Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/w1mHJkdGPcBCjOgvz4IuBNy1uC4.roa
File: w1mHJkdGPcBCjOgvz4IuBNy1uC4.roa (raw, json)
Hash identifier: 8qbmzS/H7UklTjJxbywO1Mi/mc1ijXa+sBkKjipxM94=
Subject key identifier: C3:59:87:26:47:46:3D:C0:42:8C:E8:2F:CF:82:2E:04:DC:B5:B8:2E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018CC801859828D6E7CD63CB2E9E8DE4DFD2
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/w1mHJkdGPcBCjOgvz4IuBNy1uC4.roa
Signing time: Tue 02 Jan 2024 02:29:52 +0000
ROA not before: Tue 02 Jan 2024 02:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215970
IP address blocks: 2a0c:b641:b10::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jan 2024 18:03:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:85:98:28:d6:e7:cd:63:cb:2e:9e:8d:e4:df:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 02:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c359872647463dc0428ce82fcf822e04dcb5b82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ed:59:17:c4:15:78:27:2e:bb:1f:bc:63:5f:
ff:7f:28:78:06:f3:a7:5d:4c:b2:1c:3a:af:6f:c6:
5f:a1:62:ea:fc:b2:b6:15:2b:e6:a0:be:01:f0:92:
39:9b:a6:96:95:d7:aa:60:a8:02:67:f9:b4:c0:b8:
06:55:8f:14:bb:1e:4d:6d:45:9f:d3:97:c8:8b:1f:
9b:3c:14:b5:86:26:ab:c7:56:9d:bc:01:14:68:ad:
a2:f7:01:63:6f:4c:2e:b3:1d:c7:65:69:d2:e6:fe:
ff:16:8a:78:cc:d2:29:06:84:0e:4c:72:5e:9f:39:
ee:ca:b2:f1:a0:ca:c4:cc:77:1d:b5:7e:d8:90:48:
61:72:6e:ef:26:4c:19:64:89:5e:ee:7d:82:17:b0:
d0:1f:9b:48:1e:e5:54:7e:4e:b8:f7:fb:61:33:3b:
4a:a0:30:95:a6:d8:a9:d0:a7:c9:f4:26:65:c0:03:
5b:ff:0a:e1:12:48:34:0f:a4:4b:bf:c1:1d:99:bf:
ac:3b:38:4d:a7:02:2d:e8:be:92:1b:2e:b6:15:e9:
15:a7:5d:34:f4:fb:0c:08:b2:90:6e:6a:ec:cc:01:
9f:87:c0:fa:7f:54:05:76:40:18:6d:75:72:2e:21:
53:92:ab:e5:6f:41:95:14:34:ae:2a:d2:a4:b2:84:
2c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:59:87:26:47:46:3D:C0:42:8C:E8:2F:CF:82:2E:04:DC:B5:B8:2E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/w1mHJkdGPcBCjOgvz4IuBNy1uC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:b10::/44
Signature Algorithm: sha256WithRSAEncryption
80:ef:89:de:27:42:ea:25:6e:a4:53:48:97:9e:8b:3a:91:7d:
04:7a:8e:20:c9:9f:fb:ee:74:d3:f3:83:5b:38:a2:d2:f1:cd:
45:85:b6:a7:34:96:36:0a:ff:d7:2d:97:66:d2:6d:70:b8:80:
e9:9e:19:46:bc:d4:0f:73:75:be:4f:43:55:4b:5d:fb:68:6a:
95:47:8d:9d:8d:d9:5f:bc:61:02:3a:6a:90:b5:be:bd:87:12:
a4:cc:57:d4:33:81:98:44:da:35:5e:a3:03:e5:f7:47:a1:02:
00:0f:1d:57:ae:a3:b6:fd:85:5c:02:3e:72:f0:96:e1:2d:f6:
5b:00:96:f1:e7:cd:7d:c5:f7:1d:cc:39:61:23:ae:e7:8d:27:
4a:97:60:75:58:c5:b1:cd:a1:00:9d:42:56:c9:6a:e3:16:8c:
0f:67:33:92:a2:ba:56:64:82:94:01:cb:ce:ea:51:e1:35:08:
c8:4f:bf:e4:c3:b8:3f:25:6c:7c:e2:69:0d:87:82:04:ca:79:
1b:fd:c1:b5:82:3c:73:2d:44:45:1f:52:7b:fc:60:15:cf:df:
f6:10:f8:62:45:13:ef:02:84:b9:de:88:fe:d0:4c:4b:e0:46:
30:59:56:9a:05:74:a0:6a:d7:28:97:86:9e:cc:f3:dd:93:f6:
d6:39:65:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org