Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-KAlmNGREntN1_R4ZNRsZo2mlHY.roa
File: 1-KAlmNGREntN1_R4ZNRsZo2mlHY.roa (raw, json)
Hash identifier: UfcS8FXJ2tRW2CWIUKfrSDDEL7K/w2bdryPTVzC62+A=
Subject key identifier: F8:A0:25:98:D1:91:12:7B:4D:D7:F4:78:64:D4:6C:66:8D:A6:94:76
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0192DA44D5752E2FA94FE6D6B39C06BC1234
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-KAlmNGREntN1_R4ZNRsZo2mlHY.roa
Signing time: Tue 29 Oct 2024 21:53:17 +0000
ROA not before: Tue 29 Oct 2024 21:53:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209606
IP address blocks: 2a0c:b641:320::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Oct 2024 16:09:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:da:44:d5:75:2e:2f:a9:4f:e6:d6:b3:9c:06:bc:12:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Oct 29 21:53:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8a02598d191127b4dd7f47864d46c668da69476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:88:20:33:f1:a2:54:84:e4:68:c5:40:68:65:
8f:9a:7e:33:83:87:b3:46:99:33:d5:80:b2:8f:4f:
3d:3c:41:63:54:92:1b:77:e8:15:8f:d7:3a:78:3c:
de:8a:be:38:83:bb:0a:2c:75:c9:d6:c3:29:71:e1:
67:37:9b:29:92:ae:9a:76:c1:d7:cf:58:ca:e6:e6:
4e:3c:f8:47:3f:f5:d6:60:8f:2b:14:a4:c8:53:97:
ff:0a:ba:a2:39:a1:2d:79:e0:41:79:30:f4:2d:5b:
cd:46:81:43:db:a8:25:b3:fc:0d:2f:d8:50:71:0a:
0e:a3:1c:dc:84:ab:eb:06:b3:1d:43:cf:b1:c7:93:
22:40:c2:e0:99:33:e8:64:4f:1a:97:4c:fd:b6:54:
d7:e4:1e:b5:ad:6c:12:65:1e:2b:46:2d:8d:0a:20:
38:dc:94:6a:cf:a8:be:7b:72:52:b0:5a:65:9f:cc:
ff:30:f4:79:28:90:9f:5f:ec:6c:ca:73:be:ee:72:
fb:dc:f2:cc:1e:ea:72:a1:93:d1:59:51:25:81:7c:
ce:69:3a:8a:a7:21:c9:12:92:50:df:66:98:41:90:
1e:f1:ab:7f:e5:9f:00:4c:6d:63:22:f0:d2:80:be:
94:a0:2a:66:42:41:92:6d:20:3f:5c:3c:1d:7a:c3:
78:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A0:25:98:D1:91:12:7B:4D:D7:F4:78:64:D4:6C:66:8D:A6:94:76
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-KAlmNGREntN1_R4ZNRsZo2mlHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:320::/44
Signature Algorithm: sha256WithRSAEncryption
0c:25:53:6d:e0:a1:67:8a:4a:76:a8:76:a3:12:12:96:25:91:
ea:d1:79:9b:f1:5f:27:31:5f:4c:8b:0d:2e:66:03:06:de:20:
de:25:03:4b:ee:86:a9:bd:0f:64:ed:80:78:66:c6:28:af:c0:
3e:5c:18:7c:47:17:a0:e3:d5:4a:be:b6:4b:93:fc:bf:ee:58:
d5:9f:5a:24:f1:cb:d9:4e:35:23:d2:04:c8:3c:f8:9c:39:a9:
ad:67:c3:c5:9d:53:9c:93:cd:4f:e2:48:8c:51:bc:76:97:1e:
b9:76:46:c8:fa:6c:b8:7a:c0:c3:43:a2:52:2d:25:a5:76:98:
97:96:ba:61:91:98:0c:65:cd:8f:72:6e:5c:0c:73:74:33:ed:
ab:ff:86:a5:ca:a9:8e:88:4c:53:8f:82:4d:83:1c:f1:2b:40:
26:ac:94:55:91:77:99:ba:9d:4f:bb:25:f2:34:e9:a8:a2:5a:
f0:b7:4b:4d:c5:14:db:c8:f1:e1:e1:cb:54:2f:c4:fb:53:56:
d0:0d:40:d7:2d:07:9e:3b:1d:23:4a:18:63:61:e9:1f:75:42:
fb:cc:15:d3:82:b5:36:b1:b7:14:56:bb:89:84:29:48:52:94:
d7:32:95:8f:a1:29:3d:00:db:ab:b5:a8:60:69:37:07:c7:71:
a4:42:ba:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 18:13:43 2024 by rpki-client on console-fra.rpki-client.org