Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Rhohglg6ai7-zqGxEq3BWVm4oU0.roa
File: Rhohglg6ai7-zqGxEq3BWVm4oU0.roa (raw, json)
Hash identifier: CpqNfQw2gax4xYGy6AUUQ/dVch91USCSZM/HKdef7Qg=
Subject key identifier: 46:1A:21:82:58:3A:6A:2E:FE:CE:A1:B1:12:AD:C1:59:59:B8:A1:4D
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E84D8DB825B5ECFF5A0CF743B75A3
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Rhohglg6ai7-zqGxEq3BWVm4oU0.roa
Signing time: Mon 02 Jan 2023 06:15:03 +0000
ROA not before: Mon 02 Jan 2023 06:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211754
IP address blocks: 2a0c:b641:890::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:84:d8:db:82:5b:5e:cf:f5:a0:cf:74:3b:75:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=461a2182583a6a2efecea1b112adc15959b8a14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bc:e7:0c:c0:45:46:f9:1d:85:bf:0e:df:19:
cd:93:2a:de:96:66:63:78:69:2b:8c:b1:ff:2b:03:
07:af:67:a0:60:4e:84:f3:e0:9d:42:0c:2a:e7:4f:
73:50:ca:c1:32:42:16:bf:a9:b5:58:de:b4:76:f6:
49:10:43:34:08:bc:0c:07:8e:52:ac:f9:56:dc:95:
af:bd:41:e7:d7:75:49:fd:fa:da:f5:af:2b:24:18:
4c:22:ae:15:b7:65:0c:01:97:2d:b1:9d:b1:d4:02:
8a:3a:8d:32:54:8c:cf:fb:16:8f:cd:e3:a0:19:1a:
cd:0e:15:0f:d1:e8:78:0a:0b:62:21:96:93:f9:50:
87:25:45:a1:9b:47:a0:e8:6d:1b:e7:49:1c:c4:e5:
62:f5:f6:d9:6d:97:be:c5:67:5f:20:eb:a1:7f:bc:
5a:68:e2:e3:55:8d:28:03:eb:f6:78:10:55:55:16:
5f:c3:f5:6d:db:4a:d0:04:dc:49:16:87:e7:4a:be:
83:a6:66:69:75:70:81:fe:29:d5:98:51:01:6d:a0:
c0:ea:2d:cd:5b:4f:b0:ba:ab:1d:e4:72:28:05:ee:
49:da:19:79:eb:06:d2:5d:95:f6:a6:ad:98:e7:7c:
1a:5d:dc:ba:de:ff:d2:0e:48:c0:73:9c:37:41:0b:
2b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:1A:21:82:58:3A:6A:2E:FE:CE:A1:B1:12:AD:C1:59:59:B8:A1:4D
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Rhohglg6ai7-zqGxEq3BWVm4oU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:890::/44
Signature Algorithm: sha256WithRSAEncryption
18:ab:ad:8f:fc:12:17:7a:b1:d5:97:6f:79:42:28:38:e6:dd:
bb:98:3a:ac:f0:d5:00:a6:2b:bf:1f:83:bd:76:b9:00:c6:36:
7d:91:03:d9:2f:2b:b0:e9:ef:a3:e4:58:87:f8:cc:3b:2a:7d:
2b:f3:30:39:fb:ac:05:48:6e:96:56:f3:33:be:8e:22:84:13:
48:4c:67:80:98:21:65:77:30:80:b0:b0:23:b7:24:ca:5f:fd:
68:6b:d9:e8:63:95:47:57:a8:28:3c:30:cb:92:76:44:de:85:
6b:e6:f7:f8:c4:59:81:e4:5f:fb:c7:fe:58:d0:b3:59:70:b5:
7f:d5:d2:4e:5a:17:31:42:5b:a9:7e:a9:17:9a:2c:18:8f:f2:
4c:89:c6:93:94:04:7f:75:6c:ce:39:92:b6:3f:21:a6:6e:29:
73:4b:80:5b:8e:bb:b5:ac:a9:72:6d:37:75:10:22:b3:c1:b1:
93:a0:71:a0:b4:ca:b0:8d:b1:d5:1c:90:8f:c8:99:50:7f:ee:
7a:38:75:89:a2:1b:c3:3c:ed:c4:f0:c0:54:2c:b9:af:c1:e7:
e8:25:89:19:2b:fa:b1:cb:5d:a4:11:4e:2d:1d:ea:47:c1:3f:
ef:03:20:14:53:bc:1c:c2:df:70:5e:2c:12:c6:6d:70:ea:74:
41:29:f6:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org