Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/HGl9B3eshwVS1fZe9l1H7yB3JoQ.roa
File: HGl9B3eshwVS1fZe9l1H7yB3JoQ.roa (raw, json)
Hash identifier: pToQaris0MViNF9QhAfxvLZNyBFV/DKHu2EUS0Fg8gw=
Subject key identifier: 1C:69:7D:07:77:AC:87:05:52:D5:F6:5E:F6:5D:47:EF:20:77:26:84
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01857BE102AE70EAF47EE93FBE7D4F527045
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/HGl9B3eshwVS1fZe9l1H7yB3JoQ.roa
Signing time: Wed 04 Jan 2023 08:23:41 +0000
ROA not before: Wed 04 Jan 2023 08:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201671
IP address blocks: 2a0c:b641:3b0::/44 maxlen: 48
2a0c:b641:900::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Dec 2023 15:06:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7b:e1:02:ae:70:ea:f4:7e:e9:3f:be:7d:4f:52:70:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 4 08:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c697d0777ac870552d5f65ef65d47ef20772684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a1:59:36:5e:05:0a:58:ca:14:fb:e5:c4:70:
39:26:bc:7b:ba:48:aa:42:89:6b:f4:00:3a:96:20:
de:10:b2:c9:10:f4:2a:ad:ad:d0:04:e8:35:91:4c:
97:21:cf:60:64:d3:2f:d0:7e:42:1f:d0:88:01:48:
b0:96:af:00:cc:1b:0e:bb:16:44:a8:e0:47:6b:21:
55:a5:04:0f:b2:38:92:5c:6f:39:a9:8d:21:80:60:
88:4f:fe:26:65:b1:c2:29:da:6c:ae:ba:88:9e:13:
39:8d:df:44:ff:b7:64:25:4c:33:f0:bf:09:e3:c4:
6b:02:d4:c0:76:0f:56:b4:fc:2e:af:6c:c1:58:b1:
90:a8:1e:07:7d:8c:46:cf:ba:d5:62:85:58:fd:a6:
46:b9:a9:8e:ae:df:19:9a:d4:55:d6:53:3d:33:01:
e1:67:2d:42:27:22:08:76:c4:83:23:66:12:c1:80:
40:5a:64:fa:1d:ce:ba:07:7c:d0:a7:44:f0:04:f3:
7d:b1:6d:7e:89:aa:3c:d2:80:1d:be:a2:33:7d:23:
1c:34:da:c8:22:ad:f3:70:63:ae:9e:53:43:b0:d6:
33:d0:d3:3e:97:e4:8b:3f:fa:a7:3a:0e:29:25:19:
6a:71:2d:01:45:1a:47:6c:01:33:88:7e:57:55:1f:
b7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:69:7D:07:77:AC:87:05:52:D5:F6:5E:F6:5D:47:EF:20:77:26:84
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/HGl9B3eshwVS1fZe9l1H7yB3JoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:3b0::/44
2a0c:b641:900::/44
Signature Algorithm: sha256WithRSAEncryption
55:2c:cc:15:11:ac:bc:a3:5d:d2:12:60:4f:d7:bc:88:0d:95:
5f:67:38:7f:80:a8:07:fc:37:65:12:01:9d:05:d0:f0:0e:b0:
60:ec:78:11:43:80:00:76:9b:c6:b4:ac:6b:6e:8a:62:f5:c5:
f3:98:20:8a:ce:17:2a:e4:0b:58:e4:af:c8:79:62:84:02:f4:
21:e7:47:57:62:7d:0e:24:5a:0c:b4:38:bc:18:40:fc:f7:42:
f2:8c:db:13:4b:7c:59:9b:ea:56:ad:09:6f:df:9b:59:ed:46:
8a:1c:70:64:64:8b:97:d4:1f:b3:a6:59:a4:53:48:a8:99:aa:
7b:c4:4b:49:ba:e0:12:82:08:e8:a2:b2:67:f5:25:ee:a1:cd:
ea:f0:0e:2c:07:d3:da:92:3c:69:b4:94:cc:cf:e5:ae:57:ba:
0d:45:8e:be:3a:b3:78:f0:6f:3b:42:d9:ef:c9:6b:53:fd:90:
3a:1d:7f:b3:f7:db:56:23:64:74:54:f4:03:33:40:da:b8:5e:
ef:cb:8a:17:a6:9a:83:ed:71:c5:d9:05:5e:5f:ba:88:b5:af:
d2:a3:19:b2:d3:4e:53:9c:53:cc:88:fb:90:5b:4d:8e:1e:d2:
67:2e:85:d8:29:69:40:fa:94:33:f4:ac:dd:01:4f:dd:32:54:
99:7f:ec:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org