Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2SNQj0fk11_Ev5E2VPrR5eAUQp8.roa
File: 2SNQj0fk11_Ev5E2VPrR5eAUQp8.roa (raw, json)
Hash identifier: fsJogG8jKh+mTtBea0cPlhLvF69NGZfMhmdFv7Ks96I=
Subject key identifier: D9:23:50:8F:47:E4:D7:5F:C4:BF:91:36:54:FA:D1:E5:E0:14:42:9F
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E4CB42C35FF1A72A8D64E8B7681CD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2SNQj0fk11_Ev5E2VPrR5eAUQp8.roa
Signing time: Mon 02 Jan 2023 06:14:49 +0000
ROA not before: Mon 02 Jan 2023 06:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201106
IP address blocks: 2a0c:b642:1a0a::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:4c:b4:2c:35:ff:1a:72:a8:d6:4e:8b:76:81:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d923508f47e4d75fc4bf913654fad1e5e014429f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7f:10:36:61:9e:35:05:7f:cc:07:8e:5c:51:
8c:03:43:d3:f7:2a:02:32:63:19:20:07:89:3d:a8:
c4:55:9a:9d:fc:a5:de:ea:af:0e:26:3f:07:66:6b:
5b:63:ac:04:f9:c7:fa:7a:a7:74:75:57:c7:29:23:
15:23:c1:10:c7:ee:87:77:3e:83:2c:4e:c9:68:01:
d4:69:91:ea:6a:ea:9c:a5:c9:98:1d:3c:38:c4:75:
cb:a6:0a:a0:82:7d:52:47:5d:df:d9:c1:61:63:45:
bd:c0:ef:4e:cf:c2:48:3a:d2:fb:2d:87:62:f2:b3:
33:9d:3f:9f:4d:81:25:da:ce:db:37:e6:95:05:fa:
99:5e:0a:e8:7f:df:cb:24:ed:fe:7f:2d:20:98:ca:
db:07:e5:af:4c:50:7f:4a:46:7f:97:ec:9f:90:53:
c2:0e:72:b4:aa:d6:bf:8f:f3:44:76:97:3a:ef:e7:
d9:fa:55:3f:db:18:54:5e:a3:af:ae:ee:70:09:6b:
f2:30:b4:24:90:69:3d:30:da:1c:6f:6e:1d:51:70:
2b:3f:eb:ae:02:f7:0f:5f:ce:b0:b7:2a:5b:a1:32:
c7:91:5a:ff:ee:96:8a:c9:69:ef:3f:0b:e2:c1:bc:
72:61:1c:3b:d0:85:ae:99:c3:dd:da:b5:03:d8:81:
fb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:23:50:8F:47:E4:D7:5F:C4:BF:91:36:54:FA:D1:E5:E0:14:42:9F
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2SNQj0fk11_Ev5E2VPrR5eAUQp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:1a0a::/48
Signature Algorithm: sha256WithRSAEncryption
22:a5:e1:ca:b7:80:ab:1b:07:7b:fc:2a:a6:e2:28:e9:88:ec:
77:52:9d:65:e7:95:4a:0a:25:50:e6:d2:6c:18:eb:92:c6:17:
8a:a6:58:e8:49:cd:39:81:12:c5:da:0b:46:c6:50:a0:c6:b2:
de:b8:d9:e0:6c:55:d1:23:b8:a4:f3:59:64:ac:7d:e5:57:ac:
83:c0:db:42:04:d1:f0:11:bd:ef:3e:b0:b9:60:7d:8a:fd:20:
c7:02:04:c5:77:e8:a7:28:81:e7:54:c2:75:fe:0d:e9:a8:35:
81:ab:10:db:dd:02:5c:fa:c8:50:f3:e8:ce:a7:97:5e:41:e3:
20:ad:79:71:ba:fe:d9:f0:43:31:39:4f:7f:94:fc:ff:ac:0b:
1a:35:ee:ca:d2:5f:9a:9b:f9:3b:c6:52:33:ae:1e:fc:19:34:
dc:6f:3e:69:9f:a9:ba:5c:13:8f:e1:e3:76:47:a7:a3:66:5d:
77:71:a3:9e:aa:61:e3:e5:7e:8e:24:e3:82:d8:84:05:01:63:
d6:90:14:11:7d:ee:83:72:bf:8e:62:06:03:86:98:56:1a:32:
ad:41:81:b8:d0:7d:52:0a:1e:4e:34:fc:25:17:61:bd:3d:c4:
83:1d:74:9e:4f:4a:42:1e:c0:43:82:bb:c6:08:9c:3c:e4:3f:
8e:98:fa:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org