Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/dJoNbq2XJrNU821JSDFYCu-vcCg.roa
File: dJoNbq2XJrNU821JSDFYCu-vcCg.roa (raw, json)
Hash identifier: jO5ePvLAsRqlB8tdef4426wKrxmdCXCRe+aQBFH/OZo=
Subject key identifier: 74:9A:0D:6E:AD:97:26:B3:54:F3:6D:49:48:31:58:0A:EF:AF:70:28
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01857067666D9949374FF16AA0D86BEFFAA9
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/dJoNbq2XJrNU821JSDFYCu-vcCg.roa
Signing time: Mon 02 Jan 2023 02:55:02 +0000
ROA not before: Mon 02 Jan 2023 02:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0b:3c40:22::/48 maxlen: 48
2a0b:3c40:38::/48 maxlen: 48
2a0b:3c40:26::/48 maxlen: 48
2a0b:3c40:56::/48 maxlen: 48
2a0e:a942::/32 maxlen: 36
Validation: Failed, certificate revoked on Tue 03 Jan 2023 16:34:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:66:6d:99:49:37:4f:f1:6a:a0:d8:6b:ef:fa:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 2 02:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=749a0d6ead9726b354f36d494831580aefaf7028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2b:30:34:cc:51:53:29:6b:1f:2d:64:ec:86:
26:11:68:c5:80:8f:bd:f8:77:47:0a:d1:00:e3:85:
74:b2:5e:0c:cc:a2:9a:56:9d:1e:c6:9c:8f:71:fd:
35:32:74:ee:7a:52:5d:cf:7a:72:0f:64:1f:6b:04:
30:2a:24:6c:87:48:86:2a:50:16:13:f5:77:e1:9f:
1d:0f:96:87:bd:1c:15:ed:f2:86:60:35:0c:64:91:
71:b8:86:13:0b:b4:0d:be:f5:b4:14:c6:10:5d:dc:
cb:47:98:09:92:15:82:b1:6a:b5:e8:6f:5f:bd:c0:
23:1a:90:b5:49:28:49:87:b9:fc:dc:86:b8:bb:c0:
06:4a:97:d6:47:74:54:6b:37:8e:12:dd:52:95:dd:
bd:ab:09:e2:2c:fc:86:15:29:6b:37:f5:35:52:53:
cf:44:37:ff:7c:1d:1f:37:62:3f:e7:db:e9:98:5c:
7d:d6:db:7f:33:8b:66:b3:18:c9:e7:71:e1:b9:70:
45:34:5a:6b:e7:9a:6e:15:65:12:3c:f3:c6:73:92:
32:8b:f5:a9:31:29:2f:f3:67:9e:d8:81:03:f5:6e:
e1:d3:8c:80:43:3a:26:52:cc:35:39:ae:53:3e:de:
31:e2:4d:50:ff:e1:c5:f0:76:8d:17:d8:59:46:3d:
99:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9A:0D:6E:AD:97:26:B3:54:F3:6D:49:48:31:58:0A:EF:AF:70:28
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/dJoNbq2XJrNU821JSDFYCu-vcCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c40:22::/48
2a0b:3c40:26::/48
2a0b:3c40:38::/48
2a0b:3c40:56::/48
2a0e:a942::/32
Signature Algorithm: sha256WithRSAEncryption
95:86:16:a6:cb:63:23:83:3e:b2:a9:a4:67:f4:fa:f0:5f:c4:
94:05:63:68:98:58:39:63:0d:60:d0:dc:44:fa:2c:6b:7c:58:
83:47:ba:87:1e:aa:0a:68:80:79:76:02:91:46:25:0d:db:eb:
30:c5:38:42:01:a3:23:53:cf:bb:3b:2f:52:20:f2:8a:b4:70:
c9:94:f9:50:9c:14:eb:87:08:61:73:d2:2c:77:1c:fc:5c:63:
d4:c8:64:f1:1b:26:f9:2c:41:7e:8d:45:6a:23:31:3e:bb:43:
bb:4b:af:5f:ec:54:b1:de:61:9c:62:13:fe:f9:6b:e5:1f:12:
af:63:b6:f7:ea:7c:fb:70:a5:69:4f:0f:db:18:33:f1:b9:4c:
53:52:a7:52:d0:08:7c:8b:81:54:b5:c2:e8:7c:1b:16:3f:3f:
08:d4:35:1f:d8:c5:10:88:e7:b3:9f:4a:52:86:b2:2b:d7:fb:
9c:e4:c6:1a:45:9a:57:dd:fb:3c:f0:d7:3a:18:69:d4:a6:b1:
9b:c3:f4:a1:98:73:fc:e7:bd:c0:f3:f8:6b:f6:02:a0:71:5a:
62:b6:7b:ff:be:a3:03:00:93:ee:68:2c:4f:69:6a:d6:6e:f7:
54:a2:b9:59:4d:ae:3a:ca:c0:0f:19:70:05:17:df:da:eb:ea:
f7:18:99:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org