Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/lNCwEm1X9E-b8EV9K1bLJ-mp7Vg.roa
File: lNCwEm1X9E-b8EV9K1bLJ-mp7Vg.roa (raw, json)
Hash identifier: rybUFZWTSdWXJ6FhIvSaaXW1QJy/cC5tmtLMUmDUC1A=
Subject key identifier: 94:D0:B0:12:6D:57:F4:4F:9B:F0:45:7D:2B:56:CB:27:E9:A9:ED:58
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01880700BF55856E02597AA0462AD0201A03
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/lNCwEm1X9E-b8EV9K1bLJ-mp7Vg.roa
Signing time: Wed 10 May 2023 18:51:09 +0000
ROA not before: Wed 10 May 2023 18:51:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198587
IP address blocks: 2a0c:b641:a20::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:07:00:bf:55:85:6e:02:59:7a:a0:46:2a:d0:20:1a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: May 10 18:51:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94d0b0126d57f44f9bf0457d2b56cb27e9a9ed58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6b:52:71:fa:07:bb:24:39:fa:dd:2f:c4:02:
61:c3:88:8d:07:56:e6:b1:32:3f:02:15:b9:06:3b:
28:2f:51:bf:5c:84:12:d9:c8:9c:83:24:06:0e:5b:
0a:44:21:3e:48:f7:1e:e0:40:7d:09:0b:4a:8d:fe:
14:e0:00:90:6e:30:67:9d:29:b8:ce:9f:bd:12:04:
62:b5:0b:04:4a:cb:fb:9a:f2:48:ae:11:b3:28:af:
0a:8c:06:e9:b7:ab:16:41:49:7b:8c:73:ad:81:1b:
d0:9b:9c:22:ba:f1:86:dd:d9:6d:c0:cc:6a:31:0b:
b9:03:3e:f8:47:69:f7:d0:f0:e5:59:1d:09:82:8c:
a1:0c:b4:33:01:80:35:5a:20:f7:87:fa:8b:90:e5:
20:93:03:46:d3:03:fa:6d:e9:ae:18:2a:8d:34:87:
00:7a:5d:d0:1b:d3:fb:9c:be:6f:18:9b:66:c6:4a:
3f:5d:27:f4:32:4c:69:87:8a:f0:20:92:5d:b1:95:
b0:c7:1f:2f:51:33:71:0a:32:a7:f1:33:77:bb:97:
fe:af:d7:fe:6a:6f:11:ad:b0:8d:c4:14:9a:1d:c7:
16:31:58:ea:26:9b:a9:1a:89:77:77:e5:55:85:21:
9a:80:9b:40:f4:ff:f6:b6:ca:f7:76:92:04:e8:8c:
11:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D0:B0:12:6D:57:F4:4F:9B:F0:45:7D:2B:56:CB:27:E9:A9:ED:58
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/lNCwEm1X9E-b8EV9K1bLJ-mp7Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a20::/44
Signature Algorithm: sha256WithRSAEncryption
91:f0:ac:9e:da:8c:19:25:2d:5a:04:53:10:31:b0:c3:05:c4:
9e:54:e9:6e:ac:18:96:96:68:d4:c5:e8:93:dd:22:81:70:88:
a8:3a:e8:e6:5a:b4:1f:b1:eb:be:f1:6d:9f:88:b3:99:52:90:
40:4a:f4:41:ed:7b:e7:28:69:9f:1a:67:d3:b4:e4:e3:13:de:
99:3a:64:be:7c:bf:b4:58:35:9d:a8:1c:37:6d:ab:7f:19:cf:
d7:6a:3f:21:46:c1:e5:c5:5d:ac:9c:fe:ee:cf:0d:c6:fc:f6:
b0:88:b8:ee:78:79:bf:a0:5f:62:93:2d:e0:62:38:59:e6:4e:
35:34:c4:b3:be:3b:33:e4:dd:b3:2f:f1:b7:7a:48:85:52:b2:
1b:04:e6:7d:2d:ef:cd:4a:d4:55:d9:55:df:7b:2f:08:e3:2e:
7c:41:d2:cd:61:bb:d2:61:61:33:5f:c3:7b:cc:96:ec:3b:15:
5b:ad:1b:1d:9f:d0:d3:0b:1b:a5:e3:ee:b7:12:ee:e6:7e:f4:
e4:20:95:0c:d1:db:ef:7a:49:86:fb:c6:05:d7:0e:27:9e:4d:
7b:87:d2:27:a7:c7:ac:bc:88:d7:24:f9:4c:46:18:e1:e3:da:
3d:c9:14:bd:92:8f:12:95:22:98:6c:c9:c2:e4:df:25:d9:ad:
b2:a4:7b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org