Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7lCGmkxBsXEPuzvO-fGKckBtWwQ.roa
File: 7lCGmkxBsXEPuzvO-fGKckBtWwQ.roa (raw, json)
Hash identifier: xFs0J7LDfRa2vgSrliMJ4uLPZNmeU0IMeFgYrypW+F8=
Subject key identifier: EE:50:86:9A:4C:41:B1:71:0F:BB:3B:CE:F9:F1:8A:72:40:6D:5B:04
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0189B5F9FB1ACC096D1F8D1EBDCF0206503F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7lCGmkxBsXEPuzvO-fGKckBtWwQ.roa
Signing time: Wed 02 Aug 2023 11:20:06 +0000
ROA not before: Wed 02 Aug 2023 11:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208460
IP address blocks: 2a0c:b641:a80::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:f9:fb:1a:cc:09:6d:1f:8d:1e:bd:cf:02:06:50:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 2 11:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee50869a4c41b1710fbb3bcef9f18a72406d5b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:87:ea:43:e4:43:c5:21:d0:2b:e6:9d:fb:43:
33:7c:c7:e6:2c:aa:8b:93:61:9b:df:38:3c:f6:92:
01:9d:d6:4d:2c:29:28:d4:22:8b:a7:c9:86:aa:65:
d2:6c:4d:d7:0e:23:e4:84:89:78:0a:dd:3b:00:69:
4c:44:6a:43:ef:32:92:71:03:e5:5a:b8:57:1f:59:
b9:4d:3e:08:d3:6a:55:9d:76:d4:09:87:c8:12:97:
ef:f9:d7:e2:cf:db:fd:84:09:f6:a7:50:81:90:60:
8f:22:fd:16:24:e9:c6:f4:e3:e8:fd:13:6f:4a:83:
12:c4:d7:c7:90:88:92:48:97:52:1b:b5:80:4b:14:
f2:e2:3a:3a:b9:8d:84:82:d6:7e:71:45:fe:42:83:
e6:0e:e7:95:09:3a:24:f5:3b:3e:f0:26:13:e4:8b:
84:49:28:e4:a3:86:09:b7:7f:1e:43:cc:88:4c:8f:
31:c8:c2:e2:cd:82:53:86:25:c7:db:8e:9e:79:3c:
3f:a7:da:a0:15:cb:d5:9c:0a:01:ff:b5:8d:be:17:
19:96:d2:85:1b:8b:2c:5e:04:5c:78:5c:50:ad:94:
9d:37:a5:51:fc:20:03:98:c2:ea:00:43:cf:0b:bb:
0d:6d:8f:75:2b:e0:6e:f9:74:04:47:f7:67:27:77:
39:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:50:86:9A:4C:41:B1:71:0F:BB:3B:CE:F9:F1:8A:72:40:6D:5B:04
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7lCGmkxBsXEPuzvO-fGKckBtWwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a80::/44
Signature Algorithm: sha256WithRSAEncryption
65:58:e0:6b:69:7d:76:6d:96:94:ee:f2:7c:7d:a8:e5:93:fa:
bf:f9:2c:e6:c0:8d:f7:97:3f:1f:18:a5:5b:17:7c:ad:0d:94:
62:28:a2:09:3b:eb:1e:de:d0:1b:82:b8:43:4a:22:10:ab:9a:
2f:81:22:a2:6a:a5:97:e5:4b:c0:77:45:b8:19:78:0b:d0:d2:
fd:30:c7:22:24:c5:47:48:df:a4:ac:d1:e5:87:f1:ef:fb:78:
b6:59:c2:f1:20:dd:f3:e1:5b:65:8c:d9:3f:91:89:cc:ce:18:
43:6d:3c:db:62:17:7f:89:75:34:2b:cc:35:80:dc:e4:95:40:
9f:33:d5:d3:64:55:f9:1d:e1:14:40:23:4a:1c:55:51:e3:81:
44:a5:23:ac:2c:ea:6d:51:76:0a:d9:30:9b:7d:21:07:03:09:
5e:76:09:56:06:7e:77:40:33:96:30:6a:75:1b:09:64:52:02:
94:31:cd:f3:62:35:44:d0:44:40:01:01:6a:be:0d:9c:b9:ac:
bb:74:05:d5:94:b6:de:4a:ac:28:62:45:e8:b4:78:74:b6:d9:
5d:56:a0:f8:fe:36:68:61:2e:24:57:56:7c:7d:39:80:1b:95:
bb:4d:59:cd:fa:b3:bf:f6:05:96:85:b8:c6:b2:51:23:c6:35:
b8:45:d5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org