Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/8OTHZdrG_XzR9K6nZSgMwVq8mFA.roa
File: 8OTHZdrG_XzR9K6nZSgMwVq8mFA.roa (raw, json)
Hash identifier: 1knRhGQiA6MYpjpEg6xxDPW3UCGkb5L7JoW8yOMkTU4=
Subject key identifier: F0:E4:C7:65:DA:C6:FD:7C:D1:F4:AE:A7:65:28:0C:C1:5A:BC:98:50
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E6828C8B8B26028EB3D1577A62848
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/8OTHZdrG_XzR9K6nZSgMwVq8mFA.roa
Signing time: Mon 02 Jan 2023 06:14:56 +0000
ROA not before: Mon 02 Jan 2023 06:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209294
IP address blocks: 2a0c:b641:310::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Nov 2023 17:50:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:68:28:c8:b8:b2:60:28:eb:3d:15:77:a6:28:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0e4c765dac6fd7cd1f4aea765280cc15abc9850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c6:4d:42:2e:a9:fe:d9:a8:eb:89:44:91:46:
de:d4:9d:e3:ca:c0:db:ab:12:32:d5:b1:1f:db:8b:
50:c4:7e:3c:04:ea:22:e9:b5:aa:c3:ea:bf:51:35:
eb:f7:57:63:13:05:92:fd:7f:a8:50:3a:47:b7:86:
d8:d3:a7:44:ce:e8:30:d5:0f:76:4e:1d:67:53:ad:
4b:fa:30:1d:74:07:86:0b:e2:c5:52:06:9d:8d:f5:
7e:91:e5:da:e8:90:a1:2d:f9:a8:27:94:8d:f1:02:
5e:ab:c1:9b:75:28:ee:dd:b6:9e:c0:ff:67:b9:15:
c8:05:ae:fb:9c:67:a7:fd:96:44:d7:c4:bb:26:85:
4a:c0:63:cf:a1:91:1b:c1:91:3e:a1:ea:a1:ea:f1:
0d:6c:74:32:b5:46:d6:af:55:30:d6:19:34:78:2e:
3f:97:59:d2:d5:56:87:0b:c4:ae:39:27:2c:ed:e2:
68:53:1b:48:9b:fc:f8:59:fe:5b:aa:d5:70:d2:79:
11:e8:54:27:02:31:46:42:46:65:1b:08:44:98:8c:
6d:df:0d:68:60:cc:b9:0d:fb:92:ab:01:2a:48:f4:
ea:1a:ea:09:8e:77:ed:eb:d9:a1:46:e3:c2:90:5e:
a4:d8:2c:ab:96:5a:1b:0d:28:15:a7:b3:ad:09:1c:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E4:C7:65:DA:C6:FD:7C:D1:F4:AE:A7:65:28:0C:C1:5A:BC:98:50
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/8OTHZdrG_XzR9K6nZSgMwVq8mFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:310::/44
Signature Algorithm: sha256WithRSAEncryption
52:50:ed:9b:1f:f3:a9:ad:b4:a6:77:04:e6:a3:f1:60:7d:c3:
39:17:9c:47:8d:7c:06:1a:2d:7e:3d:fc:00:7c:20:23:34:57:
08:1d:e1:29:1a:82:73:b4:65:35:36:2d:c9:3c:bb:59:b4:5c:
bc:4a:db:cf:49:53:d7:19:b5:48:fb:15:3b:51:cf:a3:09:da:
26:db:58:82:39:0c:54:eb:cf:63:e9:6d:5e:39:94:99:2b:9d:
72:ed:b9:0e:50:45:78:8f:f8:04:bb:2c:4e:24:b0:88:98:bf:
b8:c8:da:7e:13:3d:77:ec:5d:a2:ee:33:3a:6a:18:31:b8:16:
f6:40:ce:85:9d:ed:da:07:c6:e1:30:e7:6f:39:e5:10:ab:4f:
4d:77:a7:44:d5:00:c2:6e:b7:5d:99:94:10:2e:71:16:5e:7a:
16:dc:5c:d2:c7:4d:3b:cb:20:44:72:00:81:3f:12:bc:1f:57:
44:c3:a0:f4:79:97:7e:38:2a:43:3f:b4:69:c5:57:fc:48:24:
f1:fd:b6:22:92:f4:be:8a:a2:77:4d:ba:34:fd:74:47:1c:77:
3d:ab:b9:3b:a8:42:21:36:c8:64:9a:4c:aa:a0:57:bf:4b:0c:
64:1a:9b:f2:d8:fb:ad:cb:5e:9e:ea:6c:af:97:64:22:28:74:
20:93:aa:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org