Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/fl4GWJs5f8MrzKGIzhAOHTEMSpM.roa
File: fl4GWJs5f8MrzKGIzhAOHTEMSpM.roa (raw, json)
Hash identifier: +4RV3bMK5OJ4k7bbEG0ibfNvjzonxjZyoPX9tJ28hXQ=
Subject key identifier: 7E:5E:06:58:9B:39:7F:C3:2B:CC:A1:88:CE:10:0E:1D:31:0C:4A:93
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E48A36BC7F6E43D552B84DB658F4E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/fl4GWJs5f8MrzKGIzhAOHTEMSpM.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 2a0c:b641:150::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:48:a3:6b:c7:f6:e4:3d:55:2b:84:db:65:8f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e5e06589b397fc32bcca188ce100e1d310c4a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:df:76:e6:a5:c0:29:a7:29:21:1f:2d:d0:
f4:a2:8e:50:33:80:56:3d:e7:ec:00:ac:1e:d0:76:
34:29:4d:cb:0d:2a:d8:21:d7:af:de:c7:85:ac:ca:
1f:8c:26:93:0a:ed:b4:08:67:1d:71:29:9b:5b:cd:
4c:05:12:36:be:e4:64:ba:4b:a2:a9:55:ae:e0:cb:
ab:57:24:e7:9f:c1:7a:f1:6f:3d:32:1c:15:6a:3b:
03:c0:20:ba:9c:76:9f:d5:74:da:97:46:79:76:e8:
7f:87:0a:68:1e:39:16:69:e1:d6:c2:d0:4e:c2:cf:
9e:60:68:a6:76:1d:d6:41:67:b7:59:12:a6:98:ff:
5b:42:c6:fa:2b:7c:33:11:18:be:21:47:7b:78:9f:
f2:4c:a2:d0:88:d9:e0:76:bb:24:13:a7:14:46:31:
c4:d2:92:95:02:88:4c:39:bc:d1:92:a5:66:dd:2f:
9e:f9:70:a4:60:42:ae:cb:60:fa:ec:02:51:09:17:
f7:79:02:40:4e:17:19:5b:06:1b:a1:3c:53:53:ad:
31:2f:9b:0b:d2:33:12:eb:4d:68:ad:67:3c:9b:57:
2a:e9:32:c3:3d:7e:1f:e9:0a:79:a9:96:3a:c2:26:
f7:f9:7b:f4:c8:37:5a:5d:48:24:b9:2a:35:ca:b2:
d2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5E:06:58:9B:39:7F:C3:2B:CC:A1:88:CE:10:0E:1D:31:0C:4A:93
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/fl4GWJs5f8MrzKGIzhAOHTEMSpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:150::/44
Signature Algorithm: sha256WithRSAEncryption
22:ed:37:7d:80:5b:1b:f9:54:bf:d4:a1:30:56:64:0b:fd:d1:
94:7b:57:37:96:5b:eb:f7:0e:50:3a:58:77:97:54:80:b1:fb:
d0:a3:fc:0d:28:cf:f5:91:27:29:77:48:af:21:5f:d5:95:e6:
da:65:fa:c7:6d:d5:1f:8c:e2:42:48:35:cb:0c:c7:e4:f3:15:
9c:c9:08:34:24:80:9b:57:eb:6e:66:80:a0:0e:db:b6:c7:99:
33:eb:c1:59:2a:ae:c1:a2:7e:68:ad:2e:4d:26:10:08:b7:4c:
e4:0d:1b:1c:9d:87:d4:6b:a7:2c:19:cf:dd:38:d9:19:48:43:
2b:e4:45:b0:27:6e:d3:5d:24:b8:5e:b6:08:f9:c5:c1:e6:4e:
a5:5a:a0:08:6a:27:33:fa:b2:b8:26:95:34:4a:35:29:4a:1e:
e4:0b:0c:33:e4:cf:0b:3a:b3:73:cd:7f:9e:b9:75:86:99:78:
ff:53:9b:1c:5d:54:49:e4:9f:ff:27:a6:b9:a4:67:da:08:d0:
f5:6b:fe:aa:ea:59:3d:49:fd:44:ef:9d:01:44:fe:3b:41:9c:
8f:f0:ad:58:d6:f7:a4:8b:88:fb:05:30:b8:20:47:05:ba:71:
d0:5b:6d:ac:db:59:89:4c:9a:26:dd:79:30:b8:bb:6a:04:13:
5a:f0:47:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org