Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/S0IRgy8kJP_eqBJnXUAjWlGte8I.roa
File: S0IRgy8kJP_eqBJnXUAjWlGte8I.roa (raw, json)
Hash identifier: KiDNmBvxuCfgfIgnutPmqX0JcG4BrxRsEpe9F3Ur3Uk=
Subject key identifier: 4B:42:11:83:2F:24:24:FF:DE:A8:12:67:5D:40:23:5A:51:AD:7B:C2
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E90AC102DB95EF661F773115F1789
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/S0IRgy8kJP_eqBJnXUAjWlGte8I.roa
Signing time: Mon 02 Jan 2023 06:15:06 +0000
ROA not before: Mon 02 Jan 2023 06:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212912
IP address blocks: 2a0c:b641:5e0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:90:ac:10:2d:b9:5e:f6:61:f7:73:11:5f:17:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b4211832f2424ffdea812675d40235a51ad7bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:53:f2:06:0a:13:b3:65:af:9e:ca:b0:ff:63:
41:63:b7:72:d7:4e:68:dc:a7:74:45:cf:de:4e:c6:
33:8d:f5:e6:02:44:a4:e1:2d:2f:d3:8b:15:b0:44:
ce:f3:4a:7d:94:62:8c:3e:ab:49:a5:95:e7:ad:23:
d2:5f:6c:94:16:b1:c9:ba:bd:f6:6f:3a:4c:94:9c:
22:15:b0:ff:02:ae:e5:34:6b:6f:69:a6:f9:6f:3e:
89:4d:75:39:93:8d:1c:c8:60:db:ce:5b:a9:6c:a0:
cc:8c:4e:39:8e:1c:37:55:05:b0:e7:e1:f9:ba:69:
28:26:2c:00:0f:0d:1c:83:b8:d9:34:4b:e2:b6:1c:
5f:59:6e:a9:d7:14:89:87:37:7a:ee:fa:bf:a1:d9:
fd:2d:4f:89:7f:37:f1:2d:ea:c5:7d:6c:16:4b:0c:
fa:3f:da:5c:6e:69:f5:5f:30:39:9d:7b:c5:08:e8:
bc:36:5c:50:51:00:1a:5b:3c:c6:6d:c8:74:00:e4:
fb:f8:43:f5:63:d5:59:a1:44:2b:03:54:25:68:ad:
bc:37:ec:9f:52:a0:25:34:61:0e:93:af:fe:8f:37:
3d:69:89:9f:bb:63:a3:b5:a7:14:f7:2c:9b:b1:e3:
31:ca:3f:c3:03:ed:ea:79:bb:1d:e4:99:58:c1:aa:
4c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:42:11:83:2F:24:24:FF:DE:A8:12:67:5D:40:23:5A:51:AD:7B:C2
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/S0IRgy8kJP_eqBJnXUAjWlGte8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5e0::/44
Signature Algorithm: sha256WithRSAEncryption
53:85:c1:a0:b3:06:dc:93:6a:2d:3e:3b:c5:c5:c9:99:4f:80:
07:26:e1:0f:bf:e1:45:1a:f3:ee:cb:a7:14:c0:b5:c1:83:54:
39:b1:7d:62:23:25:8d:c0:d5:4e:ae:c2:bb:32:31:97:5f:6a:
60:11:f3:ff:b4:5d:43:fe:06:04:2e:39:db:25:db:71:23:ed:
e8:f3:9a:82:95:51:2d:7d:90:c9:65:cb:36:de:26:88:71:5c:
2c:0d:b9:ca:c3:cd:30:fa:a6:20:57:15:1e:fe:e2:66:a1:4c:
22:06:f8:ad:28:ef:71:22:00:ea:f3:ef:99:db:44:df:9f:30:
e1:01:71:7f:09:f7:ce:8b:b7:19:ba:07:93:c3:37:6c:ec:c8:
94:4b:4e:dc:0b:6c:9a:83:86:4f:1f:a3:38:3a:c6:02:1a:40:
3b:1b:60:ed:e1:9b:59:78:24:87:87:cd:87:e2:26:32:73:8c:
e0:da:59:fe:0c:59:f5:58:64:2d:79:c4:29:07:44:af:05:e7:
12:2f:3f:ad:81:58:7c:cd:97:99:97:88:d3:06:e0:9e:22:3c:
02:72:39:70:68:93:50:13:3a:0d:93:39:11:f3:e4:8e:7c:df:
ef:8c:1c:dc:b2:32:6a:b8:01:67:bb:25:34:ce:50:f7:5d:1e:
f7:9a:ba:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org