Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/L0tHdpjNT0H6oZzgGUjhTS3rp3A.roa
File: L0tHdpjNT0H6oZzgGUjhTS3rp3A.roa (raw, json)
Hash identifier: umwZXo02Ux/hqhhSxQThM0/GX96sh4nmubdeXd3I+zU=
Subject key identifier: 2F:4B:47:76:98:CD:4F:41:FA:A1:9C:E0:19:48:E1:4D:2D:EB:A7:70
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 018B91877982F6A255F47F47A7DB0DD80657
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/L0tHdpjNT0H6oZzgGUjhTS3rp3A.roa
Signing time: Thu 02 Nov 2023 19:34:16 +0000
ROA not before: Thu 02 Nov 2023 19:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211358
IP address blocks: 2a05:b0c6:5006::/48 maxlen: 48
2a05:b0c6:5001::/48 maxlen: 48
2a05:b0c6:5009::/48 maxlen: 48
2a05:b0c6:5008::/48 maxlen: 48
2a05:b0c6:500f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:91:87:79:82:f6:a2:55:f4:7f:47:a7:db:0d:d8:06:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Nov 2 19:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f4b477698cd4f41faa19ce01948e14d2deba770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:80:c4:1f:65:6c:4f:ef:95:2a:3c:bd:d3:2e:
c3:da:b8:f0:9b:e4:87:06:2a:9c:b9:f6:4a:55:87:
61:00:ad:ff:e0:9a:d7:62:fc:60:e5:26:3f:e5:99:
2e:f0:00:71:a6:a2:25:72:a9:9d:e2:ea:a9:49:fa:
a3:10:51:11:18:c1:21:35:7d:5c:46:0a:57:36:7a:
95:2d:bd:73:26:fa:bc:ae:fc:06:91:49:a3:11:de:
0a:4d:97:86:7c:61:e5:dc:b5:4b:6e:23:fb:53:6b:
42:d4:16:ae:66:53:11:1f:4f:a5:ff:ce:b3:25:3a:
52:ac:43:c3:1c:dc:30:e0:54:7a:36:c8:71:26:81:
9d:06:ec:22:58:ae:cb:07:5a:75:ee:ff:c1:15:b5:
4e:8a:ec:50:b0:29:cc:87:66:cd:1b:97:35:c6:bd:
57:c2:df:d7:7b:b7:8f:79:87:87:32:9f:1c:a9:7d:
ff:b0:31:6c:b1:94:f8:75:e6:10:9f:45:43:46:67:
6a:67:76:34:e8:68:27:31:dc:b5:17:c0:5f:41:e3:
90:e4:f5:9d:33:70:f5:07:cc:d4:1b:6a:29:29:c1:
54:1c:6d:ce:48:9a:7c:4e:3a:7c:b3:d3:f2:d4:7f:
33:2e:15:82:68:75:ae:68:7d:e8:fa:31:22:ac:ff:
e1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4B:47:76:98:CD:4F:41:FA:A1:9C:E0:19:48:E1:4D:2D:EB:A7:70
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/L0tHdpjNT0H6oZzgGUjhTS3rp3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c6:5001::/48
2a05:b0c6:5006::/48
2a05:b0c6:5008::/47
2a05:b0c6:500f::/48
Signature Algorithm: sha256WithRSAEncryption
92:50:8a:9d:d3:5a:42:15:77:0f:5b:cd:a8:95:83:00:87:67:
a5:b1:e6:41:bd:ef:51:bb:3b:f5:d3:d3:64:2d:f6:81:60:3d:
9c:15:17:39:25:5b:09:d0:b4:e6:55:78:6b:fa:cd:65:6a:97:
76:9b:a0:56:16:e6:68:d4:10:b3:0f:ce:5e:ca:c1:1c:24:ef:
b5:d2:02:03:2a:0e:b2:80:33:4f:5f:3c:2d:25:56:bc:57:85:
b6:df:58:ce:6d:90:b7:3f:8d:71:a4:cf:97:98:f7:76:d5:b3:
b6:25:f8:4c:68:dc:14:7b:fe:b4:d4:de:2d:e2:73:e8:d2:46:
e2:1b:0f:cc:2a:71:21:f8:0b:b2:60:fd:e3:2a:8f:62:22:8f:
d4:31:e9:c0:dd:55:13:b8:c1:0a:d3:04:a4:2d:78:ec:4e:c9:
b7:85:0a:13:72:e4:d0:dc:8a:e7:d4:9b:a2:23:db:d8:3c:c0:
0b:4b:d8:d6:2b:88:28:d4:13:97:b4:3b:c6:b7:06:10:e2:c1:
ee:ef:17:67:5a:5a:65:69:9a:8c:ea:02:19:22:77:f3:32:58:
46:8c:4e:87:1c:04:8e:19:4b:86:20:1f:6a:40:c2:89:f9:17:
dd:e7:8b:88:00:a7:77:51:1d:2a:28:90:f6:9c:bd:8c:21:52:
32:d4:9b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:17 2024 by rpki-client on console-ams.rpki-client.org