Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/O5Dd42IfLRSk6obG1PDvYpEyb0k.roa
File: O5Dd42IfLRSk6obG1PDvYpEyb0k.roa (raw, json)
Hash identifier: o78wKhZ0GWId72iMMNZUomsWb22Izr1rDfG/SExhkoM=
Subject key identifier: 3B:90:DD:E3:62:1F:2D:14:A4:EA:86:C6:D4:F0:EF:62:91:32:6F:49
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 0188B8BF479F9AF0FCE268D2113DF87969F3
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/O5Dd42IfLRSk6obG1PDvYpEyb0k.roa
Signing time: Wed 14 Jun 2023 07:12:03 +0000
ROA not before: Wed 14 Jun 2023 07:12:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 2a0f:3bc0::/29 maxlen: 29
2a00:1e6c::/30 maxlen: 30
Validation: Failed, certificate revoked on Sat 25 Nov 2023 17:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:bf:47:9f:9a:f0:fc:e2:68:d2:11:3d:f8:79:69:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Jun 14 07:12:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b90dde3621f2d14a4ea86c6d4f0ef6291326f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:63:db:64:e9:f5:15:64:d3:17:4a:7e:9e:94:
fe:d2:68:82:12:78:0f:4e:c1:04:24:b3:af:94:b1:
c5:c4:0c:45:08:47:21:38:2c:b3:94:de:26:28:8c:
56:93:50:7b:c6:28:54:87:b3:b9:44:1f:0a:57:b5:
d2:14:c8:b0:e1:4f:e7:ab:88:d3:0d:3f:e9:65:93:
3a:7a:04:5a:01:49:a5:8f:90:db:e3:cc:7a:71:9f:
71:c0:2b:c3:0b:52:52:50:13:cc:ad:dd:51:71:d0:
34:79:ca:22:dd:79:ce:d8:28:39:ee:c2:4b:c3:dd:
fc:6b:0c:ed:64:d6:db:e1:0e:01:ee:bf:b4:29:30:
12:08:69:eb:06:61:2f:5c:28:10:a5:73:4b:64:58:
3a:16:04:35:f6:07:b6:ae:33:59:df:f8:84:26:02:
7c:96:bf:c2:70:dc:ae:9b:58:6c:b1:ac:e2:78:10:
ab:f9:88:d3:e3:65:6e:c8:a2:15:01:24:c9:b2:22:
48:65:c7:05:21:ed:30:45:19:b5:96:35:95:5c:c6:
05:43:9c:5f:5c:57:be:da:10:dd:1d:89:b5:a3:1f:
b1:57:e3:c1:89:6d:90:d2:27:06:18:c9:6e:a7:10:
24:7f:4b:1f:62:40:16:22:4b:f3:29:97:d5:a7:da:
99:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:90:DD:E3:62:1F:2D:14:A4:EA:86:C6:D4:F0:EF:62:91:32:6F:49
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/O5Dd42IfLRSk6obG1PDvYpEyb0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1e6c::/30
2a0f:3bc0::/29
Signature Algorithm: sha256WithRSAEncryption
65:87:06:5f:87:28:1b:ee:35:f8:4e:d9:2c:16:18:33:ed:50:
c6:8b:8f:09:75:ed:1a:e7:4e:55:98:a2:dd:9d:15:67:ec:c6:
1a:ee:26:70:21:39:3e:9d:ee:6c:59:f0:4d:f6:c6:7a:04:5c:
1d:bc:63:d9:1e:db:79:69:62:ea:ae:f4:fd:a1:31:a7:46:90:
4f:40:4b:44:ce:6d:e4:7c:24:28:8b:a9:b2:0d:98:2a:7d:1c:
72:70:da:70:50:51:a3:26:a8:ad:92:2a:ad:71:fd:95:e8:a6:
e6:c4:5c:69:d0:f8:b8:a7:09:59:88:5d:1c:bb:b2:fd:99:06:
47:37:42:4a:c0:0c:5e:ef:d9:2f:6d:67:f2:93:64:6f:6a:64:
84:02:39:76:59:99:07:3c:af:34:8b:87:74:72:fb:68:67:20:
9e:3d:05:b3:2a:f0:35:a4:80:11:4c:7e:b9:88:a5:e7:41:18:
d3:ff:7d:50:dd:ce:ef:b0:3e:57:c4:d5:57:e3:42:60:46:65:
da:4a:32:0a:e3:fe:96:03:ed:ef:b6:e2:c7:ad:de:06:58:9d:
67:29:16:c7:d4:19:db:c5:ec:4e:28:0a:34:68:54:93:5e:69:
24:9e:14:52:fe:0e:ca:bd:30:ba:ba:c5:cd:d6:8c:3e:cf:fc:
fb:be:4d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:54 2024 by rpki-client on console-ams.rpki-client.org