Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-4NfFwEm_KPv7scGjwgyT6QsLHc.roa
File: 1-4NfFwEm_KPv7scGjwgyT6QsLHc.roa (raw, json)
Hash identifier: zPwJK7faAFiQNj2ouZStsLjPqjBiymgHZOt5ANUyNzw=
Subject key identifier: FB:83:5F:17:01:26:FC:A3:EF:EE:C7:06:8F:08:32:4F:A4:2C:2C:77
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01889C5ABDB0A86A8605B59674D1F4D66760
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-4NfFwEm_KPv7scGjwgyT6QsLHc.roa
Signing time: Thu 08 Jun 2023 18:52:52 +0000
ROA not before: Thu 08 Jun 2023 18:52:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198231
IP address blocks: 2a0c:b641:a30::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9c:5a:bd:b0:a8:6a:86:05:b5:96:74:d1:f4:d6:67:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jun 8 18:52:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb835f170126fca3efeec7068f08324fa42c2c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:de:ff:4b:57:01:3c:2f:3f:b0:9d:c6:c5:00:
7f:e1:91:e5:6c:d3:ef:e9:62:1e:dc:36:ac:bc:1a:
9f:37:bf:76:ac:cf:79:07:68:9e:2f:9f:0d:97:17:
fa:3c:91:b3:10:b0:a3:09:87:3d:8d:dc:b9:3b:b2:
cf:d0:c7:6c:af:45:30:f6:c8:89:cf:06:04:a6:9a:
b0:4b:b2:03:0f:7c:39:b7:97:fa:bb:f2:e7:5b:e6:
69:75:15:98:4f:0b:cb:b4:32:c3:ee:23:32:85:de:
54:e7:4f:67:aa:1a:2f:9c:40:f3:fa:e4:91:cc:84:
dc:1f:ef:71:23:fd:98:30:38:38:5a:60:37:eb:c7:
0a:7d:43:0a:09:54:cd:aa:d7:4b:0b:10:d0:13:11:
50:ea:cd:bf:4e:81:67:00:d7:d0:6a:e8:2e:6b:cb:
b7:b7:9e:9b:19:66:ae:56:cc:53:13:28:9d:79:94:
af:10:d4:c9:19:07:63:ae:bf:a7:41:47:c6:45:ac:
6d:26:f6:88:2b:36:8f:71:fc:e8:78:ba:9e:47:93:
d4:d7:99:de:ff:c5:b8:a0:ca:74:7c:2b:5f:14:b1:
de:2b:f8:44:2b:f3:e0:77:46:8a:da:76:db:47:e8:
38:d8:c6:6c:2d:59:98:1b:0a:44:b0:d1:24:1a:2f:
46:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:83:5F:17:01:26:FC:A3:EF:EE:C7:06:8F:08:32:4F:A4:2C:2C:77
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-4NfFwEm_KPv7scGjwgyT6QsLHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a30::/44
Signature Algorithm: sha256WithRSAEncryption
15:09:52:d7:04:1a:37:c9:38:1a:8b:df:f7:b0:ab:30:ff:a0:
56:97:03:bc:b7:e6:bc:00:54:7a:46:12:49:93:21:20:a8:1d:
42:f8:86:89:78:2e:40:ca:39:76:ec:18:cb:f8:0a:ad:dc:82:
62:c8:43:28:00:49:17:34:57:cb:74:f6:8d:57:4d:31:3f:8b:
06:f5:52:28:6c:ee:ac:96:c6:37:f6:dd:0f:52:04:eb:9a:ad:
7f:2c:f5:c4:42:23:d8:eb:ee:66:0d:85:d8:8d:ac:58:74:e3:
ba:ba:78:e6:ef:e2:63:4c:69:5b:c8:05:bd:24:b0:50:82:44:
ce:48:64:df:6b:f8:8e:15:70:51:21:5f:3d:63:14:d9:b5:e3:
cc:4c:af:f6:01:51:43:c8:e9:a4:dd:04:ca:b3:f9:d4:34:74:
d4:df:16:4a:6c:56:ac:d5:ff:51:03:22:e0:c7:4f:42:c3:0c:
56:ed:bc:a2:fd:e2:f0:05:5e:72:a1:00:61:95:37:c2:75:ea:
a6:25:0c:3e:01:14:0d:47:8f:90:9f:71:2b:62:ae:1a:a9:de:
c9:5c:de:25:a9:b2:4b:7a:e2:bb:72:9a:1b:12:73:a5:ac:98:
7a:41:71:26:5c:dd:78:33:97:cb:f9:44:aa:cd:e4:eb:f4:33:
2a:05:fd:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org