Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0DKDjpOFPr2PEY5sphvWCsAJIM8.roa
File: 0DKDjpOFPr2PEY5sphvWCsAJIM8.roa (raw, json)
Hash identifier: oS4kRIIkjMUkFU4N26Pi4oUjFW2403F3n/6C5fjJJUI=
Subject key identifier: D0:32:83:8E:93:85:3E:BD:8F:11:8E:6C:A6:1B:D6:0A:C0:09:20:CF
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7DD5973D859701F5CB940F5D2580
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0DKDjpOFPr2PEY5sphvWCsAJIM8.roa
Signing time: Mon 02 Jan 2023 06:15:01 +0000
ROA not before: Mon 02 Jan 2023 06:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210956
IP address blocks: 2a0c:b641:70::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7d:d5:97:3d:85:97:01:f5:cb:94:0f:5d:25:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d032838e93853ebd8f118e6ca61bd60ac00920cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fa:f9:e5:ae:dd:1a:a9:78:3c:24:47:92:f4:
42:6c:58:3b:c8:6f:bb:94:a7:8f:64:e4:1c:3e:f9:
b6:e5:2c:56:25:ae:05:6d:ec:a0:b9:61:8d:56:d4:
d1:41:e3:f0:fe:82:8e:d9:73:89:83:47:e4:11:e7:
ad:f2:4a:26:c1:71:cc:fc:34:79:88:cf:73:70:54:
d1:8f:62:2f:d3:56:33:26:9c:67:7a:51:1e:84:db:
e5:1b:4b:24:ce:39:ba:a5:b4:aa:f5:c1:4c:48:00:
a7:4d:b7:34:fa:38:81:94:16:ac:d9:22:f3:b3:fe:
d7:b9:c2:d1:a1:63:31:ee:07:a6:7a:cd:ff:e7:7a:
28:1f:98:a1:27:8d:12:8b:72:b1:03:1b:9d:ff:ba:
20:8c:46:be:71:3b:27:84:48:37:65:22:9a:94:d1:
c8:2c:f9:55:5e:9a:66:23:77:ee:de:41:e0:ac:31:
c9:c4:66:7a:de:d9:e9:8b:3f:8d:98:86:24:d1:84:
2a:f5:bb:ed:68:00:ee:46:84:10:1b:66:3a:a6:34:
7c:79:fc:c3:9d:8a:87:e8:1e:af:04:b1:ba:46:10:
33:82:ab:1c:7a:06:ba:e7:a3:fa:8c:47:43:a4:e5:
81:b4:a5:26:5e:4c:04:1c:ec:c9:02:c4:f7:53:fa:
68:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:32:83:8E:93:85:3E:BD:8F:11:8E:6C:A6:1B:D6:0A:C0:09:20:CF
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/0DKDjpOFPr2PEY5sphvWCsAJIM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:70::/44
Signature Algorithm: sha256WithRSAEncryption
46:6d:e3:de:17:6a:ee:1e:fb:d0:a0:2f:ac:0e:f3:18:48:94:
32:04:e3:d1:17:cf:c9:d4:33:6f:f6:a5:6b:74:eb:2e:55:4f:
9b:e7:c0:3f:a1:f3:f4:76:ed:f1:c6:eb:66:9a:28:2e:2d:2d:
36:84:5d:11:1a:a7:02:b8:90:91:88:0d:ad:d7:f1:76:f6:c6:
f6:7f:b5:a7:5d:a6:d9:c3:23:b1:25:49:bb:fe:07:fb:12:97:
58:6a:bd:61:ac:7e:42:6d:fa:4c:c4:53:9f:44:1c:9f:ca:09:
7e:1e:15:4e:e0:1c:30:e9:48:f4:e8:e8:d9:91:d0:ac:6d:d9:
9d:9f:b3:c2:aa:b0:22:32:a0:4e:b4:2c:58:56:e4:09:8b:c9:
24:db:57:87:ec:59:da:3c:7e:02:82:86:ef:da:c3:11:bf:4b:
b1:47:36:f9:e0:cc:82:2a:b2:da:c6:e0:0a:3e:8a:14:d8:6a:
d3:6c:21:b0:11:4d:38:06:cc:74:c5:cc:4c:a7:a4:43:a6:c2:
3c:60:1b:53:ef:0d:17:7c:43:9e:6a:78:2f:97:d6:3f:9d:e6:
86:37:ca:9e:33:36:c3:6f:26:f2:ea:92:0b:7a:95:58:a3:45:
9a:be:5a:4a:f2:39:3b:52:6a:c8:fe:92:9f:65:8c:4d:53:d4:
57:64:07:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org