Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L-g_I5tMgtU32yiKtUrndVGQGfc.roa
File: L-g_I5tMgtU32yiKtUrndVGQGfc.roa (raw, json)
Hash identifier: 38SuzWLt/Cj95IUyFzOYSIe47jjnotqtqqwgK2VlEOo=
Subject key identifier: 2F:E8:3F:23:9B:4C:82:D5:37:DB:28:8A:B5:4A:E7:75:51:90:19:F7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018B91A6988ECF37B9D9ED7EC249B2123D8D
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L-g_I5tMgtU32yiKtUrndVGQGfc.roa
Signing time: Thu 02 Nov 2023 20:08:16 +0000
ROA not before: Thu 02 Nov 2023 20:08:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198825
IP address blocks: 2a0c:b641:af0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:91:a6:98:8e:cf:37:b9:d9:ed:7e:c2:49:b2:12:3d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Nov 2 20:08:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fe83f239b4c82d537db288ab54ae775519019f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:72:71:78:79:31:72:e7:26:4f:c7:da:38:3e:
bb:59:08:f8:f1:43:e4:69:1c:78:b6:39:8c:93:b5:
d2:90:31:a1:f2:59:57:65:3e:52:49:0e:18:70:1a:
c1:bd:d0:39:c3:71:21:bb:90:e3:66:c0:b9:26:4a:
70:b3:95:1b:19:15:d1:18:25:98:44:6f:17:a3:11:
3a:56:ee:81:5b:17:12:26:cb:71:9a:12:12:4a:b2:
9b:42:13:82:8c:68:46:59:c8:c5:8b:7d:a0:0c:00:
dc:f5:13:03:fd:37:03:e8:26:ce:a3:32:07:0d:e9:
58:b9:8c:c5:5e:ad:f7:85:2f:7d:03:22:55:51:45:
70:9f:9e:1e:5e:bc:09:a3:26:ca:f7:49:09:77:6b:
f1:91:fa:5b:fe:2b:82:b0:c4:5c:a8:ea:14:7e:cb:
d6:e0:a6:31:ed:da:1a:e4:c2:25:1a:e8:26:ea:4e:
12:8b:85:ef:0d:23:76:51:a5:7c:c3:cf:f6:2c:e8:
29:eb:c1:5b:fa:88:60:36:be:14:bc:ac:c5:fe:36:
3a:76:03:57:6a:08:e2:87:a3:a8:b2:b3:03:31:57:
ad:15:7e:99:45:ff:f0:1e:f2:24:aa:31:24:76:c9:
40:2b:3e:ea:e2:37:ec:5d:10:3a:28:0a:b2:89:87:
0c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E8:3F:23:9B:4C:82:D5:37:DB:28:8A:B5:4A:E7:75:51:90:19:F7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L-g_I5tMgtU32yiKtUrndVGQGfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:af0::/44
Signature Algorithm: sha256WithRSAEncryption
62:c9:62:f3:65:27:e2:4b:0e:cd:b2:c7:9c:84:ca:46:99:37:
55:5e:26:eb:c5:6f:e1:f2:67:30:89:71:8d:99:fe:f2:d2:f6:
a2:7e:2c:18:a8:3c:7f:1b:c7:dc:c5:cb:3e:ff:8e:33:30:69:
0a:cc:3e:fe:25:37:cb:b9:ca:15:f2:ea:85:f8:0a:51:d2:af:
3c:d6:84:b4:2a:44:e8:f2:6a:3d:4e:f3:c4:dd:72:3a:c6:3d:
ba:2a:6d:8b:5d:cd:d4:b3:b7:7b:9e:f5:28:39:79:72:0d:07:
af:dd:96:fa:aa:88:9b:32:ee:cd:2d:ee:51:f8:4d:36:5c:5d:
34:4d:35:dd:0c:0e:75:1a:b9:9c:02:65:ba:4f:e2:b2:88:11:
38:6d:93:d1:43:0d:46:31:05:b8:54:a0:13:0f:2e:73:7e:12:
8d:8e:77:12:f9:d1:0d:bb:a6:e5:e1:e5:63:37:c5:b8:49:c1:
a8:1e:f4:d8:da:fc:5d:69:74:0f:9e:de:a1:28:0c:42:24:1e:
2c:bd:e1:0b:59:23:79:40:fb:0e:2c:56:dd:1b:95:d6:01:4a:
1e:8c:96:be:f3:a8:33:77:f7:da:b4:b1:bc:4d:90:f6:d3:e9:
1f:cd:85:0e:42:9d:74:ab:8f:b1:3d:03:8a:11:14:72:47:07:
14:22:60:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org