Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/2CM5qXbGN5ZHxNXTlf4hgCCl7GE.roa
File: 2CM5qXbGN5ZHxNXTlf4hgCCl7GE.roa (raw, json)
Hash identifier: KRt7mWWDcmJ9msUk+kwUm6vKpW6vJnXMfNiTSomd9cM=
Subject key identifier: D8:23:39:A9:76:C6:37:96:47:C4:D5:D3:95:FE:21:80:20:A5:EC:61
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 018C61D175A67BAE27107FD84B036746E73C
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/2CM5qXbGN5ZHxNXTlf4hgCCl7GE.roa
Signing time: Wed 13 Dec 2023 06:16:06 +0000
ROA not before: Wed 13 Dec 2023 06:16:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51396
IP address blocks: 2a05:b0c6:a200::/39 maxlen: 39
2a05:b0c7:6000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:61:d1:75:a6:7b:ae:27:10:7f:d8:4b:03:67:46:e7:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Dec 13 06:16:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d82339a976c6379647c4d5d395fe218020a5ec61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:77:84:25:70:06:17:a5:55:bb:85:4f:5d:
c0:fd:b8:4d:b0:5e:15:22:32:fc:08:37:44:31:46:
cf:4f:44:d2:b5:af:cc:86:57:fb:a3:a6:6c:a5:63:
f5:c0:9b:0f:75:69:af:60:cf:d1:75:49:37:16:4b:
14:09:91:d7:fa:14:1e:00:de:39:f5:94:f9:b3:56:
ee:08:8e:48:c7:d9:92:1b:e4:36:b7:64:11:26:70:
dd:be:0d:ec:63:42:49:70:6c:83:17:4d:47:a8:69:
6e:99:76:60:5c:78:72:df:8f:e7:5b:19:8a:bb:3e:
69:0d:0c:ea:64:9b:ab:72:68:54:e6:69:c6:3f:55:
7a:9b:6b:f8:0e:d1:cb:4d:d0:00:bf:94:60:a9:e5:
41:14:02:43:03:ad:49:e8:90:f2:e4:85:31:0d:f4:
4a:9c:c3:ec:de:ab:b3:9e:89:c5:b5:18:96:45:6f:
2e:9f:8d:f4:51:73:07:dc:85:dc:43:fb:26:09:b5:
1b:d5:6f:66:92:bf:cf:2d:a1:b4:c6:c1:31:65:35:
ec:82:55:45:4f:ad:77:73:82:b9:83:91:a0:f8:98:
11:58:9b:39:ce:09:ab:13:1b:5d:2f:90:0b:cd:ce:
6e:18:07:27:e9:4a:08:c0:18:c3:73:29:01:45:7f:
96:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:23:39:A9:76:C6:37:96:47:C4:D5:D3:95:FE:21:80:20:A5:EC:61
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/2CM5qXbGN5ZHxNXTlf4hgCCl7GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6:a200::/39
2a05:b0c7:6000::/36
Signature Algorithm: sha256WithRSAEncryption
90:b8:21:14:5a:92:08:a3:c0:4e:ee:94:56:36:43:dd:ff:48:
e7:a1:d7:ab:9e:9c:c7:92:14:21:b5:fd:af:60:0b:a7:10:b2:
ca:5b:a5:36:13:33:b5:24:1f:6b:5a:07:be:f4:64:0d:8c:dc:
b3:29:f3:e8:19:08:65:e6:0e:2b:70:73:a1:54:93:0f:bf:ba:
64:27:ba:fd:f1:20:3f:6d:f9:74:4f:c0:8d:fb:77:b7:85:3d:
e2:7d:b2:f1:03:59:5a:6a:ee:e0:24:4b:49:4a:34:71:f9:fe:
37:d3:0d:8c:ef:55:a5:ea:db:5e:74:ae:3a:af:51:3c:92:12:
fd:77:6e:a9:ef:72:cf:a9:18:21:aa:37:d6:27:be:de:c4:c9:
b9:3a:c7:2f:40:a4:7a:1f:b4:ea:a3:8f:97:4e:d4:f4:91:72:
84:7a:e5:1c:fe:d5:86:46:6c:9b:40:92:8b:fa:e1:f8:cc:7c:
bd:a2:99:8b:33:68:01:65:ae:f5:6d:f8:58:84:f9:a0:fb:71:
09:80:e5:84:f4:a9:f7:00:5f:36:b0:64:c8:4b:21:98:e3:12:
00:28:ee:50:f6:a6:fb:1b:a1:a0:ce:e4:d6:68:87:11:ae:ff:
8e:5e:b2:ea:45:fa:e8:71:84:29:f8:91:31:fd:1f:b5:14:76:
c9:0d:3d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:17 2024 by rpki-client on console-ams.rpki-client.org