Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5LToR7RwLB2JE_ehzcWImTl9bbY.roa
File: 5LToR7RwLB2JE_ehzcWImTl9bbY.roa (raw, json)
Hash identifier: 6JtLYpat/hk4wVJtoA6OVUuRw5dmlBaMfwB2vNPeJSA=
Subject key identifier: E4:B4:E8:47:B4:70:2C:1D:89:13:F7:A1:CD:C5:88:99:39:7D:6D:B6
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E9451E701D391EEEBA7DC476763AD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5LToR7RwLB2JE_ehzcWImTl9bbY.roa
Signing time: Mon 02 Jan 2023 06:15:07 +0000
ROA not before: Mon 02 Jan 2023 06:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213015
IP address blocks: 2a0c:b641:5b0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:94:51:e7:01:d3:91:ee:eb:a7:dc:47:67:63:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4b4e847b4702c1d8913f7a1cdc58899397d6db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f6:82:58:00:9e:f6:a1:86:b6:ef:39:b8:07:
ae:43:8f:9b:1f:54:3d:a4:be:e5:f7:3b:3b:be:5e:
ae:44:8b:86:ab:a7:a3:93:1d:1b:75:ac:84:72:26:
8c:55:2a:ec:af:dc:ed:bc:32:6c:08:ed:7a:2c:13:
a4:95:6d:d0:69:97:ba:7e:f7:1b:43:a3:0f:a8:37:
95:3c:7d:6a:a5:09:cd:ca:4b:48:f2:54:f8:c8:6f:
64:58:8e:c1:f0:fe:a2:b5:f8:ce:22:fa:1e:b9:8a:
d3:bb:f3:94:54:5b:e9:4a:07:4a:22:ce:95:27:24:
2c:34:c6:3a:fd:7e:dd:59:aa:8f:43:75:9c:5a:2b:
51:8a:5c:e0:89:df:ae:72:9c:8c:ea:4e:20:4b:be:
3b:c8:3a:25:6f:7d:20:6f:20:27:a2:85:d6:54:1c:
15:7d:74:58:7a:df:92:c3:d9:43:ef:cc:9d:85:1f:
ac:9a:3c:ff:a8:09:8d:f0:9e:8a:92:a7:2a:fb:ca:
04:40:03:67:59:fe:31:3f:f2:4f:54:f0:fc:65:96:
b9:13:c8:97:d3:03:9e:90:bb:01:43:5f:5b:af:ce:
6b:53:b5:d3:df:50:b6:c6:a7:89:3c:73:2d:d2:9d:
5f:55:b6:c2:23:f0:39:1d:e2:f8:63:93:4a:ca:e2:
9a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B4:E8:47:B4:70:2C:1D:89:13:F7:A1:CD:C5:88:99:39:7D:6D:B6
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5LToR7RwLB2JE_ehzcWImTl9bbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5b0::/44
Signature Algorithm: sha256WithRSAEncryption
67:ce:79:b9:5e:cd:e8:d6:b3:f9:47:0e:a4:02:8d:01:11:d5:
0c:5d:ce:15:d3:c3:67:2d:6f:58:9c:88:93:e1:8a:95:69:fe:
d8:88:f1:cb:ea:84:38:f6:a6:7e:5c:74:6e:55:a0:94:5e:01:
35:a1:fe:9e:0d:bc:83:0b:39:21:5b:2c:dc:df:02:c7:a4:a8:
4c:dd:ce:26:46:0a:f6:7f:99:14:f0:18:2c:61:2f:12:90:2e:
42:ce:d8:e6:f4:39:d3:a1:5d:b0:69:00:48:c5:22:bc:af:90:
08:63:b5:29:07:38:70:62:64:b2:b5:b8:c3:c2:01:61:2f:7c:
86:4a:c7:08:aa:8a:92:ce:49:c3:9a:59:b2:7f:db:46:12:55:
7a:35:ab:30:0a:a5:3c:2e:8b:4e:eb:b4:0f:ff:ae:7b:84:44:
dc:25:13:93:46:79:9c:41:ad:7c:13:9d:c7:8a:f2:79:f2:7b:
ef:82:d7:c7:9a:f4:2e:25:9a:a8:71:f7:ba:6f:8c:da:cd:c8:
bc:54:ca:02:7b:93:b1:35:4b:9b:fb:09:a5:ba:95:70:36:e6:
28:42:5e:c8:15:f7:1d:0a:85:8a:f5:11:39:83:6a:91:f6:5a:
05:44:23:a6:df:e7:2b:c1:41:13:ab:95:2f:78:a1:59:3c:cf:
a7:51:d7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org