Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/IeSSn3wsiBxgm1rKgLcQ7EAnPgs.roa
File: IeSSn3wsiBxgm1rKgLcQ7EAnPgs.roa (raw, json)
Hash identifier: sDLoJhn74+d86j2gQ+F9z4kKpHnVoP3SZUntbTdWnTo=
Subject key identifier: 21:E4:92:9F:7C:2C:88:1C:60:9B:5A:CA:80:B7:10:EC:40:27:3E:0B
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7A95F07FC31FEC7580D5DDBCF7D2
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/IeSSn3wsiBxgm1rKgLcQ7EAnPgs.roa
Signing time: Mon 02 Jan 2023 06:15:00 +0000
ROA not before: Mon 02 Jan 2023 06:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210597
IP address blocks: 2a0c:b641:530::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7a:95:f0:7f:c3:1f:ec:75:80:d5:dd:bc:f7:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21e4929f7c2c881c609b5aca80b710ec40273e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e0:27:2c:ea:1e:4a:87:d8:f4:39:16:42:b0:
e1:d5:67:7e:83:74:9d:2e:40:b2:7c:53:66:18:1f:
20:9e:00:58:b2:f3:89:29:4f:41:ba:da:aa:0d:e4:
16:0d:6e:ee:f7:59:b2:b5:fa:5a:e2:f9:bf:eb:d5:
ad:65:6d:1b:9b:cc:26:de:72:9f:27:65:bf:4b:a6:
ec:da:d2:55:8a:ba:8d:83:5e:2d:d6:da:5d:5c:a1:
90:d7:e1:e8:c7:be:72:ec:76:66:2f:90:85:3c:05:
3a:93:a8:07:c3:fd:4c:1c:97:c5:99:f3:18:73:ff:
60:ab:4b:e5:71:9b:2a:47:45:09:12:c5:d9:6d:92:
5c:24:df:b3:0c:c3:cc:65:e2:05:97:bd:43:f9:26:
62:6a:17:fd:dd:44:b6:c3:9a:86:b9:81:99:f4:52:
b0:a5:84:f0:ff:d3:91:c7:69:f6:8e:9d:97:30:18:
ce:9e:47:56:e7:bf:61:60:fb:4b:dd:4c:4b:4d:b0:
1a:bd:b7:8f:0c:20:6c:9f:65:e5:b0:98:2c:d8:07:
66:27:b5:56:58:8a:ce:d9:70:2b:95:fb:ba:e1:38:
f2:01:83:2c:0d:82:f6:d6:a9:e8:0f:2a:df:8b:1f:
b4:e3:0c:c5:48:a9:48:e1:72:85:65:1e:9f:16:e0:
6e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E4:92:9F:7C:2C:88:1C:60:9B:5A:CA:80:B7:10:EC:40:27:3E:0B
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/IeSSn3wsiBxgm1rKgLcQ7EAnPgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:530::/44
Signature Algorithm: sha256WithRSAEncryption
9d:6e:8f:5c:c4:a5:34:1b:0b:78:fa:cf:4f:a8:03:06:1d:84:
b2:c8:7c:c6:71:cb:83:1a:a9:c5:50:5f:bb:89:32:59:aa:0a:
c8:cd:c5:81:83:80:95:ed:00:de:98:93:94:01:23:37:53:f0:
bc:cf:0e:01:a5:e5:8a:aa:23:a5:7c:7e:b6:95:c3:1b:d1:69:
c2:3a:bd:2f:33:c0:ff:d4:47:ef:83:0a:f0:00:af:b3:d4:6b:
22:6e:c0:f1:5d:ae:e9:c6:85:f8:28:22:81:d6:4e:4e:eb:d5:
66:28:39:20:b3:c2:59:70:40:ed:93:5c:5d:38:9a:63:8c:09:
ef:75:0c:46:f4:a1:46:fe:e2:d5:82:5c:49:96:07:36:1f:2a:
1a:33:3c:b4:1d:76:c0:a4:e6:8e:11:09:4a:d0:de:bf:f6:cc:
f8:eb:c4:cf:b8:f7:7d:33:84:98:66:ff:b0:92:e6:4a:f4:f0:
7c:15:08:e7:09:85:14:aa:a2:45:a0:0f:f6:74:7e:c1:01:43:
05:2e:ca:12:c6:6f:ab:3c:97:3a:ce:38:ff:01:43:d0:09:d7:
54:7e:22:9b:33:63:43:1f:7e:d8:ee:75:31:9b:24:94:9d:c5:
b1:2f:86:ec:c8:69:db:64:80:3e:83:d0:87:82:dd:86:78:10:
13:55:1d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org