Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/oF5bMPWbuE4GnQqB-0ynHGKcAIA.roa
File: oF5bMPWbuE4GnQqB-0ynHGKcAIA.roa (raw, json)
Hash identifier: te1g+n2uvZXRP9VK70v2d/njPq9GEeMP+iTRvbRgfxI=
Subject key identifier: A0:5E:5B:30:F5:9B:B8:4E:06:9D:0A:81:FB:4C:A7:1C:62:9C:00:80
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 0185B2045FBD69D908906C37D6E5B2E2CE3A
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/oF5bMPWbuE4GnQqB-0ynHGKcAIA.roa
Signing time: Sat 14 Jan 2023 20:41:49 +0000
ROA not before: Sat 14 Jan 2023 20:41:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57922
IP address blocks: 2a0f:4d00:1::/48 maxlen: 48
2a0f:4d00::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Aug 2023 08:46:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b2:04:5f:bd:69:d9:08:90:6c:37:d6:e5:b2:e2:ce:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: Jan 14 20:41:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a05e5b30f59bb84e069d0a81fb4ca71c629c0080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1a:c2:88:76:72:43:de:e0:d9:a0:02:98:7f:
14:2f:1c:7b:2e:e9:b4:4f:8e:13:24:19:9d:8e:7f:
54:5a:cf:b6:ec:b3:d0:05:57:82:bf:77:38:6a:84:
96:2c:8e:12:61:59:56:c4:c1:47:42:46:7c:42:97:
9b:fe:f8:05:06:18:3b:aa:c3:ac:3e:1e:3c:58:e9:
5e:24:7b:c7:b1:45:e5:a4:84:b3:16:de:b3:47:e8:
21:f8:d4:d0:eb:8c:4c:73:0e:61:0e:35:2d:02:9a:
12:5a:16:49:5b:e0:43:ce:bb:45:7e:f9:f4:09:c6:
a0:56:d1:b4:76:c1:07:90:7c:1e:93:64:02:ca:1e:
8b:24:fa:af:be:0b:47:c0:da:77:76:e9:a2:19:4d:
87:1c:54:5b:04:b1:72:b4:d2:0b:e9:e9:d2:e2:c2:
78:57:f3:b0:b4:4b:7a:15:67:4b:1a:b2:e4:9c:d8:
18:f6:78:05:08:1a:db:fd:5a:87:db:7d:97:45:80:
30:fc:b8:69:46:04:a8:83:2e:c6:ff:83:6e:f0:97:
ab:1b:aa:14:5e:29:f6:e5:69:71:1c:d7:cc:93:9a:
97:a7:83:8b:ff:eb:16:31:c1:a8:f9:a0:9e:c5:49:
3f:77:44:51:84:a3:72:a9:9b:4a:21:0a:83:04:4a:
63:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5E:5B:30:F5:9B:B8:4E:06:9D:0A:81:FB:4C:A7:1C:62:9C:00:80
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/oF5bMPWbuE4GnQqB-0ynHGKcAIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:4d00::/29
Signature Algorithm: sha256WithRSAEncryption
13:ce:81:e5:44:e3:3d:4c:85:9e:72:eb:58:92:22:61:be:aa:
c6:96:0e:65:e6:b8:64:48:33:0d:9e:95:57:02:94:be:3a:40:
99:b6:cf:26:d0:80:7e:76:73:14:22:96:09:7a:63:9f:0b:a5:
e6:2f:15:73:11:a0:8c:43:47:22:0c:8f:f5:f7:a6:fa:88:1b:
ee:a1:7c:87:6c:1e:19:31:9c:f3:3b:e6:bf:f3:38:a0:2d:91:
8a:3e:1e:4e:75:83:dd:ab:2b:c0:67:b7:1f:61:b1:80:94:eb:
07:9b:33:32:5d:db:ac:4b:0f:f9:95:1d:3f:73:28:b9:02:ab:
91:21:a6:68:ae:a0:71:1e:44:7b:89:48:5e:ce:7c:60:00:82:
ce:5b:47:a4:73:e5:07:a7:98:b1:c6:54:9b:6e:90:91:ec:22:
df:81:00:f4:ae:85:c2:2e:d6:b8:83:5c:be:5c:32:62:c1:d2:
96:2e:57:f1:0c:c0:08:ce:4e:94:4b:2a:e0:e3:9e:6c:3a:8a:
d8:ba:3b:c6:0f:27:5b:0c:39:cf:05:2b:55:63:01:40:d5:a4:
b0:45:f8:c3:e3:4b:38:44:71:ef:f9:30:cc:84:68:c8:3c:7d:
7f:b7:3e:b2:43:f8:97:32:76:97:b8:3e:8d:67:dc:37:19:b6:
14:63:b3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:02 2024 by rpki-client on console-ams.rpki-client.org