Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/xxjV24j77tj88VyQxNGDEiOo0Lw.roa
File: xxjV24j77tj88VyQxNGDEiOo0Lw.roa (raw, json)
Hash identifier: Y/UQ/ZQTFY3S38Bzpjlp+WJ9M7yn9NEgXat42LIEIhQ=
Subject key identifier: C7:18:D5:DB:88:FB:EE:D8:FC:F1:5C:90:C4:D1:83:12:23:A8:D0:BC
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E9588CD84623DAF5D726F99112192
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/xxjV24j77tj88VyQxNGDEiOo0Lw.roa
Signing time: Mon 02 Jan 2023 06:15:07 +0000
ROA not before: Mon 02 Jan 2023 06:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213154
IP address blocks: 2a0c:b641:100::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:95:88:cd:84:62:3d:af:5d:72:6f:99:11:21:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c718d5db88fbeed8fcf15c90c4d1831223a8d0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7d:84:2a:1c:35:8e:d1:81:d1:25:3d:d3:20:
22:7d:48:42:66:13:af:69:7d:f6:38:79:02:bb:d3:
68:65:7d:8e:8f:cb:14:7c:27:2a:ea:e9:91:99:cf:
0d:84:32:82:43:48:fa:88:4c:f1:59:29:a5:fb:0e:
37:e2:36:91:9c:5f:f2:3e:4b:4c:b6:e1:8a:88:b7:
2e:2c:f9:dc:70:24:25:d8:dd:84:cd:ba:72:4d:14:
b0:fb:e5:9b:21:f2:16:97:40:d5:2a:fd:2c:45:59:
79:b5:84:9f:4e:57:3d:5f:b0:5c:a1:d7:21:5b:24:
a0:90:91:43:6f:31:9a:43:76:91:9e:37:2d:31:a6:
2e:95:68:74:b5:7d:5c:24:9b:69:31:13:98:cf:eb:
ba:4d:39:fa:a4:4a:61:db:4e:aa:a7:e8:01:4f:e5:
71:36:9a:67:e5:6b:87:1e:0c:57:a6:c3:49:49:b3:
17:89:19:72:05:0a:e1:6d:c8:ab:36:d2:e6:6d:62:
16:04:9a:bb:4b:41:a0:bf:6b:d8:e6:4e:27:d1:b5:
a5:3b:c9:a2:f1:d1:2e:d2:18:bf:e2:40:b9:29:49:
94:42:a6:fb:0d:eb:f8:af:44:a4:ba:84:93:09:9a:
e6:fd:63:a0:bf:05:cd:2b:14:ab:de:7a:fe:45:96:
3a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:18:D5:DB:88:FB:EE:D8:FC:F1:5C:90:C4:D1:83:12:23:A8:D0:BC
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/xxjV24j77tj88VyQxNGDEiOo0Lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:100::/44
Signature Algorithm: sha256WithRSAEncryption
5a:4d:74:f1:50:8e:b2:7d:e1:7e:16:f9:ad:49:8a:01:aa:93:
ce:37:3f:61:a6:92:d1:ae:b1:b3:2f:a6:ea:c4:6e:af:a5:da:
2b:db:e4:51:de:0a:e5:bd:70:97:6b:f5:42:a3:cf:97:d4:71:
9e:e4:16:17:2e:0d:a7:0f:37:cd:d8:5b:d2:1c:26:3c:9e:e8:
4d:89:6d:0c:93:b4:a6:ff:04:40:f6:37:30:b0:bb:be:dc:df:
6c:de:a3:4e:8a:56:63:65:05:39:32:a1:1d:85:da:e0:11:5e:
05:31:de:8c:c1:6b:f8:9e:9e:c2:88:04:e9:ba:29:19:cf:08:
af:1f:a5:78:25:15:b2:1f:06:80:f2:e2:b9:f8:1f:ca:2d:d2:
9c:57:52:16:25:87:ba:fb:be:a4:14:55:1e:22:37:b2:19:9a:
4e:30:6a:78:e2:39:9a:fd:4f:65:20:3a:6c:5d:0d:4f:12:fd:
d5:06:05:fe:9f:b4:2f:bc:a3:ed:19:7e:77:8b:13:e6:d9:58:
7a:30:d1:f2:4d:4b:39:5d:4d:02:fa:2e:6e:5a:54:ff:5d:3d:
32:17:ed:57:87:ad:da:a3:11:03:f4:58:d5:09:79:3d:32:45:
57:b9:d6:1b:39:1c:2b:1e:8b:92:f2:3d:de:2a:54:8a:18:20:
d6:ac:b0:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org