Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/a7Vd-5ra9QbfkClqEzuoGKhbjr0.roa
File: a7Vd-5ra9QbfkClqEzuoGKhbjr0.roa (raw, json)
Hash identifier: a2bAt40zQFp3X3E8Kf6yfVPJZYxkQ5N1ukos+ZnG9l8=
Subject key identifier: 6B:B5:5D:FB:9A:DA:F5:06:DF:90:29:6A:13:3B:A8:18:A8:5B:8E:BD
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018CC3B67858282CDC97B8D62F6320B4D200
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/a7Vd-5ra9QbfkClqEzuoGKhbjr0.roa
Signing time: Mon 01 Jan 2024 06:29:24 +0000
ROA not before: Mon 01 Jan 2024 06:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211011
IP address blocks: 2a05:4140:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 27 Oct 2024 16:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:78:58:28:2c:dc:97:b8:d6:2f:63:20:b4:d2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jan 1 06:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bb55dfb9adaf506df90296a133ba818a85b8ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c6:80:f9:1e:3d:fb:d7:6e:9e:03:f7:7b:32:
a5:cc:78:bb:5c:cc:aa:19:45:ea:7c:a6:ef:7d:d6:
38:06:bb:67:20:61:2b:f5:d7:82:08:e0:80:03:e0:
22:be:6d:ec:de:70:70:45:96:b6:56:4a:6a:c2:fa:
94:78:0d:a7:dc:6b:13:83:d0:2a:cd:00:07:6e:39:
cd:b7:35:37:a9:a4:04:cf:55:67:2a:92:4c:a6:a9:
d8:0f:a9:c3:3f:2f:db:30:2d:50:c5:fe:73:b4:85:
75:87:bf:cb:c0:71:53:80:cd:88:a1:0f:15:73:78:
48:2a:eb:48:94:67:91:46:c1:6e:cc:16:0d:68:25:
d7:16:86:25:b9:41:27:d0:a8:96:4c:43:3a:88:b2:
e6:aa:56:9d:73:50:c6:ca:e3:06:f1:09:d0:5a:11:
16:08:83:6c:2e:7e:d9:42:92:c4:ea:27:b2:bf:49:
9f:2f:9e:44:db:68:1b:ea:bd:fc:f2:2b:70:b1:7a:
56:1f:36:f7:fd:af:47:5e:8a:03:37:cc:b8:d9:a7:
59:4d:12:ee:b5:fa:d7:1a:b9:c9:3c:1b:d6:37:ed:
5d:7b:b1:a5:22:b6:33:05:18:34:a4:84:a4:8c:7f:
d3:72:28:c7:3e:e2:7e:e3:e0:6a:ca:a8:f9:4a:3f:
f1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B5:5D:FB:9A:DA:F5:06:DF:90:29:6A:13:3B:A8:18:A8:5B:8E:BD
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/a7Vd-5ra9QbfkClqEzuoGKhbjr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:22::/48
Signature Algorithm: sha256WithRSAEncryption
5f:e6:85:34:7c:9e:d3:a5:f3:cd:4e:5a:c0:b4:22:2d:73:5e:
10:dc:5b:aa:63:16:cf:a5:b5:d8:be:cf:b9:07:c5:be:10:53:
67:5e:3b:df:b6:2d:0e:18:34:e1:cd:e1:75:8b:dc:66:5e:4f:
b9:36:b4:b2:10:88:a1:af:bb:e4:5c:9f:bf:99:cf:aa:ed:5e:
c9:78:54:4d:89:5d:e4:be:24:8d:8e:91:8a:15:cb:1d:04:c9:
1f:3b:2c:37:8f:e3:59:fb:18:fb:a9:08:79:4e:7e:18:6a:be:
6b:67:c4:d6:85:02:6c:e1:7f:51:8f:10:f3:35:79:8d:f9:a5:
35:2e:17:7d:65:c0:f2:a7:16:22:9e:18:99:c8:59:f7:00:5d:
f3:05:43:18:6e:6b:b4:dd:3a:5e:cc:9f:dd:9f:7a:f0:7d:d8:
20:d3:6d:d6:4a:86:d0:e1:fd:e7:5e:e2:98:ea:ee:09:58:34:
9e:f2:20:84:3d:f3:d6:23:b9:cd:2b:76:76:cd:f7:5f:4f:6e:
9a:21:6e:28:b5:8f:d1:3f:62:3d:b8:e1:44:c7:43:fa:d2:d6:
35:10:24:8f:1d:b7:7e:36:15:25:fc:ce:1b:33:fe:48:9b:8c:
02:5d:c9:7c:be:95:7a:9b:6d:7d:9f:b9:05:15:4c:74:e8:a0:
88:5a:30:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 27 17:39:01 2024 by rpki-client on console-fra.rpki-client.org