Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/XhXoAqeJERH0SazpBd0VUSzJbQs.roa
File: XhXoAqeJERH0SazpBd0VUSzJbQs.roa (raw, json)
Hash identifier: fg0irjVZMmEjp4jpQzDNCdhJZf+9twEhHazYc5Oeqls=
Subject key identifier: 5E:15:E8:02:A7:89:11:11:F4:49:AC:E9:05:DD:15:51:2C:C9:6D:0B
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0187C28023D0D34F650DE6AADDB31AA38791
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/XhXoAqeJERH0SazpBd0VUSzJbQs.roa
Signing time: Thu 27 Apr 2023 11:36:30 +0000
ROA not before: Thu 27 Apr 2023 11:36:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198764
IP address blocks: 2a0c:b641:a10::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:80:23:d0:d3:4f:65:0d:e6:aa:dd:b3:1a:a3:87:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Apr 27 11:36:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e15e802a7891111f449ace905dd15512cc96d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fc:2e:a7:a9:c4:77:bc:b5:db:d8:d4:47:c1:
0d:4e:8c:75:5e:5e:77:b8:e1:e4:44:92:07:45:dd:
85:d5:35:d7:e5:36:53:0f:3c:cc:30:4a:39:e0:ca:
e7:df:26:4e:bf:ab:f8:57:45:5c:a5:0b:5f:b1:2a:
2c:bc:dd:d6:4b:7d:7c:21:0c:b6:4a:67:f1:21:75:
45:eb:f9:20:61:5d:e5:e2:7f:14:e0:e1:92:f2:c6:
67:cc:22:ed:68:a0:d8:ec:5a:1a:a1:5b:57:84:49:
a9:9e:9e:a3:2c:b4:bc:7a:76:78:07:fd:9e:bf:08:
80:c8:b9:0c:e2:0d:bf:75:98:67:0b:07:7c:d7:09:
07:ac:66:8b:65:fb:a9:f3:dc:d3:cb:f0:fb:dd:7e:
04:64:4b:bd:7c:15:bf:06:a2:58:06:98:74:44:56:
b5:65:31:77:36:d1:2c:93:0d:5f:dc:58:56:81:70:
ff:83:e3:5d:68:ac:b8:9c:7b:9e:37:33:bb:02:22:
82:6b:0d:9b:f0:61:90:c5:7c:48:12:3d:c7:ae:4e:
b6:b1:d8:ed:f9:0c:71:c3:01:ac:97:b6:50:a0:2a:
f9:61:a3:fb:32:39:fb:0d:87:c6:4f:2e:df:e5:ca:
43:50:4f:88:26:e9:1c:9f:c6:1d:a1:1f:e9:eb:49:
7f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:15:E8:02:A7:89:11:11:F4:49:AC:E9:05:DD:15:51:2C:C9:6D:0B
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/XhXoAqeJERH0SazpBd0VUSzJbQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a10::/44
Signature Algorithm: sha256WithRSAEncryption
05:ca:7d:43:89:69:38:7c:56:19:73:d8:90:a1:02:42:8f:d7:
46:f4:7c:12:b1:82:ff:a2:59:84:89:ca:33:dc:2b:23:67:09:
f1:2c:22:11:b3:90:f2:a0:b2:28:3b:36:cb:d9:dd:ab:2e:73:
be:c9:2e:4e:fc:01:15:25:3b:f4:07:e5:e5:ee:eb:66:24:db:
17:4f:48:99:3f:57:3e:f2:a7:2e:c5:1f:c8:f7:a2:27:70:a6:
4c:3f:9e:06:7a:10:05:36:55:04:2c:10:80:86:82:7d:8f:8d:
70:a0:24:a8:af:bb:6b:53:de:05:c8:47:f7:6b:e3:7a:04:6b:
e7:e2:d5:66:03:96:99:3c:09:6b:25:0e:5d:cc:de:56:ac:a0:
07:b0:5d:fd:d3:bd:17:78:9f:de:0b:f1:59:ab:41:b9:f0:72:
98:88:49:41:49:71:c3:b0:70:56:62:b7:97:b9:9d:31:6a:bd:
87:6b:5a:e6:7b:c0:95:34:9e:86:ab:4d:d0:ff:c6:f5:23:60:
e8:26:21:ca:5a:6a:98:9f:c2:d9:5e:45:bc:d8:13:e9:80:5a:
67:5d:d7:b9:b6:da:2a:00:fa:ea:e1:97:99:3b:10:5c:0e:bb:
0f:5d:a5:89:43:d6:6a:36:df:7c:76:66:5d:72:f3:d3:4f:05:
6b:d0:b0:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org