Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/Jun3O1cHqdoOLO49asd9rd5GGrI.roa
File: Jun3O1cHqdoOLO49asd9rd5GGrI.roa (raw, json)
Hash identifier: y03BtSAcHbxPEOgQ1htOKQMkfKcS83hURclMdFdztnY=
Subject key identifier: 26:E9:F7:3B:57:07:A9:DA:0E:2C:EE:3D:6A:C7:7D:AD:DE:46:1A:B2
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 018DC7B14510724588A2080E8C4932E39FE8
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/Jun3O1cHqdoOLO49asd9rd5GGrI.roa
Signing time: Tue 20 Feb 2024 18:05:00 +0000
ROA not before: Tue 20 Feb 2024 18:05:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57910
IP address blocks: 2a00:b5c0::/32 maxlen: 32
2a02:2110::/32 maxlen: 32
2a0c:7a00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 21 Feb 2024 14:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:b1:45:10:72:45:88:a2:08:0e:8c:49:32:e3:9f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Feb 20 18:05:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26e9f73b5707a9da0e2cee3d6ac77dadde461ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a4:89:41:77:ff:9a:6e:a1:52:f3:bf:78:97:
30:38:a4:9d:5e:ea:1f:66:68:47:25:14:be:b0:ee:
80:7a:58:3e:71:11:63:97:09:95:c8:cb:34:2b:38:
9b:3e:00:34:fb:3b:c3:27:8d:93:23:d5:63:c5:5b:
19:dd:fa:2c:a6:dd:b0:dd:04:dc:4d:83:88:93:2b:
6f:5c:ec:41:78:f3:7d:0d:dd:98:76:14:e9:58:67:
74:e6:53:ea:27:81:b9:8f:bc:9d:9a:c1:c9:d5:b8:
5d:93:97:87:b4:c5:55:b9:3d:12:63:f7:06:82:ce:
2f:84:9d:ed:2f:e7:33:e1:b1:f8:7e:e0:4a:53:81:
26:d3:aa:e1:3d:24:70:ae:fd:a1:0a:b5:00:e2:e9:
2b:b8:74:90:3f:93:2f:d4:f6:14:dc:f0:5d:f1:c4:
96:5e:dc:13:b8:da:24:eb:23:3f:76:be:49:0f:4e:
a4:a4:61:c6:b6:c9:72:19:07:dd:cb:bc:9e:21:63:
9e:d4:1d:d8:ca:24:cd:a9:b3:40:13:67:89:8c:e8:
a4:c0:b1:e8:32:54:4f:e5:13:78:e1:7d:91:38:19:
fb:ce:d5:c1:72:cb:9a:01:36:81:40:0c:23:5c:63:
a3:e3:49:8c:16:4f:20:28:50:a9:71:6e:47:30:65:
62:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E9:F7:3B:57:07:A9:DA:0E:2C:EE:3D:6A:C7:7D:AD:DE:46:1A:B2
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/Jun3O1cHqdoOLO49asd9rd5GGrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:b5c0::/32
2a02:2110::/32
2a0c:7a00::/29
Signature Algorithm: sha256WithRSAEncryption
8b:fd:cc:27:3e:56:78:90:63:c7:04:d2:1a:71:3f:ad:e8:83:
87:8a:c8:69:dd:4c:33:31:f6:34:98:63:b9:e0:c2:d6:cb:69:
93:74:09:c8:07:56:7b:66:65:55:23:2d:59:92:56:e4:44:9f:
77:8a:5a:52:8b:09:ad:33:9f:da:9b:8f:1d:f2:27:6a:c1:c8:
50:9f:e3:45:07:54:ec:33:13:74:7f:11:35:b5:af:95:3d:19:
09:81:af:9e:d7:19:f0:d8:c9:24:ee:e6:09:91:68:87:7a:5a:
3d:92:1e:e1:26:c5:15:1b:0c:75:6d:98:40:1d:8c:67:7d:20:
e7:ad:97:1f:71:90:55:f6:f8:16:81:0c:cc:1d:78:22:b4:9a:
6e:45:5d:b6:bd:d2:17:dd:fc:be:1d:96:22:f5:5e:03:6b:80:
3d:3f:6a:a7:fb:cb:38:1b:ea:8f:18:f8:55:c0:35:c2:0a:20:
d0:05:47:87:c8:dd:7a:27:6c:e5:5c:ad:b9:4d:13:e8:84:62:
cf:57:07:57:ad:d7:3f:f8:58:4d:2e:ab:ed:0d:bb:ec:d1:fd:
ba:27:7f:2d:db:31:5a:20:bb:d9:7e:00:84:d3:b6:d2:c4:24:
65:8e:9f:6a:0d:bb:1f:5a:00:d6:9d:df:ac:a5:a5:a9:e6:27:
05:d6:3a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 21 19:42:56 2024 by rpki-client on console-fra.rpki-client.org