPkR-WZMsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:8440::/44
Signature Algorithm: sha256WithRSAEncryption
d6:8f:35:89:56:14:a4:5c:88:49:72:cf:a9:0e:ab:ca:1e:0c:
c6:cf:ac:ff:11:ce:41:23:e2:ad:d0:1f:27:a7:8e:83:3e:a6:
d4:02:a1:62:90:ec:8a:bb:e7:16:67:f4:12:de:24:2f:4b:77:
66:8d:ba:d7:29:ba:58:bd:a4:df:a9:26:0d:37:60:26:89:bc:
17:01:1c:c2:d6:a0:ad:4a:c6:c6:24:78:6d:74:83:34:7b:2a:
0a:30:da:16:90:2e:0f:5c:59:21:68:86:45:c5:cb:46:2a:91:
88:e5:8a:29:97:23:36:8c:eb:ad:26:5a:95:26:5c:6f:cf:35:
62:7f:4d:f6:c6:f6:d7:38:93:7d:be:89:2b:70:d3:12:be:40:
30:9f:48:8d:21:00:f9:fe:95:11:62:2c:59:c6:7e:85:a1:53:
9a:09:9f:9e:28:d8:f3:fe:ac:b7:97:21:08:38:20:0d:88:b5:
aa:6f:67:31:0d:b1:77:04:38:6b:2a:14:37:24:5e:4d:1d:34:
1a:c2:63:8d:d7:d4:e8:4b:d4:59:25:d4:15:54:f2:54:af:d4:
45:39:d6:e3:b7:93:bb:1b:16:9a:4c:45:fa:87:3b:45:55:2a:
38:23:a8:7f:2c:d1:b8:2f:90:ce:60:47:61:09:48:b3:8f:04:
39:87:69:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org