Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/5jgx_LOE5Ms7StWjq-mQkSM75xs.roa
File: 5jgx_LOE5Ms7StWjq-mQkSM75xs.roa (raw, json)
Hash identifier: e2kCpWlJl5qmlJ3Ns0vrYNPFsbNaSQJqiuKAxPzHeeI=
Subject key identifier: E6:38:31:FC:B3:84:E4:CB:3B:4A:D5:A3:AB:E9:90:91:23:3B:E7:1B
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 018C15A6CB647801BF222863929D87BE653B
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/5jgx_LOE5Ms7StWjq-mQkSM75xs.roa
Signing time: Tue 28 Nov 2023 11:18:21 +0000
ROA not before: Tue 28 Nov 2023 11:18:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199669
IP address blocks: 2a11:3181::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:a6:cb:64:78:01:bf:22:28:63:92:9d:87:be:65:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Nov 28 11:18:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e63831fcb384e4cb3b4ad5a3abe99091233be71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4e:c8:73:db:68:4f:18:6a:bc:96:d4:9f:9a:
82:24:a4:cf:9a:50:02:1f:b0:91:f0:f7:a8:8c:ef:
7d:5d:3e:cc:f4:3b:6d:32:c0:6d:ed:73:43:41:b0:
e3:50:d9:eb:00:a1:5e:31:52:40:7a:6e:c1:32:33:
45:78:7d:14:65:85:79:92:7a:50:81:4b:41:a4:ba:
f6:e5:f0:7b:40:57:f6:2b:a4:cc:72:c8:58:eb:37:
f7:d3:d2:9f:8d:41:0f:e8:e7:d2:f5:4a:7c:83:9f:
b9:09:ed:98:72:29:a7:15:ed:a8:c2:22:c6:3d:f3:
f5:08:27:41:d0:f2:6a:b5:0d:4e:5a:af:6c:11:a5:
b3:48:0c:1f:cd:c3:0c:a5:80:10:44:6f:fe:05:22:
f9:56:04:76:78:79:2a:2a:b3:ca:b1:a3:57:3a:5b:
7f:de:26:90:4d:65:df:42:66:52:6c:80:e5:ff:54:
b7:bb:ce:d5:c9:17:60:04:29:5e:80:83:85:de:6c:
4d:d1:05:8a:b1:b4:cc:16:06:fd:63:9e:52:76:c8:
da:37:df:58:19:04:56:98:55:74:cc:35:9c:f8:a5:
d1:95:35:17:96:42:f5:5a:47:f0:97:db:7d:12:71:
9f:fd:f4:c0:7e:6b:af:8a:9e:5d:71:ab:e6:26:8d:
f7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:38:31:FC:B3:84:E4:CB:3B:4A:D5:A3:AB:E9:90:91:23:3B:E7:1B
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/5jgx_LOE5Ms7StWjq-mQkSM75xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3181::/32
Signature Algorithm: sha256WithRSAEncryption
e3:f3:82:38:22:4a:a7:1a:76:5b:48:39:1f:16:6a:74:40:64:
0b:e2:95:3b:6d:24:65:a0:6d:be:78:b2:68:67:5a:85:b3:ac:
2b:43:c2:67:93:4e:dd:36:2f:f3:ad:f8:04:9a:ba:56:54:e5:
77:9b:ec:4d:ab:0d:b0:e1:98:9c:0c:63:f0:71:01:a3:6a:6c:
c4:51:17:b3:6f:1f:30:f9:0d:5d:bd:2b:e5:9e:f4:6e:bf:63:
27:fb:c9:3f:99:36:0c:45:d8:49:a5:ec:b3:17:17:fc:42:12:
77:7a:5b:9b:bb:5a:9e:99:77:76:20:ba:03:ae:3e:18:85:fb:
d1:54:e8:36:81:9f:b4:ed:9d:30:4f:9f:bb:13:9b:0b:ba:04:
12:84:af:b3:7d:fb:88:a0:85:4a:98:0d:61:a0:a6:e9:1a:1d:
e7:f3:fe:02:38:40:7a:bd:ff:a9:47:29:6f:4a:8f:68:cb:4c:
26:8d:a0:2b:4c:f5:98:6d:02:c2:92:74:45:a1:cd:9a:dc:7b:
86:33:91:ec:59:45:71:d9:bb:32:01:b5:66:ae:22:0f:6e:e9:
83:6d:46:ef:f3:d7:7c:51:47:6e:96:bf:ae:85:d3:c1:7a:32:
53:9d:96:ee:d3:d6:e9:36:df:e3:33:d7:c8:e1:1c:0b:08:e7:
7a:d9:52:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org