Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/NUjpTlXjL7rsThJt5fxJfT9BgPQ.roa
File: NUjpTlXjL7rsThJt5fxJfT9BgPQ.roa (raw, json)
Hash identifier: N+UQ9rnHNvIKNXSiVYihISzhAg8a4VQPBG4QtGwfnzA=
Subject key identifier: 35:48:E9:4E:55:E3:2F:BA:EC:4E:12:6D:E5:FC:49:7D:3F:41:80:F4
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E590543C07E3BC57B27F89CDF9396
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/NUjpTlXjL7rsThJt5fxJfT9BgPQ.roa
Signing time: Mon 02 Jan 2023 06:14:52 +0000
ROA not before: Mon 02 Jan 2023 06:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206425
IP address blocks: 2a0c:b641:820::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:59:05:43:c0:7e:3b:c5:7b:27:f8:9c:df:93:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3548e94e55e32fbaec4e126de5fc497d3f4180f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:46:6d:1e:42:b0:21:6e:f7:2a:b9:aa:81:dc:
48:3e:dd:2f:67:d0:92:7a:8f:99:8f:b5:5f:cd:ae:
ad:16:59:f0:a5:e3:0d:97:de:1b:ab:99:8f:af:67:
11:e9:f9:34:1e:89:23:2e:cb:41:57:90:0b:93:35:
f6:12:c9:31:02:c7:e4:83:26:8a:f6:9a:c0:e3:30:
a2:c4:8f:16:d2:63:d5:b3:fc:6a:e0:b2:94:5b:7a:
6f:92:8f:e5:d4:18:ed:1d:96:08:be:aa:08:ad:1f:
1e:80:d0:3b:11:ff:dd:52:f2:57:44:ec:2e:a8:9b:
14:ba:9d:1a:30:b4:e0:4c:39:c2:c6:c6:25:00:ed:
47:c7:24:4f:44:af:b6:e4:3c:68:36:1b:a9:3b:8a:
d1:1e:d7:e8:ae:76:25:16:e2:62:07:2e:78:ec:98:
67:97:65:74:4f:0a:be:f4:79:07:7f:00:da:59:97:
3a:e6:ea:fb:38:76:bc:de:01:d4:f8:2b:0d:7f:b1:
a5:4f:2e:39:05:01:4b:a6:bb:32:de:cb:33:69:05:
6a:d4:0c:37:f2:60:4f:43:3d:16:92:2b:0c:b2:c1:
e7:15:68:e9:b9:ab:77:02:06:f1:fb:36:5d:b9:41:
bf:21:f0:68:dc:7f:74:82:3e:3d:7b:05:67:21:65:
ff:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:48:E9:4E:55:E3:2F:BA:EC:4E:12:6D:E5:FC:49:7D:3F:41:80:F4
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/NUjpTlXjL7rsThJt5fxJfT9BgPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:820::/44
Signature Algorithm: sha256WithRSAEncryption
9c:7e:5f:fb:ad:66:9c:19:6b:2c:f3:5e:eb:50:3b:e7:45:9b:
12:4d:bb:be:ee:9e:ee:e7:29:89:35:e4:59:dd:0e:c7:2e:7c:
a0:3b:81:57:50:65:4e:d7:f4:49:af:5a:3a:1e:98:34:7e:6d:
e0:70:37:44:5b:4c:38:27:8f:91:95:ed:03:c3:13:ad:1c:7a:
29:0d:43:14:16:4e:15:01:82:a8:d4:76:2f:a7:55:f7:c6:41:
50:bb:d2:56:c9:44:cf:35:c0:de:8a:ad:0b:fa:90:42:5e:8d:
07:c6:1b:43:59:e4:cd:bf:78:4d:80:3f:69:fb:1f:57:1d:ec:
7d:03:bb:80:1e:9f:84:25:1c:78:53:71:e6:0d:d7:ec:51:e8:
06:6d:b4:78:00:df:8a:ec:4d:49:50:9b:f2:f8:ea:1c:9b:a5:
e8:26:52:42:ca:f1:d8:69:e0:61:4d:34:2f:4b:31:12:2f:8e:
73:57:a7:2c:b2:17:12:3b:52:bf:29:b4:e8:d8:d2:c9:9f:ce:
49:b2:8c:d6:b4:f6:fe:f0:7a:5c:cd:8b:2c:ed:ec:7e:05:3b:
90:79:82:67:c0:bd:ad:9c:5b:db:cb:de:46:4f:f1:54:00:55:
a1:5c:0e:95:a9:74:3e:e8:35:b2:4a:6b:c4:8d:74:50:33:6a:
98:b9:05:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org