Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/leh8zoLxyD88nij9Y7i8ohmVf0k.roa
File: leh8zoLxyD88nij9Y7i8ohmVf0k.roa (raw, json)
Hash identifier: KeN7crCoCVsmoIcGdjhaDbN9qZwsnuMD1kc+QYRjl84=
Subject key identifier: 95:E8:7C:CE:82:F1:C8:3F:3C:9E:28:FD:63:B8:BC:A2:19:95:7F:49
Certificate issuer: /CN=644f033f782eaf32ab09088775d64ac4b94b5b11
Certificate serial: 018CC8017A67AF104881AC31567C8F03FD93
Authority key identifier: 64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/leh8zoLxyD88nij9Y7i8ohmVf0k.roa
Signing time: Tue 02 Jan 2024 02:29:49 +0000
ROA not before: Tue 02 Jan 2024 02:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58192
IP address blocks: 2a05:2580::/30 maxlen: 30
Validation: Failed, certificate revoked on Thu 11 Jan 2024 12:38:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:7a:67:af:10:48:81:ac:31:56:7c:8f:03:fd:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644f033f782eaf32ab09088775d64ac4b94b5b11
Validity
Not Before: Jan 2 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95e87cce82f1c83f3c9e28fd63b8bca219957f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:38:24:21:eb:d5:cb:fd:06:07:0c:61:69:ca:
fe:29:20:1d:23:46:d6:43:d4:cd:c1:9b:c3:31:44:
7c:c6:41:6d:c0:31:f1:da:85:9c:c3:a9:38:27:72:
0a:78:b7:8c:d1:33:c2:f4:d4:db:04:a0:3a:0c:6f:
67:7f:1c:64:6c:d2:5f:ed:2d:3c:44:f6:4e:e0:04:
2c:9e:e8:2d:62:1b:c9:6c:63:ee:db:ae:0e:73:37:
29:ff:ec:6d:5d:4d:aa:98:4c:7e:dd:79:a3:83:8a:
de:69:56:d1:16:b8:d3:7f:cf:08:2b:14:a7:14:8f:
d5:22:8a:d7:4f:26:a7:0e:e0:12:17:00:9e:42:bd:
e6:c2:6e:7f:68:d2:98:eb:d5:ce:7d:ec:82:f2:96:
7c:6a:56:85:c7:0f:3d:9d:22:b9:59:00:f9:13:ba:
a3:f2:f3:28:b1:75:e6:81:49:a8:88:a7:6a:ad:3d:
f1:c7:d8:c1:f4:22:7f:e1:20:b2:8b:f9:56:71:64:
f9:dc:ae:83:d9:76:b9:28:3e:32:ad:24:56:1b:6b:
37:b0:47:c1:58:df:37:f5:ce:61:43:d9:42:80:9d:
ee:f1:36:13:2f:3d:52:6b:c4:bd:4d:ec:48:46:3c:
cf:31:32:34:d3:5e:aa:71:d1:bf:7c:42:e5:59:0e:
1c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E8:7C:CE:82:F1:C8:3F:3C:9E:28:FD:63:B8:BC:A2:19:95:7F:49
X509v3 Authority Key Identifier:
keyid:64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/leh8zoLxyD88nij9Y7i8ohmVf0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZE8DP3gurzKrCQiHddZKxLlLWxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:2580::/30
Signature Algorithm: sha256WithRSAEncryption
44:ff:ed:68:48:6e:87:21:a7:fc:7c:05:cc:e9:1d:1b:62:58:
50:90:1a:ff:c7:e6:cd:f6:54:d1:6d:89:cc:56:b1:cb:d8:19:
c9:e9:61:81:17:c8:0f:fa:5e:5c:11:80:13:27:ce:9e:39:89:
39:c1:ad:7d:e5:56:66:66:aa:1f:28:b1:2c:03:ee:dd:52:ee:
73:86:65:3b:2c:fe:70:e4:18:fe:ba:1a:2a:4c:70:3f:1c:9a:
f3:0d:02:71:5b:95:63:a4:ad:9e:57:f5:d4:ad:10:37:55:bf:
c2:ff:1c:4d:17:ea:d3:40:c6:d0:47:b1:75:05:14:40:aa:28:
1e:e1:13:d4:c1:f5:38:0d:f0:0a:f5:5b:bc:6a:31:63:b0:33:
72:d1:59:7b:7a:2e:60:f2:97:6e:8b:04:88:76:11:07:a9:70:
d1:4d:b3:e5:a4:dc:e0:11:8d:e4:26:43:1a:4f:4b:49:98:ef:
03:64:bc:7a:a7:9b:e2:ba:8a:d4:81:73:ab:9e:65:0c:36:b9:
88:a0:f0:36:86:b8:bf:9b:55:6f:74:d3:42:f6:61:80:72:08:
9a:92:0a:25:e9:93:7d:2c:6b:5d:7f:87:72:3c:b9:50:d9:96:
af:ea:ab:bd:74:2f:92:e0:da:a9:b3:b2:b8:13:72:56:d7:92:
37:a7:fa:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org