Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/5Zq5kXh9SjCEX1vuvukNC3Khg4E.roa
File: 5Zq5kXh9SjCEX1vuvukNC3Khg4E.roa (raw, json)
Hash identifier: CkYmO5+MehjM8QPZ9/UXhbc9QCNxkqbO4dppRWW1N9A=
Subject key identifier: E5:9A:B9:91:78:7D:4A:30:84:5F:5B:EE:BE:E9:0D:0B:72:A1:83:81
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 01856D819BBCC0AD6D8E5372859C18658A9E
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/5Zq5kXh9SjCEX1vuvukNC3Khg4E.roa
Signing time: Sun 01 Jan 2023 13:24:48 +0000
ROA not before: Sun 01 Jan 2023 13:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202505
IP address blocks: 2a0f:6580:107::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:9b:bc:c0:ad:6d:8e:53:72:85:9c:18:65:8a:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 13:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e59ab991787d4a30845f5beebee90d0b72a18381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5d:f0:0a:26:56:99:94:c0:9c:18:aa:fd:b6:
16:de:e2:b7:5d:0c:68:f8:a7:78:45:10:49:37:92:
53:ad:c8:ec:e6:19:23:c9:90:91:eb:e6:c3:2c:8a:
80:3f:1d:55:ac:4d:8b:64:b5:14:a3:bc:2f:5e:a1:
97:57:be:33:dd:7a:2e:4c:f0:83:62:bf:b0:c6:05:
71:d4:78:ae:ad:1e:27:80:46:3d:63:21:19:ab:10:
42:97:6a:26:64:be:e0:71:62:85:9f:45:5a:58:2b:
bd:90:64:57:ab:5a:bf:33:df:cb:7f:b3:4a:2e:c2:
a2:be:fc:4f:4a:6b:3b:cc:40:dc:7e:65:65:dd:45:
22:22:2e:9e:62:58:e7:e8:a9:90:1a:4f:6b:04:f3:
ea:3c:de:a3:ed:e0:c2:6d:79:5a:d1:ef:d8:02:a3:
4f:f7:8a:81:b1:65:e6:a8:20:63:44:8f:79:5f:14:
43:d7:4b:db:f2:c5:ed:ea:31:14:8f:06:3c:bf:bc:
e6:b9:a5:94:06:d5:b3:34:fb:b6:ba:d3:cc:82:19:
4c:83:61:6f:ec:5b:0b:32:a0:a7:3d:b2:6d:96:c0:
d3:2b:a5:2a:4d:f3:ed:27:64:cf:61:b0:31:8b:a3:
55:aa:22:68:58:8a:a6:9b:5c:89:df:75:92:2b:d4:
12:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9A:B9:91:78:7D:4A:30:84:5F:5B:EE:BE:E9:0D:0B:72:A1:83:81
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/5Zq5kXh9SjCEX1vuvukNC3Khg4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6580:107::/48
Signature Algorithm: sha256WithRSAEncryption
c1:a0:1e:a5:bb:fd:4b:84:aa:19:00:c8:18:a6:b2:d9:1b:45:
a9:e5:7e:05:b4:5c:1b:f7:c0:2d:ae:b7:dc:2d:d3:8a:01:2d:
05:0f:b7:82:2b:ca:f9:cb:97:7a:29:06:41:b3:fa:52:c1:8c:
29:47:f2:44:c5:fb:45:ce:11:a2:c9:8b:3f:f8:93:73:d0:65:
56:c4:e3:3e:a8:fd:00:b6:63:3d:3f:98:ca:c1:11:0f:24:04:
e2:08:01:85:4d:b5:05:e8:24:05:a9:0b:f5:a5:f9:ec:20:13:
e2:a1:4c:ef:40:3b:49:78:0c:e2:48:db:54:19:23:60:23:d9:
ae:8b:af:83:88:07:d8:73:49:47:e4:1c:52:ae:63:35:7d:ad:
d5:d3:dc:13:59:b7:83:3f:e0:c2:a8:02:cf:66:30:06:22:70:
42:05:02:2e:dd:9e:42:91:dd:38:14:bd:b3:2e:44:7d:75:e3:
89:66:f1:39:c6:fb:2a:b2:2a:36:c5:10:de:a8:50:15:61:01:
35:a0:04:42:da:36:c6:26:45:ac:51:04:16:87:43:bc:79:6d:
d6:a5:c0:77:32:0f:2a:bf:aa:51:db:de:2e:a0:9d:7e:68:f3:
fc:52:64:11:25:45:af:c9:9b:9d:1e:a0:7f:b1:df:74:69:32:
f0:0b:34:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:42 2023 by rpki-client on console-fra.rpki-client.org