Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/B7ejQdhwWdIqUMMAP4dvS0kiVDM.roa
File: B7ejQdhwWdIqUMMAP4dvS0kiVDM.roa (raw, json)
Hash identifier: ILG+1GFwMj+cRJS8PzsCA4rjELRAQuYWo5YsD7GCa5c=
Subject key identifier: 07:B7:A3:41:D8:70:59:D2:2A:50:C3:00:3F:87:6F:4B:49:22:54:33
Certificate issuer: /CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Certificate serial: 01856E0B0E5CA7920ED372CAF0487F6D8A10
Authority key identifier: 2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/B7ejQdhwWdIqUMMAP4dvS0kiVDM.roa
Signing time: Sun 01 Jan 2023 15:54:56 +0000
ROA not before: Sun 01 Jan 2023 15:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25057
IP address blocks: 2a02:e5e::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:0e:5c:a7:92:0e:d3:72:ca:f0:48:7f:6d:8a:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Validity
Not Before: Jan 1 15:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07b7a341d87059d22a50c3003f876f4b49225433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:18:22:95:16:66:74:30:2a:a7:53:70:43:
2f:c4:80:5d:cf:63:fc:02:7b:f9:28:f6:a0:e2:f0:
c4:98:13:aa:34:e5:d0:22:68:8c:d7:1e:8e:db:ed:
54:e5:48:4e:18:dd:13:59:e1:19:8d:3f:ac:36:e4:
1d:cc:59:e4:eb:36:67:7c:74:be:9c:d6:b2:fe:ad:
f7:b2:46:a8:52:b9:6d:38:99:d8:36:b0:cc:4e:10:
ec:93:bd:5e:31:25:45:6c:cb:fd:d9:83:90:a2:0e:
76:73:3f:27:d0:e3:f7:e5:0d:4f:78:13:fd:8a:ab:
2c:7e:c7:84:7d:07:01:63:53:c7:88:91:03:6f:7a:
2c:5b:de:85:d5:b8:f8:d8:10:4f:7b:e5:84:18:f8:
b3:78:3f:ec:c7:35:53:57:ef:52:c2:d3:4e:e2:c1:
6d:e9:ab:58:42:02:30:19:6e:a6:aa:26:37:55:e9:
cf:16:d1:d8:69:da:41:c8:dc:6d:01:b4:60:bb:d5:
8f:5f:5a:44:fb:9e:6b:5b:a7:5f:bd:22:51:f1:c6:
1d:02:ed:cc:29:10:f9:c0:f8:c1:00:6f:87:0b:ea:
7e:b9:18:44:ca:c9:dd:90:4e:b9:01:f2:ee:c4:0b:
d6:0a:cb:4c:ea:a7:5b:51:d6:41:cf:65:01:d9:9f:
60:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B7:A3:41:D8:70:59:D2:2A:50:C3:00:3F:87:6F:4B:49:22:54:33
X509v3 Authority Key Identifier:
keyid:2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/B7ejQdhwWdIqUMMAP4dvS0kiVDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e5e::/32
Signature Algorithm: sha256WithRSAEncryption
28:84:3e:71:02:71:65:e6:ac:d7:f3:0c:1c:41:cd:75:3c:32:
3d:16:d0:93:84:45:98:e1:36:5a:a0:89:ef:e4:10:e7:79:c3:
30:fe:b3:1a:69:1c:da:bc:38:1c:c5:e9:d0:29:4e:da:09:87:
e2:36:d7:c1:e7:72:4d:dd:4d:e3:17:e6:dd:7c:e6:35:3a:28:
a2:8a:85:ce:f0:7f:1c:43:fe:e8:71:00:35:0d:89:92:de:82:
da:07:ad:b3:a9:e9:53:ff:33:93:3b:8c:35:ad:b3:83:37:46:
d8:90:ee:22:53:14:9c:12:d8:86:7c:af:b9:b5:d7:b8:86:c2:
b4:9f:4a:15:b7:11:7d:3f:72:45:fe:d5:fb:67:96:2b:99:43:
7c:b9:eb:25:75:41:53:42:4b:16:23:9d:b4:87:28:e5:e6:9d:
ed:81:f1:7c:61:e8:39:f0:54:40:14:78:13:9a:11:46:d2:16:
ed:fd:3e:1f:15:da:45:2f:e8:81:9f:90:5b:7b:09:88:86:66:
e9:a4:0d:ca:79:bb:1f:aa:b7:c2:9b:4e:f2:b7:8e:68:94:08:
cd:e8:02:e6:bc:28:af:25:03:fd:cc:eb:f5:91:2b:7a:3f:80:
12:b9:21:ca:e4:91:af:cd:53:ee:2e:07:17:ec:cd:56:30:58:
ff:4f:e4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:53 2024 by rpki-client on console-ams.rpki-client.org