Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1fBW8OHBFA00DFAtazcbECIExsM.roa
File: 1fBW8OHBFA00DFAtazcbECIExsM.roa (raw, json)
Hash identifier: 6ABq2MaeGWgyUrRm+kl2hsoXBmYNBiE3lf/f0FLK9KY=
Subject key identifier: D5:F0:56:F0:E1:C1:14:0D:34:0C:50:2D:6B:37:1B:10:22:04:C6:C3
Certificate issuer: /CN=d515f2e9149ce1b428c8f1edfc009215e2847f55
Certificate serial: 01915ECA4FD50F456657D192959DB9344C4B
Authority key identifier: D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1fBW8OHBFA00DFAtazcbECIExsM.roa
Signing time: Sat 17 Aug 2024 05:23:22 +0000
ROA not before: Sat 17 Aug 2024 05:23:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 2a01:ea00:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 17 Aug 2024 17:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5e:ca:4f:d5:0f:45:66:57:d1:92:95:9d:b9:34:4c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d515f2e9149ce1b428c8f1edfc009215e2847f55
Validity
Not Before: Aug 17 05:23:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5f056f0e1c1140d340c502d6b371b102204c6c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d4:15:f6:e9:32:a9:2a:b6:96:93:ea:d4:44:
36:f8:43:c2:12:13:e1:48:77:01:bc:5a:61:6a:68:
75:23:57:61:a9:42:60:d8:8d:52:70:d7:1e:ff:b8:
56:47:10:e0:00:16:6e:d4:74:8e:19:08:95:35:d8:
f2:b2:58:c4:84:a5:90:3f:83:89:66:e6:f6:db:d0:
74:8a:9c:b5:9c:ea:00:f7:0a:56:57:7b:8a:76:e2:
cd:2e:ce:92:d3:50:08:47:1c:8d:dc:00:a7:44:de:
d8:b8:d7:89:7b:6e:4d:a4:65:a8:13:dd:00:f0:60:
90:d5:a3:8e:e9:2c:a9:cf:ed:c3:2c:e1:d8:85:b8:
b3:54:c6:09:d7:5f:1f:d5:84:75:c1:d7:c5:f9:ed:
5d:99:06:bd:59:53:fb:af:59:cd:2f:b7:57:26:8c:
79:e4:10:5b:d4:21:03:7c:79:01:f3:24:61:5f:b3:
10:c7:05:47:f9:4e:bf:9a:3e:48:de:6a:1d:ad:d5:
b5:49:62:3b:da:20:a7:4e:d6:82:db:46:20:99:85:
36:c1:92:4b:f7:a9:53:d2:25:a9:aa:65:e5:e6:bc:
6b:2e:fc:c1:f4:c6:f1:64:86:64:ea:9e:05:f2:86:
b3:7e:7d:30:5c:6f:2b:22:dc:3d:e9:d8:85:6d:35:
9a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F0:56:F0:E1:C1:14:0D:34:0C:50:2D:6B:37:1B:10:22:04:C6:C3
X509v3 Authority Key Identifier:
keyid:D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1fBW8OHBFA00DFAtazcbECIExsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ea00:1::/48
Signature Algorithm: sha256WithRSAEncryption
36:95:c0:62:3e:1e:37:b2:f4:8a:39:00:2b:f6:a5:01:ec:d8:
ab:86:a4:e0:3d:28:15:8d:12:d9:4f:59:c3:59:e2:51:49:2a:
db:b8:be:ea:fd:ba:98:55:44:25:2d:e7:29:44:50:20:c8:18:
8a:4e:d4:2f:6c:28:a5:71:0b:18:5e:75:af:8f:51:6f:0a:a1:
7a:1a:38:48:09:97:83:43:ee:78:b6:62:41:a5:c4:6d:8d:2e:
a1:18:ce:93:24:68:d3:37:d7:23:36:d4:fb:06:a2:4c:57:e7:
9b:3d:a7:e9:1d:fb:6a:a0:51:5c:58:99:39:73:46:8e:f2:ae:
93:03:ca:bb:1a:c3:f7:28:06:f2:03:31:58:9f:81:69:8d:2a:
21:f1:bc:d6:32:9e:bb:8e:b2:d8:02:5b:62:d2:0c:28:07:99:
cb:a7:97:31:04:4e:e2:62:59:0d:48:3b:d2:48:67:d9:47:6e:
5f:2e:58:71:20:68:90:04:d0:29:3a:2e:cf:86:4b:9d:0c:4c:
22:79:c8:4d:c8:69:fd:ac:67:cc:87:b8:4d:34:a4:ec:83:07:
8b:92:10:4b:37:01:2a:96:bc:9a:63:fa:e7:a7:6a:cc:ba:18:
39:55:1e:36:2f:15:36:70:0f:60:16:03:e1:06:e7:94:47:30:
d6:d2:cb:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 20:21:28 2024 by rpki-client on console-ams.rpki-client.org