Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/pxjwGFdJ5shUiJX7b5ru5vdoQlc.roa
File: pxjwGFdJ5shUiJX7b5ru5vdoQlc.roa (raw, json)
Hash identifier: UQv8SjtKRBjda6O7eTVQbnYPO/0Ffh5MvFkcXiHpGoM=
Subject key identifier: A7:18:F0:18:57:49:E6:C8:54:88:95:FB:6F:9A:EE:E6:F7:68:42:57
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E78510D3B72CDC184395D5FC8AB1C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/pxjwGFdJ5shUiJX7b5ru5vdoQlc.roa
Signing time: Mon 02 Jan 2023 06:15:00 +0000
ROA not before: Mon 02 Jan 2023 06:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210469
IP address blocks: 2a0c:b641:580::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:78:51:0d:3b:72:cd:c1:84:39:5d:5f:c8:ab:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a718f0185749e6c8548895fb6f9aeee6f7684257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9e:d3:76:61:af:c9:47:45:72:73:71:89:94:
79:03:42:54:68:5f:ae:43:e2:2e:b4:80:43:f3:6b:
89:50:11:d6:d7:3e:9c:db:5a:f4:53:9f:9b:35:33:
bc:7a:34:0d:f5:7d:aa:cb:85:c6:69:6a:27:21:4c:
f8:7c:63:50:4e:ce:6d:e3:f8:ef:84:80:98:f0:92:
4e:6c:c5:b7:89:87:c5:98:f7:d3:f3:58:8e:f6:f9:
00:80:85:3e:ce:b3:cf:2a:cb:37:d7:3d:f0:8d:0e:
fd:2b:ee:69:80:01:66:8c:28:2a:8e:c8:00:a7:3c:
30:23:57:cb:ac:7d:77:78:1d:cc:48:7e:93:3c:2c:
53:88:2d:d2:ac:53:33:0b:fc:74:ca:0b:30:ee:39:
79:4d:b7:6e:86:37:06:5a:dc:d8:54:c1:d9:ef:82:
c1:45:26:16:56:e1:84:67:b2:41:1b:79:26:e4:36:
a8:51:73:f4:ae:65:a7:f2:85:56:bc:57:49:f8:07:
d3:b7:4b:8a:c9:8c:fb:ef:bd:f7:4b:17:14:53:be:
e1:b3:13:e0:77:2d:f8:ff:82:b3:63:3e:44:83:82:
f9:e2:93:57:94:c4:dd:5a:52:69:b0:59:14:dd:02:
fc:e2:17:4e:10:0a:8f:62:01:48:78:c8:be:22:fc:
db:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:18:F0:18:57:49:E6:C8:54:88:95:FB:6F:9A:EE:E6:F7:68:42:57
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/pxjwGFdJ5shUiJX7b5ru5vdoQlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:580::/44
Signature Algorithm: sha256WithRSAEncryption
76:5a:9b:e9:91:e6:19:8f:45:6b:18:36:fb:69:0e:12:fe:40:
36:bc:1b:41:06:fe:47:32:fc:bc:66:46:6b:5a:0b:02:72:8c:
98:9b:97:45:6f:53:b3:ab:45:be:d1:c5:ad:2b:98:f5:d1:88:
da:f1:ce:b5:45:1e:45:85:5d:26:f1:00:ca:26:a6:48:7a:2f:
a3:88:18:91:00:25:4a:07:11:48:50:70:4a:11:82:8c:97:f2:
48:c4:f3:59:d0:ea:51:fb:7e:f1:f0:90:db:24:a6:3f:f5:7c:
27:93:7f:8d:62:65:6b:35:d3:85:43:65:04:72:15:28:71:51:
7d:be:71:87:85:82:c6:a8:31:f5:7f:2c:e4:95:17:2f:da:2f:
e1:2c:ec:35:b1:d9:3b:fa:0f:49:6f:30:fe:60:e9:54:67:ae:
33:7a:4e:b4:f6:98:4f:e2:43:aa:5d:7c:4f:3d:20:03:88:0c:
26:8e:a0:00:7c:29:6a:18:43:8c:a5:d1:0d:89:a8:ce:c1:d0:
d6:39:cd:54:f1:8d:e2:af:78:08:30:cc:b4:63:d8:32:60:88:
ac:ba:48:3b:8c:be:09:24:be:79:69:9b:54:fc:41:c4:aa:c1:
a0:f4:7a:bc:7b:ee:bd:d3:d2:32:4e:7a:42:81:90:80:ce:84:
fa:ff:1e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org