Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/C1zWhwketvBG46NJV9nv4_H58pw.roa
File: C1zWhwketvBG46NJV9nv4_H58pw.roa (raw, json)
Hash identifier: gc5wEND/cS7YmSytNzPvhYxnwIrc7+apIwZ2hrNng5Y=
Subject key identifier: 0B:5C:D6:87:09:1E:B6:F0:46:E3:A3:49:57:D9:EF:E3:F1:F9:F2:9C
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 01901C96F962E3ACDCF73857C2B32CDF5AB9
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/C1zWhwketvBG46NJV9nv4_H58pw.roa
Signing time: Sat 15 Jun 2024 15:49:34 +0000
ROA not before: Sat 15 Jun 2024 15:49:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61157
IP address blocks: 2a0e:a680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Jun 2024 05:52:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1c:96:f9:62:e3:ac:dc:f7:38:57:c2:b3:2c:df:5a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Jun 15 15:49:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b5cd687091eb6f046e3a34957d9efe3f1f9f29c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1d:9a:01:d9:32:be:49:34:50:3c:83:32:b1:
af:dd:11:18:71:e5:42:b3:ae:ed:34:77:35:5f:0c:
b0:c2:16:d6:77:7f:d6:8f:e1:56:a2:38:db:c1:00:
45:c8:4c:16:28:63:9f:92:39:41:ef:08:90:78:03:
e9:e1:4a:5d:26:8d:18:83:6c:2f:25:84:10:83:05:
e7:2c:4a:1d:40:6e:b1:14:b0:d3:2d:5a:83:e4:4b:
13:68:3d:2f:39:88:42:fb:82:91:8f:ac:1f:f0:13:
6d:1d:7f:3a:27:9a:fe:c4:f7:4e:79:f1:90:39:c0:
76:52:ba:10:4b:94:00:a1:ac:66:12:70:b2:46:85:
3f:3f:6e:0f:8d:33:79:09:fd:a4:e9:ad:36:0f:62:
35:a5:b1:33:e4:a9:d7:f8:ac:3d:1a:b6:12:24:c8:
04:7f:9d:2e:f3:e1:e0:55:7f:ea:f3:91:96:19:fe:
3c:af:cb:e3:9f:a6:99:6b:0c:8f:02:5c:6e:7b:ac:
96:d1:c0:20:0d:d8:46:e6:41:d3:0e:99:3b:d3:40:
24:ad:f2:35:ea:fb:0d:d0:81:7b:0f:b2:c3:4b:aa:
f3:11:c2:89:23:f2:f1:dc:03:fa:83:d0:e9:a1:c8:
2f:1f:f9:2d:4a:4f:02:f2:4a:44:05:67:a1:e6:f7:
3a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:5C:D6:87:09:1E:B6:F0:46:E3:A3:49:57:D9:EF:E3:F1:F9:F2:9C
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/C1zWhwketvBG46NJV9nv4_H58pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a680:1::/48
Signature Algorithm: sha256WithRSAEncryption
39:c2:5a:ba:21:47:d6:d6:4f:10:dd:ec:d5:cb:18:25:9d:d4:
b6:9a:d9:21:b2:4d:7c:47:12:d3:9f:48:03:ed:ab:e6:06:fd:
a0:1a:a9:7f:cf:d2:6c:7e:ce:26:66:b0:0b:42:5c:0f:dc:89:
9b:e7:98:d9:e3:6a:af:6c:8a:9a:9b:ee:2b:ea:e4:67:0e:58:
41:00:2d:f6:e7:40:20:a5:14:21:67:f5:b4:6b:29:7b:5e:57:
09:43:bd:f8:3a:f2:f8:91:54:2f:95:cb:9c:e3:45:6c:dc:33:
72:72:f5:25:61:e9:98:3e:ea:26:fe:5b:44:a9:af:57:a2:67:
75:52:6e:c8:28:92:95:51:b0:c7:c9:ce:62:c5:7f:fe:8a:70:
05:d6:ff:e4:87:09:fd:2f:a6:06:66:e9:84:1c:10:fd:9b:36:
47:b2:76:b2:9d:27:b6:78:0e:9b:6f:7c:93:ff:93:9f:4f:74:
ad:f2:bc:e3:83:2e:6c:bf:db:17:00:44:be:79:87:4f:be:c7:
23:c2:bd:cd:aa:5c:18:74:81:41:fc:fa:b9:9f:2a:45:ba:3a:
fd:b8:d0:1d:93:59:8b:8c:c8:ea:36:8f:1c:be:b9:85:62:ab:
fc:0e:1c:06:41:8b:49:b0:77:b3:b4:c4:f7:2a:87:2e:c0:21:
1f:c1:88:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 06:46:39 2024 by rpki-client on console-fra.rpki-client.org