Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/eNJu0SfPEl8N_WEu0R2__n_GJkQ.roa
File: eNJu0SfPEl8N_WEu0R2__n_GJkQ.roa (raw, json)
Hash identifier: HzxpdwGsxM1I76ETUEQWFcC7+sIgySVvkG645tv4i2A=
Subject key identifier: 78:D2:6E:D1:27:CF:12:5F:0D:FD:61:2E:D1:1D:BF:FE:7F:C6:26:44
Certificate issuer: /CN=59bff5f16ecb268b1597da1b3ad30af40fce7717
Certificate serial: 0185730CC67847182036535F2173FFFEDD9D
Authority key identifier: 59:BF:F5:F1:6E:CB:26:8B:15:97:DA:1B:3A:D3:0A:F4:0F:CE:77:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wb_18W7LJosVl9obOtMK9A_Odxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/eNJu0SfPEl8N_WEu0R2__n_GJkQ.roa
Signing time: Mon 02 Jan 2023 15:14:55 +0000
ROA not before: Mon 02 Jan 2023 15:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36459
IP address blocks: 2a0a:a440::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:c6:78:47:18:20:36:53:5f:21:73:ff:fe:dd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59bff5f16ecb268b1597da1b3ad30af40fce7717
Validity
Not Before: Jan 2 15:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78d26ed127cf125f0dfd612ed11dbffe7fc62644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c9:a6:63:d1:e6:6a:13:37:07:f0:fa:4b:b3:
4d:5f:9a:40:a4:b9:98:3e:01:1b:ef:a5:6c:dc:fc:
73:29:d9:2e:43:79:c9:33:63:a4:73:8a:e7:55:cb:
88:d1:e6:8b:be:7f:a7:bc:f4:8c:24:4d:b4:6d:bf:
61:2b:27:88:c7:92:e8:85:36:29:0a:2e:d9:72:f1:
72:7a:ff:22:f1:88:38:9a:82:03:44:75:da:a3:fb:
b0:26:eb:2c:c4:85:73:dd:d4:53:60:93:e2:06:f8:
ab:e9:11:3f:b0:25:f1:67:a9:50:37:d0:36:1a:f2:
90:c9:54:cc:8d:24:95:00:04:4c:1f:ee:17:25:c0:
af:4e:98:1c:65:c0:da:73:82:3b:e8:a1:f7:1b:11:
0b:8d:ab:84:a5:5b:f9:16:9b:c5:af:f8:66:aa:8e:
cb:d0:73:51:12:d5:1a:65:98:7c:af:76:27:df:e7:
7a:82:62:f6:df:55:87:71:d0:b7:df:d7:d9:22:ba:
a5:2d:4a:ff:67:28:aa:55:d7:98:22:de:69:4d:15:
db:9a:ab:55:14:90:c2:c9:87:13:5f:cd:9d:d8:9f:
77:ed:26:84:52:ce:a4:26:16:a4:99:1f:a6:3d:29:
7a:cb:a9:0d:43:78:50:21:01:7e:25:2d:e8:b8:79:
74:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D2:6E:D1:27:CF:12:5F:0D:FD:61:2E:D1:1D:BF:FE:7F:C6:26:44
X509v3 Authority Key Identifier:
keyid:59:BF:F5:F1:6E:CB:26:8B:15:97:DA:1B:3A:D3:0A:F4:0F:CE:77:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wb_18W7LJosVl9obOtMK9A_Odxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/eNJu0SfPEl8N_WEu0R2__n_GJkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/Wb_18W7LJosVl9obOtMK9A_Odxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:a440::/29
Signature Algorithm: sha256WithRSAEncryption
84:ea:c0:e0:f6:ad:89:0d:68:aa:80:63:36:9a:f0:17:eb:a1:
21:82:10:f1:03:42:9b:40:d3:20:e9:31:b7:82:fa:a2:12:92:
0e:ae:df:54:2d:b5:a5:03:d5:90:f6:1f:23:bb:79:14:9b:34:
1c:19:ca:d0:cd:e4:09:a1:c2:20:9e:2a:c9:e7:c0:84:92:98:
ff:4d:cd:97:64:f8:a6:6d:13:39:68:28:ce:fa:33:94:f1:94:
31:22:b1:d9:ee:66:20:f3:28:10:4a:8f:5a:3b:d6:91:dd:8d:
57:72:0e:34:fe:eb:f1:a0:41:d2:8f:d2:32:c4:d3:db:69:81:
d3:10:11:c3:43:dc:ba:7a:8c:74:ba:e8:35:3f:fa:01:02:39:
c0:76:65:a0:a3:93:0c:df:db:c6:5c:94:13:25:d2:79:85:e5:
7a:ac:cd:66:19:77:b4:e2:27:3b:97:e7:03:cb:bf:f1:bf:e3:
b7:0b:77:9a:37:2b:9d:69:e7:aa:a9:3a:81:77:04:3b:5f:3f:
94:11:42:42:fd:0f:8a:f5:ba:a9:ac:69:3c:87:ab:c4:00:7e:
1d:b6:7e:c3:fc:e9:33:36:82:a1:53:03:10:a4:b2:45:38:37:
16:2a:57:cf:d1:b1:20:1f:5e:44:a7:a7:95:19:ca:80:43:bb:
e0:fa:34:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:30 2024 by rpki-client on console-fra.rpki-client.org