Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cWRlWXGIoifXVkNLTwnG0ECpVEU.roa
File: cWRlWXGIoifXVkNLTwnG0ECpVEU.roa (raw, json)
Hash identifier: /KhaGti6Vwdx7Mos9AfUtcgYBsuvXvcFKHEzZ9cyI9k=
Subject key identifier: 71:64:65:59:71:88:A2:27:D7:56:43:4B:4F:09:C6:D0:40:A9:54:45
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018A89F2E07348E99C6852ED332995ABBB23
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cWRlWXGIoifXVkNLTwnG0ECpVEU.roa
Signing time: Tue 12 Sep 2023 15:11:50 +0000
ROA not before: Tue 12 Sep 2023 15:11:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:b641:130::/44 maxlen: 48
2a0c:b642:4000::/36 maxlen: 48
Validation: Failed, certificate revoked on Sun 17 Sep 2023 14:31:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:f2:e0:73:48:e9:9c:68:52:ed:33:29:95:ab:bb:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Sep 12 15:11:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=716465597188a227d756434b4f09c6d040a95445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4a:63:f5:90:98:ca:f6:f1:15:7e:ce:9a:c6:
34:c9:cf:c5:d4:a7:b0:8b:29:93:fd:96:8b:c6:04:
29:18:2e:e4:9a:8e:67:30:56:5e:94:23:50:cd:1d:
67:ee:37:0d:b0:cc:9b:cd:13:9e:fb:07:ea:25:c1:
1a:19:18:2e:71:58:6a:67:2c:ea:44:9e:85:9c:78:
b6:95:8b:40:f2:8f:26:c6:51:e5:a1:4c:fc:57:24:
ab:43:7c:74:ca:22:91:00:27:ae:f9:e6:b3:6f:3f:
52:bd:a6:bc:1c:06:55:6f:da:0d:b4:29:d7:ef:a5:
2e:0a:9e:92:97:eb:26:f0:55:08:2a:c2:50:72:d5:
50:f0:f8:5a:d1:7f:d6:40:ee:6d:f1:5d:56:2e:2b:
c4:bc:c4:f9:bf:81:c0:a1:4f:09:92:dc:f9:7d:4e:
43:07:a4:09:f3:f5:16:52:20:0e:f2:76:d0:23:2d:
9f:b2:79:a9:c1:8e:b4:5b:3e:ea:ea:fe:7a:9b:f1:
e3:cd:24:b0:ad:d8:37:e3:f1:f9:be:ad:5c:47:b0:
8e:7d:9d:5b:85:46:a7:56:71:79:7a:ba:46:27:44:
ff:55:0c:f0:a4:a2:ec:55:c2:b5:2d:92:73:7a:15:
da:80:71:4e:28:3c:c1:f6:51:7c:9d:2a:db:29:78:
f6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:64:65:59:71:88:A2:27:D7:56:43:4B:4F:09:C6:D0:40:A9:54:45
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cWRlWXGIoifXVkNLTwnG0ECpVEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:130::/44
2a0c:b642:4000::/36
Signature Algorithm: sha256WithRSAEncryption
59:f8:2c:3b:23:f2:17:30:b0:94:7c:25:55:53:8b:7f:03:3c:
91:88:1e:e2:95:bb:28:af:3c:7a:fe:2a:78:29:b5:ae:34:89:
0a:c1:20:d8:d5:df:33:87:c4:c1:8f:8b:72:a5:68:5c:1f:ab:
57:a9:63:1f:64:62:2f:89:59:0b:53:78:de:ea:7e:bd:d1:cf:
57:bf:1c:9f:ae:9e:c3:b1:f4:6c:2b:27:df:ac:f6:b9:56:30:
3d:e8:d9:94:47:b2:c8:07:05:4e:f7:e4:c9:29:ba:12:32:8d:
e2:f1:cc:5b:46:a4:c1:e3:4d:3f:a7:a4:e5:00:d0:3b:6e:c8:
09:22:32:2c:4d:1d:46:24:86:d7:fa:1d:04:8c:b7:8c:0a:b9:
31:a8:03:6a:47:1a:86:c1:8b:3d:f1:24:70:ac:17:de:df:31:
ea:13:8f:67:3b:fb:81:32:b6:78:5b:bd:08:62:f8:a3:b7:a5:
62:07:c5:04:d8:1d:7c:dc:8b:52:ff:0e:6f:fd:08:9f:24:42:
21:d8:ab:ef:5e:79:df:55:b2:b3:d8:c5:74:56:bf:6c:a0:bb:
72:4f:6a:4a:62:19:a8:e0:b3:d3:db:7c:af:95:18:5e:03:44:
72:8a:3e:77:c5:d4:d6:6e:57:f1:cc:08:57:df:ab:4e:4b:09:
6d:ae:c8:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org