Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-uo8zm_stTuuaJKqA6I9GDS1VnI.roa
File: 1-uo8zm_stTuuaJKqA6I9GDS1VnI.roa (raw, json)
Hash identifier: SeeJs+F4ZO9FtWnEua41jiO49YRzKd7gUOO9s2lT6dk=
Subject key identifier: FA:EA:3C:CE:6F:EC:B5:3B:AE:68:92:AA:03:A2:3D:18:34:B5:56:72
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E816B8E0EDA4C980E9474A9B33367
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-uo8zm_stTuuaJKqA6I9GDS1VnI.roa
Signing time: Mon 02 Jan 2023 06:15:02 +0000
ROA not before: Mon 02 Jan 2023 06:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211364
IP address blocks: 2a0c:b641:170::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:81:6b:8e:0e:da:4c:98:0e:94:74:a9:b3:33:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=faea3cce6fecb53bae6892aa03a23d1834b55672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8f:46:a8:c1:20:b5:25:65:82:cd:e0:76:e4:
94:7f:a7:a2:31:e6:42:36:cf:a5:72:27:a9:40:93:
12:94:7a:6a:b4:4e:a1:2b:7b:9d:f8:24:6d:52:2b:
cf:88:88:ad:39:d7:3e:f9:8a:12:f4:9d:95:b3:2c:
ec:9c:c5:68:13:4b:8b:79:96:31:25:65:b6:75:28:
d5:f2:b1:ee:9d:16:3d:b3:ba:f8:b2:da:15:1a:30:
65:45:e2:66:e7:68:c6:6e:7a:dc:32:97:1e:f2:80:
36:96:85:a1:84:35:21:c6:46:25:88:d9:cf:47:32:
e4:06:4f:d0:de:18:9c:42:9c:c6:d2:31:d7:50:f8:
2a:1e:d4:e0:b9:e9:97:25:fa:d9:bd:fb:76:a9:49:
ac:5b:b9:e1:90:9f:e5:87:14:ed:e3:8c:1b:40:b7:
4f:6d:c9:5d:0e:b0:04:6d:54:3b:36:f3:7d:a0:31:
1a:1b:ea:1a:11:23:de:ff:65:5b:ca:67:5d:4a:60:
9d:22:ab:5a:19:8e:6f:c8:77:a1:37:a5:a3:9e:96:
cb:60:22:fc:01:c4:a6:b9:f8:ed:44:fe:c5:39:eb:
a2:e6:62:f2:9b:d6:00:b7:45:c6:e7:70:34:50:62:
17:b3:92:66:75:dc:14:5b:d8:ad:1b:5b:81:13:9d:
5a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:EA:3C:CE:6F:EC:B5:3B:AE:68:92:AA:03:A2:3D:18:34:B5:56:72
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-uo8zm_stTuuaJKqA6I9GDS1VnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:170::/44
Signature Algorithm: sha256WithRSAEncryption
36:4a:9d:b8:89:e1:8e:57:89:e1:96:07:9e:87:a8:8f:ec:ef:
49:60:ed:58:55:39:b3:de:53:c3:04:42:1c:32:62:49:6b:39:
cc:65:e7:cf:b6:05:db:4b:02:f0:f7:bf:f2:a9:af:74:a8:7f:
64:7a:cd:24:2f:4d:9b:d3:0e:ba:69:9f:6f:ee:7a:0c:18:c7:
65:f2:55:0c:26:76:0a:18:03:a4:3b:06:aa:55:67:1b:dd:ab:
1d:3b:dd:bd:3e:68:36:27:79:f8:60:98:3a:a8:f5:27:32:1b:
48:8e:f2:7a:12:4b:d9:da:97:4c:3e:57:80:4d:b6:f5:15:7f:
4a:dc:90:34:ba:17:85:a1:48:84:97:c1:74:c2:67:ab:b1:30:
10:62:34:d3:90:28:58:90:d0:4d:56:34:53:32:36:a0:01:13:
49:f3:e6:21:2b:4e:f4:a7:cb:38:83:e8:28:74:bd:77:00:23:
04:9a:1f:06:31:92:5a:e5:14:be:ea:41:20:15:c0:3f:bd:b5:
2a:df:9b:a4:80:df:28:72:00:34:02:5d:27:23:5a:2e:7f:6f:
97:cb:d5:11:3f:90:b4:39:38:df:dc:43:2a:7a:fb:1e:7a:e9:
80:c1:3d:47:31:4b:7e:88:22:eb:0f:96:68:73:8f:11:f3:7c:
38:e4:3a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org