Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L1T_dKJPCaBswBUhRH3TWZbOX9M.roa
File: L1T_dKJPCaBswBUhRH3TWZbOX9M.roa (raw, json)
Hash identifier: OhxBpdcy3IEWwRSDtXV7KTM5vMe3gwfoeMPq5BE7Dgs=
Subject key identifier: 2F:54:FF:74:A2:4F:09:A0:6C:C0:15:21:44:7D:D3:59:96:CE:5F:D3
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7E1F03829E3129622A74C6B1DEF3
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L1T_dKJPCaBswBUhRH3TWZbOX9M.roa
Signing time: Mon 02 Jan 2023 06:15:01 +0000
ROA not before: Mon 02 Jan 2023 06:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211013
IP address blocks: 2a0c:b641:70::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7e:1f:03:82:9e:31:29:62:2a:74:c6:b1:de:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f54ff74a24f09a06cc01521447dd35996ce5fd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5c:da:1a:68:6a:88:dc:4e:9d:37:60:77:34:
6a:45:ee:a1:e8:a9:c8:2e:a5:68:11:a7:0a:4c:a6:
0d:f2:51:e4:5b:b0:e1:15:0b:a5:6d:64:89:e6:5f:
36:5d:bd:20:52:7a:c7:24:11:cd:7a:c3:d8:c6:32:
4d:d6:24:54:18:73:a5:45:cc:2f:0c:45:d2:3f:ae:
df:e2:95:43:76:62:86:c9:bb:a8:f4:85:c7:c1:bd:
2c:8b:5d:73:61:a9:28:04:ef:13:01:f9:0b:7f:57:
7d:99:59:04:5c:98:eb:30:56:ef:96:07:12:07:23:
55:72:50:4d:cc:41:83:13:48:95:1f:3e:0c:d0:ea:
50:10:01:69:5c:35:76:52:6c:7a:f5:c3:4d:df:2d:
14:65:0f:e4:c9:7d:8f:38:05:b6:fe:2c:1e:ef:ee:
22:8e:87:84:91:e9:1c:9e:84:31:46:aa:d9:8f:f0:
22:7a:82:84:a3:5b:84:fd:0f:91:41:5c:79:8a:1b:
eb:2d:c0:43:4d:29:f8:1c:96:7e:6a:9e:26:f4:cb:
b3:0a:5d:b6:06:62:db:79:e9:c7:94:8e:b0:8f:80:
e7:48:db:37:81:67:ba:8e:51:fd:f1:8d:d9:3e:8f:
3c:3a:fa:8a:b0:98:5e:16:b8:25:94:e1:65:dd:a1:
75:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:54:FF:74:A2:4F:09:A0:6C:C0:15:21:44:7D:D3:59:96:CE:5F:D3
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L1T_dKJPCaBswBUhRH3TWZbOX9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:70::/44
Signature Algorithm: sha256WithRSAEncryption
73:0b:3c:77:f7:4e:eb:09:60:9c:77:3e:7b:10:b9:ab:5e:cb:
a7:1c:65:21:ce:4b:dc:5f:51:a8:34:34:52:d5:80:ce:b4:e1:
b2:23:10:7d:a9:6c:d6:1b:58:f9:5c:9c:8f:d0:b0:be:c6:0b:
fc:fc:43:22:b8:6f:45:78:29:42:f0:f8:75:b2:9e:9f:10:86:
1a:8b:e7:87:96:58:5d:b2:30:f8:df:8d:5f:37:30:cf:33:36:
ff:ce:5e:ed:2f:ed:7b:25:4f:86:bb:b2:c9:24:31:18:c1:86:
f9:2d:29:6d:69:a1:27:67:22:e9:96:17:55:95:4c:6a:bb:d5:
55:f2:6f:89:da:69:7b:6e:84:b6:4a:cf:a5:be:0d:85:aa:ef:
51:98:70:53:c6:99:e0:6b:bd:1d:12:2b:7b:c7:d5:83:24:7d:
1f:8d:e6:34:f4:4a:6a:99:8e:f2:1f:50:47:fc:66:b9:ea:1a:
5a:4a:3a:fd:40:16:f5:b2:39:d5:37:8e:81:cb:cd:6d:14:85:
76:d4:41:41:e4:45:a2:d3:ca:bb:d7:89:eb:ca:56:0e:10:ad:
cb:13:ca:61:a0:ae:ac:77:37:76:50:f2:d9:0a:b0:02:75:5e:
3d:3b:fa:c8:59:5e:dc:9f:af:2e:a5:18:6b:44:1a:dd:2c:11:
1b:5a:b9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org