Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2nQAyx7woAHn05OVnOS_jdiOTVk.roa
File: 2nQAyx7woAHn05OVnOS_jdiOTVk.roa (raw, json)
Hash identifier: HSABMDFJ9TeiKLl4OM1dZmFjaEP6PKO6vz6s2k0OkXk=
Subject key identifier: DA:74:00:CB:1E:F0:A0:01:E7:D3:93:95:9C:E4:BF:8D:D8:8E:4D:59
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01857CDBDE515A15017DC4244269E715EDB1
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2nQAyx7woAHn05OVnOS_jdiOTVk.roa
Signing time: Wed 04 Jan 2023 12:57:42 +0000
ROA not before: Wed 04 Jan 2023 12:57:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50124
IP address blocks: 2a0c:b641:8f0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:db:de:51:5a:15:01:7d:c4:24:42:69:e7:15:ed:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 4 12:57:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da7400cb1ef0a001e7d393959ce4bf8dd88e4d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e1:f7:e4:eb:ae:94:9b:6e:f4:ca:53:30:68:
17:83:90:5f:96:3e:31:fa:d3:9c:41:2a:06:f0:3e:
7b:c2:df:f4:9e:e3:74:cc:41:c5:c5:b6:0e:3e:4e:
3b:ea:45:35:64:00:75:69:fe:9c:a0:58:03:06:93:
08:79:9d:6a:9f:0e:54:91:ed:6c:aa:f8:7a:cc:a4:
93:df:1c:50:bd:4e:00:92:68:87:81:a9:c5:0b:75:
b9:59:74:29:fc:15:60:05:de:d9:70:f8:48:a8:51:
59:0d:88:96:e8:2e:15:69:8a:c5:10:72:80:42:ef:
76:f3:98:88:07:62:86:69:70:fb:a6:8f:61:0e:3c:
3f:9b:f1:62:bb:de:dc:58:a4:7c:7e:69:00:d4:24:
40:7a:a1:fb:22:35:61:88:dd:b7:de:28:1c:b5:bd:
1e:ec:a1:44:82:e5:ac:6d:ce:76:18:68:a8:60:71:
66:66:e4:e4:9b:30:a3:a8:43:1b:8c:01:18:d7:82:
47:45:c2:4c:d2:a2:2d:77:61:15:aa:4b:f0:f4:85:
a5:33:13:28:ac:9e:9d:ec:b8:87:b7:9e:16:16:f4:
85:fe:f5:a6:6e:23:bd:e4:fb:29:4c:44:ff:71:e4:
82:98:2b:7f:1c:99:9d:a0:7e:65:1b:a1:8d:bc:fe:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:74:00:CB:1E:F0:A0:01:E7:D3:93:95:9C:E4:BF:8D:D8:8E:4D:59
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2nQAyx7woAHn05OVnOS_jdiOTVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:8f0::/44
Signature Algorithm: sha256WithRSAEncryption
09:01:4c:4a:82:09:dd:d6:19:d4:c1:b3:c4:56:6f:d0:fb:7e:
88:28:3b:ec:53:d0:8d:2b:c9:10:c1:d9:16:15:07:40:91:8f:
ac:73:1b:e6:0b:91:1b:97:90:1c:67:3a:54:80:10:9e:17:5b:
69:36:3c:bd:46:8c:d3:11:03:12:ad:32:5b:9b:0a:5f:a3:11:
2b:8a:42:ff:01:35:d8:34:96:39:f0:91:7f:a5:2c:fc:2a:58:
80:e5:1c:fa:43:86:ea:01:6d:cc:4d:40:4e:25:df:55:35:65:
6f:85:72:c5:1a:ef:f4:ab:a7:0b:b2:3e:26:d3:de:6f:8f:5e:
bf:b3:f8:60:c4:ad:38:ac:6d:0b:bb:a3:05:5e:ce:8b:8b:d3:
40:ff:4e:b0:46:c5:88:2b:30:8d:9d:e4:97:17:7d:9e:0a:05:
44:9d:5d:e3:e1:3f:4a:ab:c5:40:e3:5c:4b:34:e6:41:73:73:
de:34:4a:69:c7:7d:2f:b5:6d:8d:7d:b2:81:50:fd:71:fc:80:
41:43:cc:53:e1:f9:86:be:01:d0:c7:d6:d9:66:d0:59:ff:7d:
07:d0:4b:93:9a:83:a8:b4:51:16:11:32:37:93:ec:30:72:48:
a2:7d:10:7f:12:b6:66:ad:44:5e:7d:f6:d5:40:eb:d7:4c:f1:
67:d9:48:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org