Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5NFfPhXnALROg8wat3Qfhb5tcOM.roa
File: 5NFfPhXnALROg8wat3Qfhb5tcOM.roa (raw, json)
Hash identifier: c5jB+gzRY4ghr9R+268ZUzCgyHUCMVpZUy+KN0MnHiU=
Subject key identifier: E4:D1:5F:3E:15:E7:00:B4:4E:83:CC:1A:B7:74:1F:85:BE:6D:70:E3
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0186E1F2231366470CA3CC23D0064B848728
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5NFfPhXnALROg8wat3Qfhb5tcOM.roa
Signing time: Tue 14 Mar 2023 21:06:27 +0000
ROA not before: Tue 14 Mar 2023 21:06:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213219
IP address blocks: 2a0c:b641:9a0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e1:f2:23:13:66:47:0c:a3:cc:23:d0:06:4b:84:87:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 14 21:06:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4d15f3e15e700b44e83cc1ab7741f85be6d70e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:87:70:d4:e5:ad:9e:ab:12:d0:15:13:44:
c1:dd:55:08:5e:ba:12:31:b5:4f:d1:41:f7:cd:36:
b8:fa:7e:65:2c:f7:d3:c3:4d:12:98:ea:80:27:0f:
2b:7f:1a:70:c1:30:f0:d4:de:9e:6a:4c:7a:06:0b:
21:69:64:41:ae:ca:2f:10:86:17:e8:d2:fb:4d:6d:
90:c8:5a:72:aa:f6:42:1e:34:95:84:9f:b5:ef:9a:
1c:fb:74:31:47:b8:e0:66:8c:9a:10:59:d9:bf:4f:
f2:32:c8:44:b6:34:05:4f:be:d8:e5:2a:12:2e:b5:
ee:9d:ab:8a:49:38:8d:d3:3e:68:73:d8:78:64:bb:
0b:ee:47:02:00:12:86:07:ed:32:e6:81:b1:f1:0f:
89:55:3d:8e:da:39:b1:14:db:c8:13:db:7f:7a:b6:
ff:10:82:f4:92:7e:bb:d6:b6:b0:21:cb:4a:b3:99:
d5:61:00:14:6a:59:fb:03:74:4e:c2:bc:e5:e9:5d:
c0:cc:1b:c3:7e:6d:25:73:d7:39:5c:3e:4d:9b:e2:
8a:86:74:ba:e1:a5:f2:bb:2c:a2:e3:4b:af:b2:cb:
f6:88:e0:d8:29:05:39:1d:39:b9:1a:f3:f4:a7:70:
30:c8:3f:3f:0a:22:64:a4:3f:c3:11:08:ae:4d:c2:
af:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D1:5F:3E:15:E7:00:B4:4E:83:CC:1A:B7:74:1F:85:BE:6D:70:E3
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5NFfPhXnALROg8wat3Qfhb5tcOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:9a0::/44
Signature Algorithm: sha256WithRSAEncryption
73:21:b3:4b:66:9a:eb:b3:e8:4f:06:c1:a6:cb:73:b6:db:83:
eb:4d:7e:d5:3a:1b:3a:93:3c:cd:f2:47:db:ba:dc:b3:06:11:
16:4a:1c:cb:8e:e8:ce:5d:62:9d:c4:59:0a:a0:54:ff:1f:bb:
59:58:e6:9a:5c:aa:27:b2:0b:51:ab:a1:dd:30:75:1b:57:5d:
7f:0c:1e:f3:eb:97:22:d9:95:c7:e5:37:8a:de:ca:b4:c1:74:
9d:d1:f2:09:f4:db:48:42:c2:c4:3c:cc:f4:9c:e7:93:99:9d:
7a:02:1f:13:7c:32:de:c8:f1:dd:70:8d:49:7a:f5:c2:1c:bd:
b3:9f:26:70:c1:b2:69:29:fc:b1:2e:50:26:99:92:6e:fc:c7:
a6:89:e7:3c:bb:7c:c3:5e:f1:5a:7d:dd:9a:d2:db:35:88:ca:
68:e4:ca:b2:4b:a9:45:c4:3f:0c:50:56:cd:e8:7a:58:08:84:
90:5a:0b:77:da:8f:b0:2b:3c:48:52:20:c3:93:ac:83:4a:70:
ce:47:de:b1:16:40:46:5b:f8:7d:8d:7e:48:fb:77:ac:21:6a:
26:da:42:8b:34:46:2c:f0:a9:b5:a3:4d:1c:4b:f3:dd:30:25:
83:00:f3:58:bc:ad:d3:5d:1e:e5:c5:f2:e9:01:32:d6:bd:55:
1b:5c:f5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org