Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/6266af-ffbb-4462-baa6-5739ed83c691/1/SA0-On39suybHepTt3oEdwcAoTQ.roa
File: SA0-On39suybHepTt3oEdwcAoTQ.roa (raw, json)
Hash identifier: iVN3x4nJ8gcZpiVlWVq+fxoZGXqmexs7OLxSvovO20Q=
Subject key identifier: 48:0D:3E:3A:7D:FD:B2:EC:9B:1D:EA:53:B7:7A:04:77:07:00:A1:34
Certificate issuer: /CN=6fe561f84c5bab17d503bf93d3c3d325c2a2252e
Certificate serial: 01856F6FF352AD5ABEB09307833DEA7A2170
Authority key identifier: 6F:E5:61:F8:4C:5B:AB:17:D5:03:BF:93:D3:C3:D3:25:C2:A2:25:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b-Vh-ExbqxfVA7-T08PTJcKiJS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/6266af-ffbb-4462-baa6-5739ed83c691/1/SA0-On39suybHepTt3oEdwcAoTQ.roa
Signing time: Sun 01 Jan 2023 22:24:45 +0000
ROA not before: Sun 01 Jan 2023 22:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61028
IP address blocks: 2a0d:c80::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 25 Jan 2023 15:48:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:f3:52:ad:5a:be:b0:93:07:83:3d:ea:7a:21:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fe561f84c5bab17d503bf93d3c3d325c2a2252e
Validity
Not Before: Jan 1 22:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=480d3e3a7dfdb2ec9b1dea53b77a04770700a134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f1:aa:e4:6c:49:aa:a3:4b:f2:31:c9:b1:3b:
e6:85:4f:27:e8:b9:27:5c:69:e4:f5:1d:f6:3c:ba:
32:3b:7c:35:b9:07:25:79:ea:7e:a4:05:04:f0:4d:
4d:67:02:06:fa:ab:8b:c3:2b:12:43:65:bf:7d:f1:
60:25:97:fb:8b:52:7c:a6:8a:5d:79:2e:ce:6d:74:
a1:1e:2a:9e:91:d9:40:6f:e1:ac:17:e6:0a:b0:07:
24:e3:02:97:77:35:0f:b2:d1:10:13:b5:c1:c5:59:
29:d2:0c:d0:5e:5c:1f:26:d8:7d:e3:a7:0f:f5:38:
f5:ea:11:ad:5d:f9:a2:82:8b:3c:65:36:6d:80:94:
84:18:f2:35:8e:0d:be:af:f1:08:9c:5b:ac:67:00:
ab:fd:61:94:8b:d9:ff:69:2a:ef:d1:75:c1:68:2f:
e4:2b:15:79:9c:0f:c4:5c:7e:d6:0b:76:97:78:81:
05:43:53:0f:0d:85:b8:f6:b6:31:29:4a:94:b6:7c:
07:50:0a:00:49:3c:2f:85:2b:9d:ce:98:6b:63:16:
d7:64:67:42:9e:5f:3f:6d:3c:0d:60:80:c6:60:c0:
51:4a:36:1d:bf:be:f3:44:ce:2b:fb:a4:e9:d8:58:
26:9b:df:c1:61:c9:33:cb:b0:c7:99:94:1c:b1:8d:
a9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0D:3E:3A:7D:FD:B2:EC:9B:1D:EA:53:B7:7A:04:77:07:00:A1:34
X509v3 Authority Key Identifier:
keyid:6F:E5:61:F8:4C:5B:AB:17:D5:03:BF:93:D3:C3:D3:25:C2:A2:25:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b-Vh-ExbqxfVA7-T08PTJcKiJS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6266af-ffbb-4462-baa6-5739ed83c691/1/SA0-On39suybHepTt3oEdwcAoTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6266af-ffbb-4462-baa6-5739ed83c691/1/b-Vh-ExbqxfVA7-T08PTJcKiJS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:c80::/29
Signature Algorithm: sha256WithRSAEncryption
3d:75:bd:5c:ed:2e:20:bd:ac:f6:b6:6a:82:ed:30:a7:c9:62:
2b:c8:60:30:88:7b:03:98:1a:7d:6a:0f:bc:d9:c3:42:51:2a:
63:9d:f9:e1:c5:63:9d:4b:8c:a0:81:c6:be:75:0f:3d:11:11:
7c:c1:9d:0d:c7:c3:93:83:97:69:96:6f:26:57:d4:76:a8:90:
83:62:1a:4b:2b:22:6a:10:68:c1:cb:a6:be:6f:41:6b:07:a0:
ad:3c:0a:c3:15:88:c3:ad:eb:7d:68:5d:46:3c:77:37:a8:37:
cb:09:82:cf:a5:df:9e:0d:95:b1:0f:82:34:1f:39:a6:cd:a9:
f8:0b:46:12:05:3d:bd:1f:0e:70:dc:05:94:cf:c9:03:be:99:
70:10:7c:47:d1:a4:98:e6:a5:cd:cb:06:6f:fd:e6:5c:2c:4f:
7c:f0:8a:3c:4d:47:75:ea:af:38:f5:e6:8d:64:9f:4f:98:b2:
af:ef:2e:c1:35:0a:f4:1b:b4:9c:2a:e8:40:eb:ac:71:b7:09:
4f:91:1e:ba:ec:d1:39:be:43:c8:6b:1c:2b:30:69:0a:b0:90:
6f:fb:c8:2a:68:62:6b:04:5e:67:e8:d7:66:08:93:d4:81:95:
45:d0:dd:ef:0a:fb:b4:ab:f0:57:69:8d:c6:5d:03:2b:5a:3a:
0f:c1:56:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:26 2024 by rpki-client on console-ams.rpki-client.org