Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LXEw5KEnQqJK3oaI78a50KS1a3Q.roa
File: LXEw5KEnQqJK3oaI78a50KS1a3Q.roa (raw, json)
Hash identifier: KJQ2gGo0rjpk/oE+riSoTKO1sVkA9oOeFW010crGlmE=
Subject key identifier: 2D:71:30:E4:A1:27:42:A2:4A:DE:86:88:EF:C6:B9:D0:A4:B5:6B:74
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7028350CF1472B824FD0E0B90343
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LXEw5KEnQqJK3oaI78a50KS1a3Q.roa
Signing time: Mon 02 Jan 2023 06:14:58 +0000
ROA not before: Mon 02 Jan 2023 06:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209978
IP address blocks: 2a0c:b641:6b0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:70:28:35:0c:f1:47:2b:82:4f:d0:e0:b9:03:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d7130e4a12742a24ade8688efc6b9d0a4b56b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:80:c3:00:d4:7d:25:18:ac:3c:09:64:28:9d:
1b:fc:93:1c:ae:9c:c3:dd:c8:69:48:45:41:97:0d:
23:d6:b8:b2:60:97:7f:f7:be:b5:a4:94:55:59:46:
df:25:f9:a3:64:cd:67:3a:cb:c2:88:b5:7d:0d:d8:
97:4a:21:80:4f:85:d1:f0:5d:f2:e7:8b:2c:22:c1:
56:cd:0b:d5:17:b3:47:84:82:ed:a5:34:09:58:71:
14:d8:0b:2b:2e:96:90:3b:a0:4b:4e:5e:a0:24:bc:
60:74:d3:5f:98:ac:7c:25:1c:31:e8:f0:f5:93:52:
6e:51:81:85:a3:ad:a1:52:90:f9:c8:19:ab:e1:4e:
5c:a3:1c:36:08:91:d9:7d:55:8d:96:e4:28:ac:b8:
78:1a:16:c1:e0:2b:36:5a:a5:5e:b5:f8:8e:b6:46:
8f:f7:1f:e4:07:c6:5d:0c:68:1b:a9:0f:a6:c2:83:
e1:19:b6:47:86:02:90:cc:5d:69:96:66:9b:be:7c:
2d:62:a5:6a:d0:12:1a:49:28:e0:c7:b5:b6:55:25:
ca:d4:32:81:97:6e:48:0b:5a:fe:4b:5c:16:dd:0c:
f0:fa:8e:12:ff:a2:a8:82:e7:8c:33:2a:16:0e:8e:
d1:72:73:ec:86:ad:0e:6f:95:2c:2f:86:68:1f:aa:
c7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:71:30:E4:A1:27:42:A2:4A:DE:86:88:EF:C6:B9:D0:A4:B5:6B:74
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/LXEw5KEnQqJK3oaI78a50KS1a3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:6b0::/44
Signature Algorithm: sha256WithRSAEncryption
76:8f:55:37:b7:55:ab:40:7c:bd:72:12:b0:60:44:bd:38:c8:
54:6b:d2:ed:2b:f4:9c:aa:62:56:f6:1b:a8:fb:ad:89:ac:f7:
2a:a1:76:1e:53:5a:6f:25:83:45:ec:ce:a4:73:95:13:42:ad:
70:55:9a:00:6a:09:e6:c4:37:8d:4a:e3:7b:2d:bb:5b:cf:ee:
18:85:aa:c2:72:df:9a:63:55:ac:88:ae:68:84:e0:55:04:05:
ec:a2:a1:9b:8c:a0:6d:ad:30:2f:31:a4:7d:df:56:10:d2:a1:
e6:02:92:9f:e4:60:3a:39:92:19:43:f3:2f:24:67:24:fb:79:
e1:fd:f1:7e:02:d3:7f:3f:cf:c6:ca:a4:5d:1d:46:24:fe:b3:
93:24:fa:53:ae:16:ff:91:2e:00:a3:d8:e6:7e:2b:7d:39:a0:
77:a7:36:c4:80:b4:ed:e1:01:66:2a:b7:2d:5b:8b:d6:f5:b8:
41:00:94:9a:a2:29:85:fe:64:15:da:7d:42:e0:51:cc:52:71:
59:91:9b:7d:89:e6:00:f3:95:96:99:8c:d7:1c:99:d8:49:1b:
b4:97:a4:6b:b3:00:99:9f:45:2c:25:6f:f7:5c:2b:59:89:ef:
1f:a0:ab:82:5e:2f:34:bb:d8:16:54:38:50:fe:59:b2:ed:2b:
b4:1d:f1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org