Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rHqo3xJuMjYA6MAzr3jz3AypOw4.roa
File: rHqo3xJuMjYA6MAzr3jz3AypOw4.roa (raw, json)
Hash identifier: HPSfCG695+TqPdyT8NnlWyPW95Bj5T6noU5VVpPOW2M=
Subject key identifier: AC:7A:A8:DF:12:6E:32:36:00:E8:C0:33:AF:78:F3:DC:0C:A9:3B:0E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E6373BE6E0AB7CB763565B79910AE
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rHqo3xJuMjYA6MAzr3jz3AypOw4.roa
Signing time: Mon 02 Jan 2023 06:14:54 +0000
ROA not before: Mon 02 Jan 2023 06:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207887
IP address blocks: 2a0c:b641:640::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:63:73:be:6e:0a:b7:cb:76:35:65:b7:99:10:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac7aa8df126e323600e8c033af78f3dc0ca93b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6a:e7:d5:71:a7:6a:95:79:6f:89:35:5b:37:
aa:d0:2f:91:1c:60:af:19:dd:d8:ff:6d:c3:58:ea:
8c:03:67:dc:23:7c:68:e2:77:2b:da:48:98:dc:dc:
b2:37:dd:d0:e4:91:0b:7e:83:27:4d:9b:86:6d:50:
65:b6:20:b9:6a:6f:75:a9:fe:dc:a7:bf:ff:7c:32:
40:d9:62:af:2a:aa:df:31:2e:df:ce:31:f6:c6:e8:
8e:c7:54:7a:87:e9:9d:a2:a4:25:4a:e5:39:5e:25:
0f:7f:f5:20:15:99:0b:fc:2c:ae:36:27:ef:38:a4:
e4:5a:c0:67:e8:98:6e:de:e9:66:8e:27:99:c2:e9:
a4:63:4f:55:b4:fd:b6:72:d9:82:ec:b0:23:7e:77:
91:c8:70:8c:42:f4:b7:e6:a0:c4:8b:e1:1f:af:8b:
4f:b7:93:c2:b5:51:1c:27:5a:da:59:96:af:78:9e:
45:2d:71:5e:09:df:55:9d:b3:d9:23:cc:f8:0e:e7:
e1:12:86:a2:9c:39:74:34:fa:c2:6e:53:c5:1a:a6:
4f:57:77:ba:4d:cd:b8:0b:85:7a:0f:68:2d:ab:29:
7f:62:ec:71:f1:d3:5b:81:ed:8d:85:83:9c:bb:44:
50:3a:d3:df:58:87:14:2b:b6:11:2b:46:56:b5:7b:
18:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7A:A8:DF:12:6E:32:36:00:E8:C0:33:AF:78:F3:DC:0C:A9:3B:0E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rHqo3xJuMjYA6MAzr3jz3AypOw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:640::/44
Signature Algorithm: sha256WithRSAEncryption
1b:aa:9c:cc:c2:70:76:9f:48:d1:21:c6:67:05:70:a1:ac:49:
fe:48:3d:86:72:84:3b:d3:0c:31:79:50:17:ac:44:89:78:c7:
ae:a2:db:ab:c0:2d:32:93:72:54:98:db:ae:66:70:ab:27:51:
8d:81:1d:76:90:dc:e8:e0:1c:5e:5a:34:52:5c:e0:a9:6b:c0:
5e:c2:94:f8:fd:a9:d4:b6:5d:67:38:70:e3:ba:cd:e9:7d:ce:
39:42:1b:92:4a:44:69:f6:f7:33:ee:40:40:21:a8:a7:f9:70:
21:7b:0e:6a:20:97:03:3e:0f:f0:ee:96:4c:ba:04:65:cb:b8:
1e:08:6b:b7:a9:03:fe:95:c5:54:ca:05:ca:6f:d8:af:fd:f4:
99:7d:7f:af:cf:59:92:4a:00:17:a9:e8:fa:a7:ea:0e:61:b8:
78:25:88:38:03:43:b1:32:f0:92:9d:74:d9:4d:94:2b:19:b0:
5a:d0:03:3b:2a:09:37:b6:30:87:e4:2a:ea:e5:32:e1:98:1c:
24:e2:92:73:39:e3:e7:ef:71:71:1e:64:7f:39:b6:22:b9:18:
25:5e:b5:91:d0:fc:75:56:ee:27:d2:da:b0:ef:fd:4e:e9:54:
da:9b:8c:82:5e:59:76:0e:fa:34:7b:f8:17:13:bb:8f:6e:5c:
dd:1f:a8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org