Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Bc_dS5gXu3HmYGsvWUwdzabuBYQ.roa
File: Bc_dS5gXu3HmYGsvWUwdzabuBYQ.roa (raw, json)
Hash identifier: VKEBvVgqEhcyOLotavKxYmcJw04psH773/cgv7XcSxs=
Subject key identifier: 05:CF:DD:4B:98:17:BB:71:E6:60:6B:2F:59:4C:1D:CD:A6:EE:05:84
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E72756E502EE5D37B6C5C4539C05A
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Bc_dS5gXu3HmYGsvWUwdzabuBYQ.roa
Signing time: Mon 02 Jan 2023 06:14:58 +0000
ROA not before: Mon 02 Jan 2023 06:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210233
IP address blocks: 2a0c:b641:870::/44 maxlen: 48
2a0c:b641:30::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:72:75:6e:50:2e:e5:d3:7b:6c:5c:45:39:c0:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05cfdd4b9817bb71e6606b2f594c1dcda6ee0584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:46:81:b2:40:55:2f:d1:a4:61:a8:c4:05:45:
1a:01:20:4d:90:fa:2f:8e:df:1f:88:2f:80:5e:89:
f2:7e:d5:b4:88:c0:b6:1d:ee:4a:03:b1:3a:68:48:
c4:4b:7c:c1:77:23:fe:a3:d8:2b:6a:e8:cf:b2:38:
3f:65:13:a7:1d:fe:08:2e:b4:5c:e1:d5:4c:88:87:
e5:2d:ef:87:35:ff:8b:34:03:b9:e6:56:18:44:bc:
98:4d:4f:01:1e:46:d9:3c:9c:0d:f5:01:98:9c:c1:
d0:4a:09:70:9e:e6:c6:36:2f:b8:bd:cf:47:07:35:
14:12:54:4f:cc:6e:f7:60:b2:06:00:0b:43:74:e5:
a6:19:83:53:73:d2:6e:cb:26:32:09:97:d7:d2:59:
86:bc:fc:76:1a:4b:45:af:32:fd:09:1b:db:d3:58:
8e:46:18:83:38:15:e2:64:a8:79:72:02:cf:0f:10:
c2:09:b5:66:f4:a8:12:b5:89:05:f2:12:52:04:15:
4d:a6:11:af:36:09:23:02:43:6c:20:83:cf:6e:38:
d5:c6:a0:3f:5c:ce:fd:c8:64:cf:77:fa:d3:b5:a4:
24:1a:cb:a0:28:26:15:87:d0:c9:38:11:ca:50:39:
6b:8b:3d:55:d8:50:8a:69:55:d3:4f:75:b2:21:33:
e4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CF:DD:4B:98:17:BB:71:E6:60:6B:2F:59:4C:1D:CD:A6:EE:05:84
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Bc_dS5gXu3HmYGsvWUwdzabuBYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:30::/44
2a0c:b641:870::/44
Signature Algorithm: sha256WithRSAEncryption
3c:78:0e:4a:1e:e6:45:5b:15:9d:27:19:57:20:bd:ac:bc:39:
11:c9:41:8a:9e:31:fd:89:db:2a:60:15:9d:3a:f4:bb:22:41:
1f:c0:5e:36:20:65:17:fd:42:60:bf:e7:22:4b:98:fc:04:89:
d8:6a:8e:7e:b0:20:37:3f:2e:34:68:98:f5:37:af:a6:83:8f:
1b:90:4f:c6:73:d5:33:c5:f1:29:37:70:60:b0:e4:7e:31:02:
06:63:70:74:c4:85:29:4d:91:28:4d:e1:fe:49:9e:0c:77:f7:
7f:cf:80:fd:bd:69:f3:ed:9f:06:42:97:07:1c:02:69:b0:8d:
ff:30:55:bd:c4:e3:7a:53:55:4c:77:6e:e0:b2:bd:b7:99:70:
68:a4:e7:9c:22:aa:eb:de:b6:65:fa:3a:85:7a:6d:0d:8a:b2:
eb:25:45:4a:38:7c:e5:1c:2d:71:c4:b6:fe:ff:f2:10:75:45:
67:ca:99:87:12:72:ca:2b:f5:00:84:6f:13:a3:e2:35:4d:66:
3b:39:97:d0:0f:cb:d3:b5:57:49:85:95:c9:a2:00:b6:b1:dc:
7f:88:2b:4f:b5:eb:31:ea:45:04:2a:67:c5:1f:ef:46:fe:0b:
68:63:61:db:8e:9b:75:5f:69:b0:e8:7b:52:2c:3b:8f:37:e9:
8d:9f:51:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org