Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/z4nM9GMf8SE_4RYBIR2rMjiTw-I.roa
File: z4nM9GMf8SE_4RYBIR2rMjiTw-I.roa (raw, json)
Hash identifier: lTOEhlVCDVewcswDdiOYazgLdp9AKS+Vfalykg1s594=
Subject key identifier: CF:89:CC:F4:63:1F:F1:21:3F:E1:16:01:21:1D:AB:32:38:93:C3:E2
Certificate issuer: /CN=5417e3db0d1c2cfc22b4be874e2598dd099294ed
Certificate serial: 018571DE77EC17A59D17A9303FC32E5FDD0E
Authority key identifier: 54:17:E3:DB:0D:1C:2C:FC:22:B4:BE:87:4E:25:98:DD:09:92:94:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBfj2w0cLPwitL6HTiWY3QmSlO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/z4nM9GMf8SE_4RYBIR2rMjiTw-I.roa
Signing time: Mon 02 Jan 2023 09:44:43 +0000
ROA not before: Mon 02 Jan 2023 09:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30892
IP address blocks: 2a02:aa8::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:77:ec:17:a5:9d:17:a9:30:3f:c3:2e:5f:dd:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5417e3db0d1c2cfc22b4be874e2598dd099294ed
Validity
Not Before: Jan 2 09:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf89ccf4631ff1213fe11601211dab323893c3e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9c:ed:d2:ee:df:63:75:48:00:1c:40:a8:a8:
d5:e8:f8:f3:8d:af:21:c8:73:61:c9:ac:f8:a2:85:
c6:44:7f:0e:06:62:f7:bb:48:bf:a0:e0:14:89:a7:
98:b5:d8:16:01:16:46:56:d5:a1:f6:31:08:dc:dd:
39:e8:ec:11:e8:21:31:69:53:32:b0:3f:cf:5f:3e:
72:72:c7:dd:63:75:b1:a4:65:89:3d:23:6b:86:b4:
85:79:45:6b:a6:ef:85:e6:5a:c5:1b:6a:80:b7:5c:
51:5c:25:73:7d:40:1e:61:5c:22:95:4d:84:1d:aa:
28:8e:3a:36:79:e6:fe:e8:ad:93:e3:ed:51:cc:dc:
29:aa:36:45:8d:4a:24:ae:9f:8f:c8:a7:f8:e4:35:
c2:6c:32:75:4c:16:fd:12:69:06:38:71:e7:6d:76:
00:76:52:91:5f:49:3b:26:6d:20:0b:ed:06:2f:68:
f8:54:47:bb:bd:9b:6f:84:d5:ca:b8:e8:e7:4e:74:
c1:59:86:ba:eb:e5:f2:20:34:34:fe:1b:e8:21:c5:
9d:a6:2e:0a:77:92:da:97:cb:5a:8f:71:a3:67:ce:
09:be:ba:58:a8:cb:a4:09:d7:16:81:ec:f0:fc:8e:
61:04:59:c2:d3:56:5b:aa:6d:88:8d:ab:5b:cf:fa:
d9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:89:CC:F4:63:1F:F1:21:3F:E1:16:01:21:1D:AB:32:38:93:C3:E2
X509v3 Authority Key Identifier:
keyid:54:17:E3:DB:0D:1C:2C:FC:22:B4:BE:87:4E:25:98:DD:09:92:94:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBfj2w0cLPwitL6HTiWY3QmSlO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/z4nM9GMf8SE_4RYBIR2rMjiTw-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/VBfj2w0cLPwitL6HTiWY3QmSlO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:aa8::/29
Signature Algorithm: sha256WithRSAEncryption
52:b1:72:49:f1:a0:f7:24:93:95:0b:e5:e1:66:18:e1:05:d3:
e2:4f:f3:7e:7c:6a:5b:7f:31:39:34:06:6f:52:65:c2:4d:08:
f2:35:80:08:b6:98:bc:a2:a9:88:d9:a0:f7:51:71:f2:91:e9:
15:56:43:1e:d2:4d:74:73:5c:44:39:6d:24:dc:04:a8:b4:51:
6f:54:0f:e5:21:c6:6b:e6:00:fb:18:00:3b:f8:a8:4c:68:e1:
5b:9b:1f:a7:69:ae:20:4e:df:6a:8a:00:28:50:1d:d4:26:f2:
72:f9:2e:cc:68:ab:2a:fa:d8:dc:e3:de:1d:7e:fe:a1:48:7f:
bf:63:c6:b3:2e:44:c3:ca:b4:3b:bf:58:eb:1f:2d:7d:3c:da:
21:cd:ad:cd:a9:65:8a:b8:8f:54:ee:f0:03:88:d8:c3:ef:29:
da:f1:ca:e1:a1:68:d0:cf:09:6e:c3:60:ca:51:a6:e2:96:aa:
10:1a:07:71:d0:7a:69:1c:2e:3f:b4:77:31:7b:45:29:1a:6e:
9b:c0:67:4c:8b:fb:4c:39:c5:bb:d9:a1:f8:4c:b7:bf:50:2b:
47:24:ca:c3:d0:0d:e9:9d:5e:7f:1f:a3:c8:ed:8f:33:d2:8f:
34:19:a7:56:ff:82:a4:63:69:21:d5:3c:56:bb:5c:3e:b1:19:
08:07:e4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:38 2024 by rpki-client on console-fra.rpki-client.org