Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q17rmBkhEk8OGmUxlHYBXwBa-ak.roa
File: q17rmBkhEk8OGmUxlHYBXwBa-ak.roa (raw, json)
Hash identifier: biW8FIIj9ybJUWubwQRq7YCacPy8EDGQ6sVEh2GJuNg=
Subject key identifier: AB:5E:EB:98:19:21:12:4F:0E:1A:65:31:94:76:01:5F:00:5A:F9:A9
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E71CE7DCEAA8BD84656B44BCDAA9B
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q17rmBkhEk8OGmUxlHYBXwBa-ak.roa
Signing time: Mon 02 Jan 2023 06:14:58 +0000
ROA not before: Mon 02 Jan 2023 06:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210189
IP address blocks: 2a0c:b641:660::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:71:ce:7d:ce:aa:8b:d8:46:56:b4:4b:cd:aa:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab5eeb981921124f0e1a65319476015f005af9a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ce:a4:39:37:26:03:7c:02:d8:c5:2e:97:c7:
c3:cb:c4:97:7b:30:21:b8:a7:f7:81:60:0b:0e:84:
f7:85:fd:e1:61:d7:bd:16:f5:d2:a2:b4:58:cd:e1:
fe:df:4a:e3:de:c4:1c:4f:88:e9:fc:2d:5c:7e:75:
7d:f2:04:40:9b:10:55:2f:95:1b:d1:dd:4a:df:ed:
7b:e9:23:94:f2:95:62:e9:63:5b:7e:bd:7e:9e:c8:
36:77:bc:4e:01:d5:ca:d3:b4:ab:76:a9:3a:30:bf:
75:c9:4b:e3:ed:7d:63:6f:5a:e8:47:87:51:ee:a1:
aa:c3:cd:6a:59:37:86:e5:39:15:4f:95:9f:2e:f3:
f5:3b:db:42:d0:aa:41:bc:43:96:02:13:40:88:dd:
e2:e1:56:5d:9b:a7:72:78:ce:8a:43:72:c1:3f:41:
6b:82:42:09:89:7d:16:f8:02:a2:b9:5a:d0:5f:40:
46:06:ba:03:ed:b2:e6:d3:e3:70:68:84:12:52:8c:
ec:da:58:9a:af:f1:14:ef:32:63:12:52:7d:26:fa:
b8:53:fa:bc:96:54:f7:f3:0a:c0:3c:c3:d5:bc:1e:
f1:0d:78:03:c1:ba:be:f9:46:79:89:b9:55:b7:35:
44:ba:47:60:a6:3d:bb:0c:49:1b:60:fd:bd:a9:c9:
03:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5E:EB:98:19:21:12:4F:0E:1A:65:31:94:76:01:5F:00:5A:F9:A9
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q17rmBkhEk8OGmUxlHYBXwBa-ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:660::/44
Signature Algorithm: sha256WithRSAEncryption
6e:bc:f5:50:3f:1f:a7:ba:dd:c6:3f:2a:25:fb:b1:12:d8:fc:
5e:79:97:c0:4c:0b:69:87:c7:15:c3:95:de:6c:b4:d6:b8:bb:
81:37:d2:5e:7a:ee:04:63:61:62:a6:17:45:5d:e0:23:36:f6:
e6:d3:ba:fe:96:c8:8e:31:c2:be:a1:08:b7:dc:45:4d:b4:98:
09:bc:f8:06:36:ae:b5:5f:aa:01:02:4a:c3:1a:61:a0:e2:96:
37:74:5d:9f:1d:b6:d1:4c:ac:47:dd:5d:d9:7c:31:47:b9:26:
00:e7:56:56:be:47:93:01:15:aa:11:7f:46:3d:08:ab:f8:e9:
ce:84:fd:43:9f:7a:54:ea:63:31:e0:e0:0c:e3:9b:c2:95:55:
09:71:51:b6:23:82:4c:d0:27:19:3c:59:5c:35:de:62:d3:13:
8d:7a:ae:19:55:92:21:41:e4:9f:4d:38:04:ab:12:58:dc:04:
7d:13:6c:60:36:86:d2:6a:86:48:03:89:a3:d0:e3:9b:29:08:
07:67:77:16:d7:24:0a:5b:bf:91:bc:67:43:ec:12:20:e2:d4:
ab:59:de:d1:c3:c4:7a:d8:83:4b:9e:87:3e:51:70:78:54:bc:
15:f5:6f:53:db:75:d1:98:4b:dd:7c:9e:92:dc:50:bc:03:e0:
fc:21:9b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org