Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5LUKqSBTLcHiODnjDx5f3L6kZqc.roa
File: 5LUKqSBTLcHiODnjDx5f3L6kZqc.roa (raw, json)
Hash identifier: c7QxJtQqaAL2M+4F86+m4s6EobLgRpXMur189MRZxWU=
Subject key identifier: E4:B5:0A:A9:20:53:2D:C1:E2:38:39:E3:0F:1E:5F:DC:BE:A4:66:A7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E60C408DC0C1BF751351156051868
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5LUKqSBTLcHiODnjDx5f3L6kZqc.roa
Signing time: Mon 02 Jan 2023 06:14:54 +0000
ROA not before: Mon 02 Jan 2023 06:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207363
IP address blocks: 2a0c:b641:720::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:60:c4:08:dc:0c:1b:f7:51:35:11:56:05:18:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4b50aa920532dc1e23839e30f1e5fdcbea466a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ac:84:6b:a3:4e:7b:97:12:c0:fd:37:87:ad:
3a:89:87:61:4d:5d:48:ec:ff:ba:63:55:6b:d9:c8:
54:f3:5e:32:88:47:4a:49:c3:07:93:f0:9f:8c:06:
5c:9e:0a:a2:9e:19:a2:5d:ff:52:4a:16:d3:a0:61:
9e:7c:ee:b1:27:bc:f4:82:ed:8b:1c:70:d9:07:df:
ff:70:7a:7e:db:d1:11:2f:67:08:2c:f8:93:c9:36:
19:83:a2:cc:50:bf:8f:07:a7:c8:27:c6:c3:58:6e:
29:10:86:93:79:aa:cf:ef:fe:dd:a9:41:2f:71:24:
33:4e:3c:ab:c0:84:2b:79:4b:19:70:52:24:c5:b2:
dc:22:a9:22:af:b3:4a:f0:2b:2a:dd:ae:2c:50:15:
15:c7:65:69:95:4c:07:01:c8:54:91:95:18:09:ef:
96:cc:34:37:36:52:f7:16:2e:02:1c:9b:6b:5b:14:
7c:31:f8:71:75:1b:d5:98:e8:e2:45:bc:4b:78:18:
10:de:ba:e1:dc:b0:a0:a3:ef:61:dd:68:bd:31:30:
ba:ed:e7:1f:45:b7:72:ba:95:c6:9f:20:9b:28:4a:
40:ee:fc:37:61:d0:0b:c3:e6:49:39:c6:ba:23:52:
32:db:96:ef:f5:5f:2d:f1:d5:c7:83:97:32:bd:07:
cb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B5:0A:A9:20:53:2D:C1:E2:38:39:E3:0F:1E:5F:DC:BE:A4:66:A7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5LUKqSBTLcHiODnjDx5f3L6kZqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:720::/44
Signature Algorithm: sha256WithRSAEncryption
8c:c7:b1:6b:bf:e0:3f:81:f3:c1:3d:a1:f5:3d:15:54:76:09:
a3:5c:4e:ca:86:3e:24:42:df:43:d4:6a:c9:d7:cc:4c:09:c6:
ff:61:db:1e:73:3f:38:14:f0:94:cf:e2:88:a1:7e:63:ec:08:
c7:04:44:b3:76:bb:9f:98:fd:ac:af:88:d6:88:63:ea:64:6f:
c7:c7:63:07:fe:69:2b:42:dd:c4:12:c5:4c:70:c8:12:0d:cf:
54:5f:22:1b:4e:2f:b3:cc:ab:4f:26:cf:4e:df:0e:1d:3e:f3:
5c:df:1f:19:27:c4:d0:49:e5:5b:96:1c:78:db:06:fc:02:de:
9c:5c:ec:dd:5a:99:f0:30:47:01:24:c1:e9:64:c9:13:2c:82:
ba:32:95:db:93:05:da:55:1a:1e:04:81:54:13:95:56:7a:2f:
51:78:59:cf:7f:10:af:8b:ea:01:22:90:83:79:c1:2f:d8:30:
3e:4d:03:8b:e3:72:fc:3a:67:8d:2c:3f:d5:a7:68:03:a3:5a:
85:74:c8:16:b6:02:e7:61:0c:5c:95:f5:a2:9e:8c:bf:d7:b4:
e8:ba:eb:88:88:e7:d7:75:d5:76:99:1f:c3:7b:30:9b:b4:c6:
97:28:06:d1:a0:01:9f:34:f7:f4:e1:b2:8c:5a:cf:b9:39:8f:
eb:fe:9d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org