Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/30Pa5zp2qF7zJAKy_3pzbAvszbY.roa
File: 30Pa5zp2qF7zJAKy_3pzbAvszbY.roa (raw, json)
Hash identifier: E9TcgOYO3qCrdhRW2yXwIOy1yxz6D7BRV4AzLzY21WU=
Subject key identifier: DF:43:DA:E7:3A:76:A8:5E:F3:24:02:B2:FF:7A:73:6C:0B:EC:CD:B6
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7F41A9AA0945FDC7AE43DF12DFCC
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/30Pa5zp2qF7zJAKy_3pzbAvszbY.roa
Signing time: Mon 02 Jan 2023 06:15:01 +0000
ROA not before: Mon 02 Jan 2023 06:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211139
IP address blocks: 2a0c:b641:160::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7f:41:a9:aa:09:45:fd:c7:ae:43:df:12:df:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df43dae73a76a85ef32402b2ff7a736c0beccdb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:8b:6e:1b:5d:98:ce:84:d9:0d:a2:f3:d7:
0f:9f:3b:97:12:d8:26:e7:cd:e5:77:b5:e3:18:7e:
0b:12:51:32:d7:b7:9b:78:2f:0b:4b:33:95:7b:04:
4d:a2:45:4a:ff:f6:73:cf:95:91:35:02:30:4c:6b:
bd:fd:0f:a4:ea:cd:b3:18:b5:81:f3:91:ae:bb:c6:
4b:b0:a3:c8:db:85:52:c2:e4:c2:04:19:74:af:c5:
0c:31:6f:cd:e7:d0:6d:8c:e0:ec:87:5a:c0:8e:de:
53:d9:28:6a:00:71:b8:88:52:dd:ce:7f:0c:47:d7:
e9:8b:4a:a1:db:a4:cb:0d:95:4a:5b:dc:a3:0e:3e:
8c:c8:8d:ab:3a:d1:fa:81:d5:ee:93:b7:ab:53:62:
27:86:a8:f8:5b:9b:e3:42:44:4b:8c:1f:1a:ff:ae:
69:28:4b:86:d2:8d:91:c2:e3:5d:72:d9:eb:4b:47:
e4:7c:15:7c:54:bf:84:9c:38:85:42:9a:a1:39:92:
8e:57:ad:85:8c:85:d9:29:9d:44:9e:57:3e:ed:65:
73:1b:f6:b6:a0:e5:c6:cb:fc:86:ca:9f:da:8b:cf:
05:9a:f6:56:b5:08:cd:38:64:10:ae:18:10:f0:a4:
91:73:e8:a3:33:23:76:2e:d7:44:c5:0f:c9:a8:c3:
84:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:43:DA:E7:3A:76:A8:5E:F3:24:02:B2:FF:7A:73:6C:0B:EC:CD:B6
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/30Pa5zp2qF7zJAKy_3pzbAvszbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:160::/44
Signature Algorithm: sha256WithRSAEncryption
1b:9b:b2:30:b3:5b:2d:d4:48:55:86:7f:6f:87:c4:73:b7:35:
59:42:ca:73:44:55:2d:09:09:bf:06:3f:fa:ba:5a:a4:fd:c7:
70:80:39:37:41:ed:c0:5c:89:6b:81:51:63:8f:fb:e5:7e:f6:
0e:6a:75:1b:44:8a:0d:9e:8a:c2:00:27:56:ae:d3:c2:d0:7f:
91:b9:a3:a6:d9:71:0c:e1:5e:9b:14:53:db:97:60:27:52:30:
ce:2b:c5:b9:fe:b8:62:2d:f7:3e:47:df:41:e9:5b:4a:6d:dd:
53:38:82:46:5d:a5:1e:92:23:5f:60:22:17:40:88:57:a8:de:
33:56:b1:93:19:4c:67:5f:8e:21:5c:02:fb:e3:b8:0e:9d:0e:
05:81:0c:ae:c0:c4:52:c0:6b:0d:b2:50:13:cf:b1:6f:a0:ba:
97:56:0a:62:6a:b0:48:3d:a7:90:5c:02:47:ee:64:7d:c2:c3:
ce:e7:f9:39:42:75:83:43:4d:27:f5:b4:a1:58:25:9e:8a:ef:
48:50:62:23:a2:9c:ee:11:32:3d:eb:78:63:da:0e:92:08:f3:
59:1f:d5:55:02:8e:20:67:c3:e9:89:aa:24:60:c9:dc:21:37:
bd:43:c1:65:23:ae:62:45:e4:1d:1e:e2:d5:07:ae:57:a4:15:
5b:dc:3f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org