Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/HCE5AIunREE8sGJEqaVQSP2-5I0.roa
File: HCE5AIunREE8sGJEqaVQSP2-5I0.roa (raw, json)
Hash identifier: U5iMQQRDU1gSkQYFXVgZZvq2Z+PS9E+00ZxsGyGbEeY=
Subject key identifier: 1C:21:39:00:8B:A7:44:41:3C:B0:62:44:A9:A5:50:48:FD:BE:E4:8D
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 01856B8A38CE61619512085180BC85A6F216
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/HCE5AIunREE8sGJEqaVQSP2-5I0.roa
Signing time: Sun 01 Jan 2023 04:14:58 +0000
ROA not before: Sun 01 Jan 2023 04:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7922
IP address blocks: 2a03:2880:d001::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:38:ce:61:61:95:12:08:51:80:bc:85:a6:f2:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: Jan 1 04:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c2139008ba744413cb06244a9a55048fdbee48d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d8:bd:e7:9f:83:f5:bf:7b:d7:91:73:d8:e0:
5b:68:8b:95:e8:28:a1:64:aa:d4:d6:3e:73:e9:1f:
0a:55:d6:5e:b3:09:d3:5e:c8:21:f6:da:a2:27:8f:
16:c8:61:35:56:fe:37:0c:90:18:77:5c:da:a3:df:
43:aa:4b:f2:fd:cb:ad:91:9d:d0:c3:8b:85:50:be:
46:01:34:a0:ee:c4:11:5d:ef:77:ca:bb:3d:d4:c5:
16:cf:e5:49:34:4a:8f:45:4f:68:94:46:92:ac:a2:
76:a6:8f:a4:fd:5f:73:e4:34:e6:2f:70:e6:d8:71:
d0:81:a0:2b:c1:a1:8b:09:f3:ac:0d:1b:1b:63:32:
60:0f:5c:c7:1d:cf:43:f6:fe:d0:ad:48:e9:3b:78:
92:61:87:0f:1c:b4:4a:f5:1d:db:17:5f:28:0c:24:
6d:96:cf:9f:6a:be:77:87:52:4a:aa:77:0a:3d:a0:
b2:d8:5e:36:95:d4:1a:e6:ab:09:b7:b2:79:82:83:
9e:dd:c4:d7:9c:a0:93:2a:b9:bd:3d:aa:30:fc:24:
ee:90:6f:88:e3:c8:6b:bd:18:59:bd:10:f2:33:22:
b0:cb:5a:9b:b0:5c:52:63:6f:0a:0e:c1:5e:2d:8b:
89:c2:3e:8f:b1:59:76:ba:d1:09:d5:b0:b6:0c:eb:
89:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:21:39:00:8B:A7:44:41:3C:B0:62:44:A9:A5:50:48:FD:BE:E4:8D
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/HCE5AIunREE8sGJEqaVQSP2-5I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2880:d001::/48
Signature Algorithm: sha256WithRSAEncryption
b3:5c:c9:a2:c8:05:67:18:7f:aa:df:e7:47:7b:61:2b:80:df:
56:cb:60:bf:09:b8:eb:d5:0a:f8:d1:e2:15:44:93:8a:30:c4:
8f:c0:0b:13:d4:18:1e:0d:29:01:f5:cf:c8:f3:bd:36:50:e3:
bc:fc:46:24:8b:b9:e8:f5:bb:13:70:e4:d2:00:43:48:8c:3b:
06:b4:bf:6d:f3:51:cc:db:7e:6b:76:a5:aa:45:33:5c:f7:f8:
3f:09:c9:22:95:27:51:cf:82:5b:72:25:03:e5:e5:1d:a8:10:
62:d2:f1:a3:68:ce:7a:45:c9:4c:76:5f:aa:d0:b1:a9:6d:56:
e9:f0:1f:43:02:fa:12:ea:7e:6e:56:e5:86:1a:43:90:fe:98:
42:4a:1f:54:d6:8e:ab:01:32:40:a8:67:ff:53:b9:39:fc:52:
df:69:8b:ee:c6:00:ba:5a:83:f3:78:27:bb:17:1b:76:8d:15:
55:19:37:9d:05:c7:a6:be:41:3f:c9:48:fd:6c:73:92:66:97:
00:5c:86:ac:56:43:3d:01:5a:45:cb:3a:d6:a3:8e:70:10:59:
ca:bb:6d:76:1b:26:ee:8d:b8:2e:24:f9:d5:b6:69:87:0b:bc:
9f:c7:2b:de:96:4e:57:e9:ec:b5:ea:25:b6:bc:9f:64:b5:9e:
f4:ee:45:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:57 2024 by rpki-client on console-fra.rpki-client.org