Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/sI5mikziRmGNwTbkyq8wsUB_Ndo.roa
File: sI5mikziRmGNwTbkyq8wsUB_Ndo.roa (raw, json)
Hash identifier: k6YhiOd1++JobXJBSchOcQS66v76OIyCEHMdWiV9I78=
Subject key identifier: B0:8E:66:8A:4C:E2:46:61:8D:C1:36:E4:CA:AF:30:B1:40:7F:35:DA
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42ED1E4079656BF054E34E668CAE07
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/sI5mikziRmGNwTbkyq8wsUB_Ndo.roa
Signing time: Sun 01 Jan 2023 21:35:35 +0000
ROA not before: Sun 01 Jan 2023 21:35:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212519
IP address blocks: 2a0e:8f02:f027::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ed:1e:40:79:65:6b:f0:54:e3:4e:66:8c:ae:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08e668a4ce246618dc136e4caaf30b1407f35da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1d:4f:db:b2:1a:70:62:4d:b0:f3:3d:a5:6a:
5d:06:ee:5a:97:88:76:4a:2c:f5:05:ee:3a:e1:4a:
53:7e:09:0c:e4:73:a4:c2:b8:57:f3:ac:5f:99:bc:
43:b4:05:7b:05:f0:90:42:8d:83:e1:67:ef:43:8c:
50:e6:08:01:50:d8:f6:75:ae:ea:05:98:0c:a3:77:
5d:51:52:5a:ee:5b:3b:44:13:ea:11:34:f5:39:a2:
1a:96:41:7a:09:6b:d9:22:fe:52:aa:fb:31:32:f9:
97:59:eb:92:c7:72:ea:9f:bf:e8:c4:d0:de:d1:da:
d9:f4:a6:44:c4:5d:a5:ef:de:83:c9:f6:70:d6:ad:
71:b0:a5:f9:3d:f9:59:b8:7d:a1:70:c6:55:b8:1b:
b6:e9:67:ab:e2:f0:40:ac:1c:c0:0a:b1:33:51:92:
2d:c4:cf:af:95:db:28:79:cf:47:3e:7d:c9:15:3d:
f0:18:d2:32:75:0d:9e:32:57:34:ef:50:e7:e0:f0:
c2:74:92:e7:54:24:07:c5:63:e0:d7:14:8f:9e:11:
df:74:0a:ab:bb:67:88:ff:28:09:dd:4c:93:2a:d1:
82:27:70:f6:45:79:fd:7c:25:70:13:af:3b:4f:c6:
5a:63:c8:86:32:dc:90:39:e2:c4:8d:35:64:8f:65:
e1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8E:66:8A:4C:E2:46:61:8D:C1:36:E4:CA:AF:30:B1:40:7F:35:DA
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/sI5mikziRmGNwTbkyq8wsUB_Ndo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f027::/48
Signature Algorithm: sha256WithRSAEncryption
7e:47:92:c7:f3:17:c6:1d:86:b0:31:3c:e1:6e:1d:d5:1c:ce:
a0:9a:c4:2b:06:6d:e1:bf:7b:f5:45:de:67:2b:84:59:a0:36:
8d:35:22:a9:8e:d3:b9:65:de:8e:93:78:39:c5:2e:ad:79:da:
d9:67:3d:1b:1f:70:fd:f9:a0:c5:b0:f9:32:28:9c:1c:b3:72:
c0:f8:04:a3:4d:b4:e0:00:9a:45:08:04:3d:fd:a4:9e:08:9a:
ad:7c:d5:54:34:8e:0b:47:68:28:c5:47:04:1b:1d:cb:67:be:
e4:9c:ff:27:63:ea:48:7f:34:bc:fc:a2:41:bd:d0:1b:95:c6:
55:b5:b1:4b:a3:2f:89:69:bb:fd:83:bf:67:02:e8:9a:a1:51:
92:17:f0:60:f7:75:9e:de:56:f0:bb:18:9d:42:4c:b5:7a:d4:
41:a2:62:cc:26:b0:41:14:cd:60:c5:86:3f:2e:4a:fa:5d:38:
4d:62:fd:e6:9f:69:67:db:c5:b6:72:f2:40:f6:5e:6d:49:a2:
19:bf:9c:f9:32:3b:5f:75:39:4c:32:82:c2:fb:a2:e2:e3:4a:
38:8d:5e:d1:21:c4:6b:19:53:f9:f3:bb:2e:3c:f8:55:e3:78:
a6:f4:02:dd:27:18:73:9d:df:be:3c:da:8b:33:78:7e:33:4e:
71:ab:53:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:36 2024 by rpki-client on console-ams.rpki-client.org