Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/bnEEpPTL5eJfmWH-gz97H2fBXtU.roa
File: bnEEpPTL5eJfmWH-gz97H2fBXtU.roa (raw, json)
Hash identifier: 36v3VxfdsJzS9ABClWmlmMACR+kSPcPHjj7+uWA6QP0=
Subject key identifier: 6E:71:04:A4:F4:CB:E5:E2:5F:99:61:FE:83:3F:7B:1F:67:C1:5E:D5
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 01856F8248F7ADC4B5E1E091F08340F7C05F
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/bnEEpPTL5eJfmWH-gz97H2fBXtU.roa
Signing time: Sun 01 Jan 2023 22:44:47 +0000
ROA not before: Sun 01 Jan 2023 22:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200549
IP address blocks: 2a00:5ac0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:82:48:f7:ad:c4:b5:e1:e0:91:f0:83:40:f7:c0:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Jan 1 22:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e7104a4f4cbe5e25f9961fe833f7b1f67c15ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a7:16:ab:86:d0:fb:6d:23:3a:98:f4:bb:33:
76:af:02:8d:b8:a9:ef:49:b5:01:a7:c8:51:9b:39:
98:80:42:68:64:41:93:13:97:fa:e9:48:0b:d0:0b:
a4:45:ab:c0:e5:e4:b6:e9:c2:3d:e7:11:ea:f8:d6:
1a:17:d1:5d:00:b9:45:61:8f:91:5e:8e:d2:9c:d0:
e7:b2:df:a4:70:29:30:cc:34:8d:47:c0:4b:5c:31:
87:c4:c0:92:4b:45:6b:f7:3a:3e:b8:80:e3:05:2a:
ca:57:22:4a:ab:e5:c0:12:72:4a:c7:74:f2:e7:78:
bd:a9:27:ec:a9:c3:b7:fe:2a:59:e4:3e:b8:17:8b:
82:87:48:a1:1c:de:54:74:06:1d:85:03:27:f5:08:
09:b9:f6:99:18:5d:2a:c8:e7:74:f0:c2:25:31:9c:
49:74:f2:2b:2a:73:87:59:f7:9a:5a:ec:93:5f:4e:
b0:e2:0c:99:05:39:c0:a5:4f:35:df:a9:43:df:5f:
be:c5:13:6a:05:4c:14:b7:97:bc:bb:ab:0b:36:05:
ca:53:c1:eb:c9:48:49:65:f3:1b:ed:d6:2b:f3:3e:
4a:81:00:77:3b:bf:53:03:db:87:71:03:28:cf:be:
41:5e:bf:3e:63:44:19:bf:c9:bf:9b:e6:2d:e2:70:
da:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:71:04:A4:F4:CB:E5:E2:5F:99:61:FE:83:3F:7B:1F:67:C1:5E:D5
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/bnEEpPTL5eJfmWH-gz97H2fBXtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:5ac0::/48
Signature Algorithm: sha256WithRSAEncryption
22:dd:e9:8d:e3:23:df:a1:10:b1:ee:cb:3c:30:62:55:10:f4:
c5:38:51:58:97:87:c8:e8:31:bc:80:e8:4e:92:37:fb:c1:50:
c9:77:33:55:1b:95:e5:90:80:b6:e4:db:ec:d1:b5:72:43:f0:
3d:e7:2a:4a:5e:28:e6:87:11:44:16:70:ac:81:0d:a0:7d:60:
f2:bd:7d:d9:a7:49:68:78:ea:dd:a7:04:0c:d6:b3:48:60:d9:
c5:92:3d:db:19:da:8f:e6:8d:f2:7a:45:52:9c:a5:6e:30:e6:
9d:4b:8b:b0:ac:73:f2:a5:e9:54:48:8b:fa:e9:79:50:c4:79:
0f:1b:15:db:e7:70:4b:b9:a6:ca:6e:de:31:19:2f:14:d5:c6:
b3:71:2a:92:62:45:42:77:8a:67:c9:13:d1:c8:24:cf:32:aa:
af:e0:96:06:e6:eb:db:0b:0f:79:79:fe:9f:45:92:0c:d0:99:
88:3a:e2:6b:f4:b2:16:f8:9b:e2:56:8b:4b:5f:b5:7f:2a:03:
b5:8e:81:de:19:03:73:16:37:9b:30:6f:2f:c9:8b:dc:0c:87:
71:c1:22:ef:bf:0c:28:5a:6a:e2:3b:56:46:1d:51:f2:58:31:
4c:f3:8e:74:c6:9b:fa:88:ad:02:5e:f4:5f:a1:9a:c8:46:7c:
9b:c9:43:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:45 2024 by rpki-client on console-ams.rpki-client.org