Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/bK6PdGeU6ULzxOYiQNRqG3NjjC4.roa
File: bK6PdGeU6ULzxOYiQNRqG3NjjC4.roa (raw, json)
Hash identifier: r88Hjj93cAfkAXMrN79+L+IFvIjgiqLq7XdXPbWCm74=
Subject key identifier: 6C:AE:8F:74:67:94:E9:42:F3:C4:E6:22:40:D4:6A:1B:73:63:8C:2E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E949A6941E9E76C1B313D88874E9F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/bK6PdGeU6ULzxOYiQNRqG3NjjC4.roa
Signing time: Mon 02 Jan 2023 06:15:07 +0000
ROA not before: Mon 02 Jan 2023 06:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213034
IP address blocks: 2a0c:b642:fc0::/43 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:94:9a:69:41:e9:e7:6c:1b:31:3d:88:87:4e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cae8f746794e942f3c4e62240d46a1b73638c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5e:75:f7:c3:cf:c3:06:29:03:a7:03:42:b1:
a6:66:fb:e7:05:64:ac:6f:8f:47:b5:3c:2f:1d:e9:
e8:75:19:b0:75:e1:29:7e:28:f1:32:94:31:55:a0:
a5:3c:91:1b:19:a6:2b:ff:ac:54:3a:2f:46:be:b4:
1d:36:68:56:ba:b9:28:ef:a4:e9:2c:c0:8e:a5:80:
d8:d4:8e:65:44:0c:80:cb:6c:6b:06:3a:ad:b5:ce:
9e:fc:46:77:4e:1c:ed:b0:9a:fe:f3:ff:cb:e7:8c:
d7:d8:b8:14:db:78:40:08:83:b3:81:77:58:61:63:
2d:51:c9:cb:e5:58:d8:fa:df:89:d9:65:33:3c:90:
cc:e7:8c:55:b7:39:ee:3c:c9:dd:22:6a:55:0d:68:
9d:a0:6e:9a:ff:dd:d1:ad:f9:66:2c:50:73:b3:81:
38:ca:e8:e8:2c:1d:4e:66:ac:12:91:67:2b:32:27:
f6:34:9c:cf:ef:e1:c3:12:91:17:8f:38:d9:d4:ce:
45:82:4f:77:26:53:df:7d:b4:81:81:35:72:76:0d:
5b:46:f5:4d:7d:f9:39:67:07:30:e3:55:af:71:cd:
c9:82:0f:e9:21:d0:30:61:88:e0:fb:00:65:0d:67:
cc:bf:ce:93:2b:ac:76:20:cc:53:d9:68:f2:f5:fe:
84:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:AE:8F:74:67:94:E9:42:F3:C4:E6:22:40:D4:6A:1B:73:63:8C:2E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/bK6PdGeU6ULzxOYiQNRqG3NjjC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:fc0::/43
Signature Algorithm: sha256WithRSAEncryption
00:9e:06:65:9b:f1:e4:c9:1a:3d:2a:e4:1e:5b:bd:75:68:88:
8d:46:89:4e:7a:7d:cd:87:d9:28:c3:80:ea:2b:fc:e5:5d:5b:
58:3c:7f:98:1d:8e:4a:38:64:c6:22:38:02:b4:45:5b:44:89:
b6:90:1c:77:dc:45:f0:7d:30:6e:b4:3f:9e:c4:14:8f:1a:d6:
ca:a9:1f:55:71:30:a6:e5:e7:ad:fc:2a:e8:ea:09:4a:bd:3a:
d6:0b:34:a1:74:8a:cd:93:5e:d9:60:a4:f5:3e:e9:2f:a9:e7:
99:30:a9:16:b9:a0:ed:8f:81:b2:71:25:9d:64:5b:05:02:08:
c5:94:c9:06:a1:a1:59:ee:2a:51:9c:af:c3:6c:03:73:de:85:
cd:f5:49:d4:3a:d7:db:8a:ea:c2:94:24:61:84:bf:b0:ff:ba:
39:8b:9d:7d:10:6f:a8:d6:10:d8:25:6c:f4:9c:9a:27:25:a9:
d0:68:07:16:66:b1:ea:12:a2:bf:8f:ff:b1:54:95:d3:6f:4f:
8e:ce:58:ad:d0:49:74:b5:c5:92:02:f1:2b:22:bf:2d:cf:58:
74:81:55:88:ce:1c:b4:ad:00:df:f9:7e:72:2a:d0:b3:4f:25:
4a:3e:59:27:7f:29:e7:03:05:0f:44:6f:2c:52:b4:91:e4:b1:
6e:59:3f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org