Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/Otlcb3TmMwU4Z9FwlyjX9OiE_rE.roa
File: Otlcb3TmMwU4Z9FwlyjX9OiE_rE.roa (raw, json)
Hash identifier: 5Izu38quX+E577SHNKTK8GeN1HTMPgk1DLmFBgvWM50=
Subject key identifier: 3A:D9:5C:6F:74:E6:33:05:38:67:D1:70:97:28:D7:F4:E8:84:FE:B1
Certificate issuer: /CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Certificate serial: 018571D7DD7187C8ED1F22B7E5F3AE315B81
Authority key identifier: C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/Otlcb3TmMwU4Z9FwlyjX9OiE_rE.roa
Signing time: Mon 02 Jan 2023 09:37:30 +0000
ROA not before: Mon 02 Jan 2023 09:37:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209489
IP address blocks: 2a04:de40:40::/42 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:dd:71:87:c8:ed:1f:22:b7:e5:f3:ae:31:5b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Validity
Not Before: Jan 2 09:37:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ad95c6f74e633053867d1709728d7f4e884feb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:56:cf:8f:59:87:a0:a8:d7:a1:51:a0:bc:
ec:fe:5f:2a:1a:8d:29:d0:77:cb:fb:3a:37:fb:81:
6a:c0:e4:b1:e8:46:cc:64:e8:d8:6c:22:8b:47:90:
3d:61:e2:79:55:28:42:db:71:3c:7c:dd:df:e4:d2:
52:19:de:56:7f:86:7c:fb:40:66:d5:2b:7a:b2:57:
fc:f3:94:6c:a6:9b:02:d9:85:32:24:a9:6b:20:8f:
72:46:4f:b8:18:c6:0c:01:c5:93:46:4d:6e:e3:03:
a9:23:a7:a8:46:43:e5:06:52:aa:73:84:78:ea:cd:
bd:0b:92:ce:91:ee:61:b9:f2:79:07:55:d2:3e:ca:
6c:b6:1c:47:d6:22:00:ab:fa:26:11:e0:04:11:cc:
48:5a:c8:f5:a7:a0:64:f2:34:c4:39:60:bc:e7:ed:
0d:7c:27:e3:e8:70:97:2c:59:3e:d2:dc:aa:70:3e:
06:7b:ab:dc:95:32:d7:f6:9a:dd:79:35:50:10:fe:
79:44:78:e0:ff:f8:33:fe:40:18:49:22:05:ea:d4:
f2:e7:38:7a:38:2b:25:b8:63:9e:1c:f8:3c:a8:21:
be:50:f0:ed:c0:8e:6a:74:8a:7d:37:66:86:68:86:
98:59:00:de:e4:e3:7d:e7:8c:f4:fe:16:8c:4b:14:
6a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D9:5C:6F:74:E6:33:05:38:67:D1:70:97:28:D7:F4:E8:84:FE:B1
X509v3 Authority Key Identifier:
keyid:C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/Otlcb3TmMwU4Z9FwlyjX9OiE_rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:de40:40::/42
Signature Algorithm: sha256WithRSAEncryption
43:ce:74:2a:2a:87:c5:ec:63:fc:52:fc:53:fc:60:20:ed:a8:
d5:8f:c6:6e:ed:8c:17:41:cd:f8:a4:97:fd:44:75:92:05:1f:
4f:fd:35:ee:04:9f:4b:b9:a3:a0:2e:49:26:a0:be:0e:a9:2c:
ae:98:d8:69:c7:e7:e2:cd:36:a2:66:0c:58:b9:e2:f6:81:23:
33:33:c0:b6:d1:93:85:c0:fd:3b:21:7e:8d:01:6c:93:21:6b:
1c:fc:53:a2:ed:66:7b:3a:e9:d4:3e:74:71:cd:a7:26:4a:f6:
da:a5:40:39:5a:5a:a5:63:a3:60:70:5d:5f:eb:a7:2a:6c:cf:
d2:22:b3:f4:4d:4c:c5:e9:10:45:5f:c4:89:b8:2a:43:7f:77:
96:f6:24:97:29:15:32:18:cc:6e:ef:c6:24:80:45:99:55:91:
b9:2a:c0:4c:75:ec:ee:ce:a5:cf:7a:da:d2:1a:7e:f1:cc:c5:
ef:c1:5a:23:f5:e9:be:19:97:da:c9:3e:6e:fc:c5:09:6d:06:
7d:21:88:db:d1:e5:2b:c1:20:ae:1b:2a:4a:1d:3b:d8:4f:66:
7d:65:07:1e:ed:43:97:a9:8d:ae:8b:a2:48:fa:c3:f0:66:03:
64:cc:5d:a2:ee:79:7f:fb:91:e3:89:6c:11:01:a0:5b:a1:3e:
8d:58:6b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org