Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6i5YMvxDT-fUiEv2550d2Pq-aiQ.roa
File: 6i5YMvxDT-fUiEv2550d2Pq-aiQ.roa (raw, json)
Hash identifier: GVSWcMFsdGlmX4VlwuspECzOT9fQIC5yqai2ZZHaQ7c=
Subject key identifier: EA:2E:58:32:FC:43:4F:E7:D4:88:4B:F6:E7:9D:1D:D8:FA:BE:6A:24
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185EAACD67A8034F1BE5B2BB77014BF5114
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6i5YMvxDT-fUiEv2550d2Pq-aiQ.roa
Signing time: Wed 25 Jan 2023 20:44:33 +0000
ROA not before: Wed 25 Jan 2023 20:44:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200143
IP address blocks: 2a0c:b641:950::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ea:ac:d6:7a:80:34:f1:be:5b:2b:b7:70:14:bf:51:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 25 20:44:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea2e5832fc434fe7d4884bf6e79d1dd8fabe6a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4a:8d:4a:d9:06:95:f4:f5:7b:66:76:44:49:
64:f7:9b:3b:c6:c9:96:fa:52:02:ff:07:a0:8d:01:
96:24:06:6b:6e:7b:97:87:b9:53:07:c8:cc:51:b9:
9b:3e:cb:55:bf:12:d7:85:f4:dd:8f:b0:c2:4e:98:
4c:0d:09:fb:28:36:da:66:8e:e7:ec:cc:ee:7c:31:
df:b5:dc:ba:b5:99:80:67:b3:09:ed:0b:d1:90:70:
d8:04:67:9a:30:dc:71:b0:1c:49:b9:54:c8:81:00:
00:99:30:0f:05:a2:e7:0a:74:8b:12:96:4f:62:3c:
a1:4d:2a:4a:7e:2d:e9:b6:9e:99:66:d8:7e:ad:9f:
e4:4e:7c:70:09:6b:43:8f:46:63:60:04:98:4c:c2:
b1:00:62:97:e9:ec:ae:a3:9a:1a:98:a3:43:40:f6:
fa:a3:1e:fe:99:e6:16:cd:98:1b:6a:44:50:1e:0a:
32:65:f9:b6:d0:d7:6d:8f:3b:51:89:16:7f:3c:2f:
bb:2e:fe:9b:12:f9:49:07:4f:62:0a:6e:65:02:f8:
82:8b:2b:48:5f:b0:26:cf:13:a7:7d:48:b4:f1:d7:
f8:d1:70:6f:f0:27:b7:ad:a9:4a:f1:ea:d3:58:e5:
39:10:67:03:0c:76:cb:0b:01:5f:b2:bd:39:7f:35:
65:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:2E:58:32:FC:43:4F:E7:D4:88:4B:F6:E7:9D:1D:D8:FA:BE:6A:24
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6i5YMvxDT-fUiEv2550d2Pq-aiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:950::/44
Signature Algorithm: sha256WithRSAEncryption
94:09:b9:45:bc:f8:89:bc:0b:41:2a:ee:26:bd:d4:7a:02:3f:
68:db:18:0a:c0:64:25:ef:3f:db:2b:c0:fb:c1:ab:f7:d5:dc:
9a:e4:84:e3:56:4b:91:4e:9c:ad:39:72:4a:9d:05:96:c0:3d:
95:be:1a:7f:05:d9:0a:cd:1f:89:7c:0b:d5:fb:ae:fc:f4:24:
dc:82:df:bc:69:e6:4c:09:85:f0:51:fd:54:df:1c:65:67:a9:
27:1c:8d:58:9e:f7:0e:be:47:49:26:29:b3:f4:86:18:2e:9c:
f7:b1:69:30:97:42:8d:fd:6f:94:cb:8a:2b:35:62:b6:d3:34:
58:a7:eb:fc:c5:6a:11:f6:22:23:7b:bb:a3:07:98:38:d4:26:
82:cb:22:85:97:c9:6c:f8:b7:9c:87:32:51:04:04:59:35:5a:
62:94:e1:b6:9d:67:cc:0e:70:58:ae:5e:ac:bc:f7:7b:cf:a9:
b4:70:58:ca:f5:85:94:2e:0e:df:8b:9e:2c:81:6e:ef:85:95:
5a:a0:44:6d:17:81:10:56:83:96:ce:dc:f1:2d:2c:a8:b9:a4:
61:3c:c6:24:c4:4b:43:ad:48:9c:43:4a:0e:43:fc:02:f6:d8:
74:b8:ae:e4:50:c8:4f:5d:5e:8f:a9:f6:87:6d:87:b6:66:79:
6c:60:55:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org