Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/4Ma5BLaNrVVdW7vX8oY6JeIHyjk.roa
File: 4Ma5BLaNrVVdW7vX8oY6JeIHyjk.roa (raw, json)
Hash identifier: u6MyUc2R+oUio/hE1MLjP/0Y8R+jbkS8FqqwDabZBvE=
Subject key identifier: E0:C6:B9:04:B6:8D:AD:55:5D:5B:BB:D7:F2:86:3A:25:E2:07:CA:39
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0187D7DF3A70BCDF7691A46DBA0715D9D740
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/4Ma5BLaNrVVdW7vX8oY6JeIHyjk.roa
Signing time: Mon 01 May 2023 15:12:23 +0000
ROA not before: Mon 01 May 2023 15:12:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139321
IP address blocks: 2a0c:b641:9e0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d7:df:3a:70:bc:df:76:91:a4:6d:ba:07:15:d9:d7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: May 1 15:12:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0c6b904b68dad555d5bbbd7f2863a25e207ca39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:50:84:47:3c:42:a0:e2:ae:17:9c:e4:c8:10:
3d:c6:cb:6d:46:57:4e:54:b3:8e:cf:3e:51:40:4a:
ac:f3:85:67:63:bb:8d:da:a4:4b:53:85:39:5a:83:
67:02:6d:69:8a:1f:0d:27:4b:a1:7b:a5:49:0b:b4:
18:22:1a:3f:d1:55:f0:52:b3:cd:94:7a:21:cf:50:
f1:90:f4:0d:ec:cd:dc:f9:7d:87:d1:6c:ae:e8:48:
5d:88:c7:03:ff:0c:d6:ff:64:ed:70:df:9e:15:f8:
51:4c:ab:d8:e9:4c:93:3b:eb:21:be:58:aa:72:07:
15:2e:ca:f2:81:9d:b4:5a:bc:f3:c3:8c:05:4c:e2:
ce:17:b1:d0:ad:6a:2a:65:13:30:f6:62:64:f5:6f:
79:44:0f:18:94:cb:c9:0f:83:af:73:cd:f8:05:42:
66:27:bf:54:16:fd:a4:50:33:ab:a1:3c:eb:53:55:
33:4a:ac:34:e2:d0:9d:22:5b:96:0d:a6:64:77:0c:
4b:27:4b:cc:7c:2a:9d:82:e0:3c:e4:0a:ed:ee:8f:
1e:5d:68:bf:65:ea:6b:88:ac:83:c4:fa:72:0d:fe:
55:42:b6:6f:26:7a:ee:bb:06:e5:80:61:ed:7f:ff:
69:cd:28:2c:2a:6b:e1:da:85:86:ee:99:75:54:6c:
6e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C6:B9:04:B6:8D:AD:55:5D:5B:BB:D7:F2:86:3A:25:E2:07:CA:39
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/4Ma5BLaNrVVdW7vX8oY6JeIHyjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:9e0::/44
Signature Algorithm: sha256WithRSAEncryption
0f:d8:1f:07:df:a2:d8:26:fb:b4:0a:04:d5:a8:d6:17:b4:28:
ab:39:2e:ec:bf:c2:0a:6c:de:d8:2c:9f:b3:25:b8:f0:27:69:
91:ba:f8:f9:3c:92:4f:77:e0:07:d4:e3:49:f4:e2:b0:5a:ae:
02:c3:0f:b6:8d:8d:de:7a:8d:11:99:4a:cb:89:4d:b9:33:6e:
6e:00:85:8d:e1:7a:56:38:29:7f:8d:21:b1:e2:c0:6f:69:5f:
e0:61:d3:59:c7:2b:05:0c:41:b8:c9:e2:3d:21:fb:ac:95:36:
e8:5a:d8:14:4c:e6:3d:d4:5b:45:92:c5:b4:9e:cc:cf:de:4a:
04:a9:8b:86:04:db:c4:a4:c1:6f:1c:33:0f:85:78:6b:a1:b2:
8f:0f:cf:aa:44:1e:b0:61:46:73:39:10:71:43:46:9e:f0:6d:
32:12:75:08:8a:b8:7a:e8:71:aa:77:c7:11:d2:79:6d:e0:f4:
38:00:dd:3d:a0:db:9d:51:0c:cb:a0:12:9b:d2:ce:45:3a:26:
fd:ca:d1:6c:1a:3e:dd:0a:a8:71:4f:59:56:a1:1f:80:17:be:
83:e8:dd:6b:c6:a0:9c:16:8f:53:33:8f:b8:7a:ee:e2:b9:1a:
a2:64:5d:8c:51:3c:ee:81:3f:d1:5e:e4:33:ff:51:fc:1a:e6:
7e:2c:b2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org