Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/8ySGnyTnPaenfNXBQkmkkkzcVv4.roa
File: 8ySGnyTnPaenfNXBQkmkkkzcVv4.roa (raw, json)
Hash identifier: wz0QaDyR4MgUWpyvJmWZ/JlBh3XqPs7hs5wH9FPQWKE=
Subject key identifier: F3:24:86:9F:24:E7:3D:A7:A7:7C:D5:C1:42:49:A4:92:4C:DC:56:FE
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018C1B05E9C55AB664DE4E1F84C0A59C9E30
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/8ySGnyTnPaenfNXBQkmkkkzcVv4.roa
Signing time: Wed 29 Nov 2023 12:20:21 +0000
ROA not before: Wed 29 Nov 2023 12:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215932
IP address blocks: 2a0c:b641:b50::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:05:e9:c5:5a:b6:64:de:4e:1f:84:c0:a5:9c:9e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Nov 29 12:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f324869f24e73da7a77cd5c14249a4924cdc56fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:60:b4:27:d2:ff:49:cb:c4:46:d5:35:60:23:
89:ad:59:e9:b2:f2:ad:8a:a6:27:ba:b6:67:5a:2c:
ef:62:8d:f5:80:9a:75:d8:c4:32:25:52:68:0c:15:
55:66:fd:bb:f7:1e:e7:40:a6:0b:1f:13:e5:50:90:
9c:35:3e:06:d7:2a:f5:04:1a:b5:a5:19:c0:9c:e9:
0c:a0:04:4e:b4:27:55:f4:34:0d:36:f0:ff:af:d3:
2f:2e:be:ed:b5:e3:4c:83:ef:26:0f:31:c3:30:df:
15:91:74:c8:7d:08:34:44:4f:72:ea:58:f6:c1:ab:
5b:f1:0f:16:15:8b:83:39:07:61:da:67:75:28:94:
54:6c:54:3a:2c:e1:6c:89:81:80:02:13:b4:1b:de:
13:2c:31:3c:ca:08:5b:bc:f5:49:26:2a:7f:4f:0b:
d3:68:c3:b7:8f:01:f0:0c:e8:2a:f0:1e:f0:a6:15:
ef:8d:b5:02:93:bb:22:d2:82:4f:26:71:52:fe:9b:
54:1a:ed:f2:1d:3d:49:74:47:6e:d3:9d:a7:e5:c6:
6d:bf:0c:7e:57:85:3b:eb:61:a2:53:76:ba:aa:62:
00:82:95:5e:72:43:a6:cc:f6:05:ff:97:bb:c6:e6:
ed:9e:51:cc:e7:bf:95:49:b7:30:96:fe:8e:37:94:
15:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:24:86:9F:24:E7:3D:A7:A7:7C:D5:C1:42:49:A4:92:4C:DC:56:FE
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/8ySGnyTnPaenfNXBQkmkkkzcVv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:b50::/44
Signature Algorithm: sha256WithRSAEncryption
9a:3c:77:89:a3:6f:79:a3:64:f7:72:46:01:2f:14:8a:1a:af:
50:8c:12:17:4d:0d:fc:c7:d1:7f:6c:c9:c7:0e:6a:2b:51:69:
1c:cd:f6:94:d3:99:e9:d1:01:08:bc:c7:ec:30:51:c9:e2:2d:
ce:c3:72:e0:cf:41:13:a3:37:b5:a1:83:56:35:9b:6b:97:af:
bc:ad:89:c1:b3:80:aa:5a:69:6d:cf:f8:5a:c5:7e:17:30:6d:
6a:80:f5:a8:d8:01:f2:86:62:0b:20:d9:36:2a:69:2c:e8:21:
9b:22:6e:4e:b5:97:f3:33:cb:e3:90:c5:ad:89:05:63:6a:dd:
48:49:fe:71:cd:45:6c:55:c2:35:4a:42:95:d2:2a:4c:9f:2b:
4b:56:65:be:e5:a0:b9:5d:22:77:f2:83:ce:ea:13:05:6f:21:
59:1f:e3:d2:18:27:b6:93:01:a9:84:a8:b1:8e:63:3f:d9:4d:
48:49:bd:ae:98:8e:76:ad:bf:26:dc:4c:7d:8c:3e:c2:35:c0:
94:e1:e4:61:89:b7:d0:7e:c0:0c:80:89:6d:d9:3b:5b:aa:bc:
2a:3e:27:52:1a:be:c6:28:67:fd:9d:ce:ad:5c:6b:fb:b4:7c:
c4:1e:51:fb:c9:04:ca:d2:96:70:c0:bb:f7:40:7e:74:92:e0:
49:da:c0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org