Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/HEut9ezF6BEkknerf_CPIAd6Kug.roa
File: HEut9ezF6BEkknerf_CPIAd6Kug.roa (raw, json)
Hash identifier: qjoxMV2I/p7CDxy6a3d0/T4/oGdavTsh0uvDHtGenRo=
Subject key identifier: 1C:4B:AD:F5:EC:C5:E8:11:24:92:77:AB:7F:F0:8F:20:07:7A:2A:E8
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E439F5CD41E1234CBCBE0B3EC605C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/HEut9ezF6BEkknerf_CPIAd6Kug.roa
Signing time: Mon 02 Jan 2023 06:14:46 +0000
ROA not before: Mon 02 Jan 2023 06:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57470
IP address blocks: 2a0c:b641:1a0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:43:9f:5c:d4:1e:12:34:cb:cb:e0:b3:ec:60:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c4badf5ecc5e811249277ab7ff08f20077a2ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:61:f8:26:3f:4a:0f:3c:88:22:0b:1c:89:
ac:63:b3:b0:d9:ad:58:86:61:10:16:90:cb:4b:4b:
bd:65:19:6e:cb:52:c9:18:0d:19:bf:0d:e2:39:44:
7f:db:f7:ae:84:d0:4a:35:bf:a4:b4:06:6c:07:ca:
a9:74:d1:d9:41:bd:63:87:5f:fd:64:d2:2a:92:d3:
0d:39:15:d8:9b:65:92:fc:76:7e:0b:bb:bd:6c:68:
0a:e3:99:1e:3f:95:dc:36:ab:0e:5b:4a:d9:c8:a5:
bf:87:c1:48:23:98:15:64:f8:04:87:f5:f0:e6:11:
42:90:92:33:b1:44:8e:2e:18:f1:54:f8:e0:3f:19:
38:63:fb:dd:b8:c3:1b:1a:08:90:fa:9f:56:65:f5:
61:d5:e3:67:a9:e4:2e:ef:c3:d2:69:06:90:d1:0c:
9a:1d:56:0a:fe:fc:f3:a2:16:9a:5a:8d:ae:c6:ad:
b7:6e:0b:57:d8:36:5b:fc:f8:9c:b2:aa:a3:ae:a4:
39:4b:a8:60:a8:92:b5:f1:90:e4:d2:02:f4:cf:26:
5a:1b:69:64:b2:e8:ef:44:c6:38:df:ee:1b:a1:2b:
b1:c5:a9:90:3c:c0:41:f3:59:b1:98:6c:3d:c4:a5:
ae:40:27:9b:54:0d:94:bb:c2:4c:41:df:fc:c9:7d:
36:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4B:AD:F5:EC:C5:E8:11:24:92:77:AB:7F:F0:8F:20:07:7A:2A:E8
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/HEut9ezF6BEkknerf_CPIAd6Kug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:1a0::/44
Signature Algorithm: sha256WithRSAEncryption
06:83:ad:e4:de:e7:a1:1a:61:66:32:30:c7:80:de:90:79:3b:
46:70:81:62:50:4a:10:d1:29:ae:d7:c7:d9:4f:ec:0d:68:e7:
75:9f:80:7d:34:de:f3:4c:d5:90:c0:5e:8a:76:d9:79:68:b3:
0d:2e:23:06:bc:ef:22:68:ac:9a:ef:bd:59:66:43:b1:06:2f:
b8:d8:07:50:3d:3d:1c:f4:52:31:0e:1b:a2:c3:1d:b8:7c:0c:
4d:31:a8:f3:63:b0:cc:05:06:5e:d0:5a:0f:62:dd:bd:8f:84:
74:db:68:82:de:c8:7b:93:61:fd:9b:36:96:cf:92:5d:b5:16:
33:9a:f7:01:ce:e7:67:b2:b0:af:b7:9f:34:7b:11:6f:fe:53:
18:1a:8d:c3:c6:78:cd:1d:85:4c:82:81:1a:ce:0d:19:ab:9f:
a1:fc:64:77:68:e8:bb:4b:d2:58:6c:4b:f1:62:9b:59:94:b3:
14:77:ab:ac:ee:f0:b1:4a:61:01:73:38:2d:a5:c3:dc:cd:c7:
27:3e:eb:22:04:59:19:cf:cc:7f:1b:0f:d5:fb:c7:9b:c1:87:
f1:96:fb:ee:f7:39:c0:70:49:b5:fc:a1:30:99:6d:de:6f:e5:
d8:fd:66:6d:e7:f5:14:07:9b:de:f5:e4:fe:23:9b:b8:f8:6b:
c6:19:21:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org