Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ur2-HwwgxarjaR-0RzeJgCvQbvk.roa
File: ur2-HwwgxarjaR-0RzeJgCvQbvk.roa (raw, json)
Hash identifier: qua8D51PR1mCsquPB4Zzj7y0JCsqpnVfC01Ur7eTbCk=
Subject key identifier: BA:BD:BE:1F:0C:20:C5:AA:E3:69:1F:B4:47:37:89:80:2B:D0:6E:F9
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42DFD5BE25D3D13E427ECFF4F3D038
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ur2-HwwgxarjaR-0RzeJgCvQbvk.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211522
IP address blocks: 2a0e:8f02:f023::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:df:d5:be:25:d3:d1:3e:42:7e:cf:f4:f3:d0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=babdbe1f0c20c5aae3691fb4473789802bd06ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7a:c3:d7:09:40:25:a1:ef:18:a5:93:38:ac:
14:53:a2:ea:8d:fa:dc:f7:a8:32:c1:24:25:d1:db:
d2:47:5c:93:57:5d:91:f1:b8:3e:12:6d:7d:47:99:
14:2c:1d:02:24:ed:c3:af:18:37:fd:24:c3:69:8a:
35:9d:38:bc:eb:b1:bb:af:bd:27:1c:41:77:68:ee:
f0:83:1b:72:f7:3f:8e:e6:7f:28:b0:2f:3e:7f:34:
64:9f:af:a7:b1:5e:0f:84:40:96:b4:54:fa:19:98:
80:b3:2c:6c:64:4f:1b:f4:39:5a:5e:9e:94:2b:95:
c0:aa:53:e0:cb:34:25:36:f0:85:8d:38:ed:ab:d8:
c5:86:46:34:56:7e:e0:ae:74:27:d3:42:9e:28:65:
2a:f5:07:a1:e5:d7:c2:45:7d:35:77:bf:d5:01:ae:
e8:20:6e:d0:47:da:17:4a:8d:24:a4:a8:29:85:9f:
81:dc:7e:fc:e0:fb:be:e3:15:41:cb:94:e4:33:0f:
87:38:28:25:ef:04:a5:b8:2f:f4:ba:5d:b1:79:7b:
57:cb:25:fd:2d:46:f9:82:79:22:8c:12:e7:64:c3:
f2:b1:c7:b2:74:e7:0f:0b:22:51:36:e5:d3:46:aa:
40:f4:18:fd:0e:a1:8d:fb:76:ef:5a:dd:09:fa:94:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BD:BE:1F:0C:20:C5:AA:E3:69:1F:B4:47:37:89:80:2B:D0:6E:F9
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ur2-HwwgxarjaR-0RzeJgCvQbvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f023::/48
Signature Algorithm: sha256WithRSAEncryption
5c:52:f8:93:91:fb:9a:e6:78:f6:77:94:e5:d8:39:ef:67:b6:
34:40:31:9a:bb:a9:2e:3e:c9:e9:1a:00:1e:50:d4:b7:73:04:
54:d0:61:86:ac:1a:d1:44:d1:2e:e0:20:5a:f6:4b:ba:b5:1a:
9d:9b:5c:fc:e9:d0:a5:97:29:e4:c9:fe:ee:a3:36:3c:82:1f:
50:52:52:4b:22:15:6d:5a:a7:4d:9d:33:1c:04:58:68:a4:42:
b0:aa:e3:bd:e4:c8:4f:96:ce:fd:43:ff:c4:0b:2f:3a:61:f8:
7f:5d:d2:2f:3d:72:75:ab:1d:28:45:ff:fd:ef:c8:46:40:3c:
87:11:c3:f0:3b:b5:0e:72:79:cf:45:e3:61:22:fd:27:36:95:
44:fe:0f:6c:64:1b:47:9f:05:d6:4d:16:38:9b:39:02:d5:c3:
0f:1c:2a:c4:a5:0d:13:96:1a:04:4c:92:30:4a:fd:6f:5a:62:
24:98:25:3e:6e:99:32:cd:de:59:56:73:4f:26:dc:96:4e:ec:
1e:a3:ba:df:09:0c:05:c6:1f:68:2a:a8:c7:52:8f:61:4f:3f:
01:06:ad:86:7b:cd:2f:fc:a3:cb:a9:d2:1a:42:c7:5f:3d:83:
8b:ca:06:39:04:00:64:c9:83:d4:e3:5c:96:62:8e:3e:55:44:
84:11:9f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:36 2024 by rpki-client on console-ams.rpki-client.org