Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/hVmyP-mTOrawdBN6F8rJx8Xh4Fw.roa
File: hVmyP-mTOrawdBN6F8rJx8Xh4Fw.roa (raw, json)
Hash identifier: 6jrP9OwOy/VdqwkbK+WLtebcRlC0wRPuEquC/Euyu50=
Subject key identifier: 85:59:B2:3F:E9:93:3A:B6:B0:74:13:7A:17:CA:C9:C7:C5:E1:E0:5C
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01886B6200E4AB0EAF4AAA451B2DD6CBD560
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/hVmyP-mTOrawdBN6F8rJx8Xh4Fw.roa
Signing time: Tue 30 May 2023 06:39:24 +0000
ROA not before: Tue 30 May 2023 06:39:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198480
IP address blocks: 2a0e:8f02:2260::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6b:62:00:e4:ab:0e:af:4a:aa:45:1b:2d:d6:cb:d5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: May 30 06:39:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8559b23fe9933ab6b074137a17cac9c7c5e1e05c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b9:a2:81:b4:93:dd:26:d1:d2:77:7c:f5:38:
20:65:df:9f:a0:69:80:37:7b:a9:2b:ce:cf:b8:e8:
07:bf:16:dc:8f:bc:dc:20:6f:f6:af:08:4b:17:c9:
6a:87:6f:a8:ec:d9:fd:de:92:3d:c3:f9:a1:f5:4b:
b4:fd:ed:17:4f:cb:0b:8f:e1:58:d0:8a:d9:6e:a9:
b7:47:84:34:86:76:d7:19:87:bb:24:f1:96:0f:cc:
36:46:2a:7d:f1:59:77:87:6a:80:e7:73:32:b5:40:
87:ea:9e:fe:84:ed:a3:ca:c5:79:dd:38:05:da:6a:
29:8e:0c:27:db:d2:b2:42:23:bb:65:aa:0e:76:ce:
a6:0d:05:2f:a6:c8:07:82:f9:0d:f1:db:a6:97:41:
a0:96:76:77:d5:66:8d:f3:16:13:33:aa:63:44:46:
de:ac:f2:85:b5:3f:37:75:5f:0e:3f:f7:a3:ef:ab:
f5:9e:f8:59:27:53:6d:bd:b4:96:1c:cd:49:12:92:
82:04:0a:0f:e2:f0:b1:30:d9:d6:19:68:ca:3f:1d:
a5:ca:2d:d3:45:b4:1a:dc:24:16:93:04:94:63:c2:
0a:87:30:b4:14:10:cf:78:3b:1d:1b:a1:d9:7c:71:
c6:a5:6a:a8:d9:91:3f:f8:87:70:cf:c3:ff:d5:df:
a9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:59:B2:3F:E9:93:3A:B6:B0:74:13:7A:17:CA:C9:C7:C5:E1:E0:5C
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/hVmyP-mTOrawdBN6F8rJx8Xh4Fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2260::/44
Signature Algorithm: sha256WithRSAEncryption
37:73:15:05:10:9d:96:e7:6c:35:05:d4:80:ba:a8:69:17:56:
3f:2a:2b:4e:70:a8:62:56:07:5d:87:75:bc:d3:bd:93:37:49:
15:24:30:0f:a7:93:25:98:85:64:aa:c6:c6:bd:a3:dd:e4:38:
c2:88:1a:35:bd:47:17:b8:64:bf:43:94:3a:ee:0d:72:a6:52:
c6:7e:a4:ba:2e:16:e1:5b:96:61:73:66:ed:3f:14:6c:45:db:
71:eb:b4:e4:e2:63:f4:40:26:1a:a0:39:56:00:7a:f7:65:a0:
32:b9:45:e3:3e:fb:6f:6d:9a:70:d6:ca:a2:de:07:ba:96:ef:
b1:e4:17:bb:ad:4b:12:fb:f3:3d:62:b2:92:cc:3e:5f:25:9e:
5f:1c:ac:87:5d:36:ec:a4:8e:cd:c6:f6:52:38:2c:76:12:99:
d1:08:df:63:1b:53:03:f6:39:11:26:ff:7f:e7:df:4c:5a:a7:
72:7a:7b:b3:4a:9b:fa:8d:56:ac:76:e2:83:27:3c:65:91:9f:
5b:a2:92:ff:d1:9a:bc:a6:fa:36:ad:e9:ed:f8:d9:f6:10:46:
4e:b0:da:a6:ed:d7:1b:d5:6c:26:d4:e1:88:eb:f8:cf:fe:72:
99:74:b2:76:81:55:7c:b8:62:47:25:ab:3e:6d:a0:ab:f1:90:
69:b7:de:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org