Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/_SkEdMtbS06jIktcGuqUzUs_sgY.roa
File: _SkEdMtbS06jIktcGuqUzUs_sgY.roa (raw, json)
Hash identifier: L8RWQyqnCXKkSP1gvqsFkzwJeHGAtskFu0CId/eh1DE=
Subject key identifier: FD:29:04:74:CB:5B:4B:4E:A3:22:4B:5C:1A:EA:94:CD:4B:3F:B2:06
Certificate issuer: /CN=42150d463c32667c6a9296c8d25bb383cf419c61
Certificate serial: 018CC6B938EE810929C93DDBC51E20CDE6B5
Authority key identifier: 42:15:0D:46:3C:32:66:7C:6A:92:96:C8:D2:5B:B3:83:CF:41:9C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhUNRjwyZnxqkpbI0luzg89BnGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/_SkEdMtbS06jIktcGuqUzUs_sgY.roa
Signing time: Mon 01 Jan 2024 20:31:16 +0000
ROA not before: Mon 01 Jan 2024 20:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204174
IP address blocks: 2a13:e2c0:fd59::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 05 May 2024 11:40:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:38:ee:81:09:29:c9:3d:db:c5:1e:20:cd:e6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42150d463c32667c6a9296c8d25bb383cf419c61
Validity
Not Before: Jan 1 20:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd290474cb5b4b4ea3224b5c1aea94cd4b3fb206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:16:44:25:2a:7a:4c:ac:05:cb:39:49:04:97:
27:28:64:29:1e:08:54:b3:62:98:48:d3:47:95:1a:
10:78:53:32:67:f9:06:86:dc:73:7a:9f:2a:7e:d3:
16:0e:8e:91:bd:2c:19:44:38:3f:88:97:48:39:d7:
93:4c:44:4f:d1:fe:6f:e7:25:91:8f:96:8f:b3:bb:
c1:6d:00:78:c7:69:e3:6b:ed:f2:98:82:b3:a2:88:
99:d5:ea:5d:8e:0c:8a:a4:58:2f:bd:46:76:bc:0c:
aa:2e:af:fc:44:cf:f2:61:82:84:48:38:25:b4:b2:
fc:41:fe:56:5d:a6:1c:7c:20:2a:ba:3d:7f:bb:1c:
23:dc:5b:97:9f:82:c6:91:d6:d5:f0:6c:8f:c0:bb:
7b:7c:18:57:ec:e2:ff:bc:f2:84:ec:be:40:d2:5a:
0b:7d:3f:8e:dd:af:5d:ff:1a:7d:9f:50:68:d7:f5:
f5:67:31:ef:f8:c9:3c:91:e2:b6:f7:45:bd:53:21:
bf:20:f1:fc:76:38:75:bc:d5:6f:d7:8d:fc:cf:e9:
b4:84:56:d4:77:cb:c2:af:30:c6:3d:b6:23:61:ef:
62:5e:80:2e:23:af:8e:da:4f:68:5b:25:f7:71:e3:
38:19:5a:26:b3:4e:71:a9:9e:a7:1c:fc:b5:fc:ca:
6c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:29:04:74:CB:5B:4B:4E:A3:22:4B:5C:1A:EA:94:CD:4B:3F:B2:06
X509v3 Authority Key Identifier:
keyid:42:15:0D:46:3C:32:66:7C:6A:92:96:C8:D2:5B:B3:83:CF:41:9C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhUNRjwyZnxqkpbI0luzg89BnGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/_SkEdMtbS06jIktcGuqUzUs_sgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/079f67-58f7-4bd8-b7db-be267e6a16d8/1/QhUNRjwyZnxqkpbI0luzg89BnGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e2c0:fd59::/48
Signature Algorithm: sha256WithRSAEncryption
35:04:e9:65:bb:4b:f2:8e:40:54:34:c1:5a:31:a7:5a:e3:7d:
07:3c:9d:50:5b:a6:4b:2d:52:04:e5:8d:4b:8f:15:32:40:8d:
59:b5:0e:b5:3d:b2:32:f4:b0:0c:07:5d:b7:5e:43:d5:7f:fe:
b0:21:2c:12:47:57:82:f2:4d:ca:f1:7b:3f:5e:e1:36:5d:ad:
d3:e2:53:38:89:db:02:e5:84:db:1a:b3:55:63:65:4c:18:30:
39:58:0c:a3:9b:2a:68:46:c9:e2:a4:a3:62:29:88:46:76:ce:
ef:06:4e:59:de:7a:37:aa:bb:37:c0:f6:12:4d:9c:35:3d:78:
96:0e:78:85:74:a8:3d:5d:32:0a:36:03:48:c8:1d:51:a9:d1:
49:05:76:7a:f0:02:2e:40:8f:bd:d3:34:1a:54:23:9f:33:94:
08:87:b3:ca:d4:65:97:66:32:29:de:41:2e:40:94:a6:e2:71:
9b:47:a7:63:e0:d4:c1:18:58:62:cc:ba:c8:88:6b:6e:2e:f4:
10:5c:24:a6:a1:d5:66:81:c1:d0:b9:a7:f9:b3:58:86:a2:c3:
f3:c6:ba:4b:5e:8a:90:f5:16:57:4f:12:45:ca:d8:00:9e:aa:
a0:4a:7e:e8:68:b8:b4:76:d8:3e:dd:4d:00:fd:46:e6:b5:23:
a2:62:77:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:51 2024 by rpki-client on console-fra.rpki-client.org