Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/1-Ozi93VJ0NES1YN4kU70Y8Y9dOo.roa
File: 1-Ozi93VJ0NES1YN4kU70Y8Y9dOo.roa (raw, json)
Hash identifier: vDzNCTD1Le37wPyge8Zm0O6n3DMSlYQGZuXA0m7fX+Q=
Subject key identifier: F8:EC:E2:F7:75:49:D0:D1:12:D5:83:78:91:4E:F4:63:C6:3D:74:EA
Certificate issuer: /CN=234b54b119a7b3eff153085b7315507cd8513a0f
Certificate serial: 018CC8DE39C6CD63BFF6514FC2F44EF5835B
Authority key identifier: 23:4B:54:B1:19:A7:B3:EF:F1:53:08:5B:73:15:50:7C:D8:51:3A:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/1-Ozi93VJ0NES1YN4kU70Y8Y9dOo.roa
Signing time: Tue 02 Jan 2024 06:30:56 +0000
ROA not before: Tue 02 Jan 2024 06:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a04:5b82:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 24 Jan 2024 06:53:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:39:c6:cd:63:bf:f6:51:4f:c2:f4:4e:f5:83:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234b54b119a7b3eff153085b7315507cd8513a0f
Validity
Not Before: Jan 2 06:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8ece2f77549d0d112d58378914ef463c63d74ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bf:a0:44:ac:34:21:d2:46:6a:39:a9:12:e3:
4c:1f:38:ac:72:90:7b:ec:4c:3d:7a:06:43:3e:a9:
95:a0:85:51:b5:85:73:0e:73:a7:4b:9f:30:b3:ca:
eb:9f:55:df:4a:22:2f:cd:59:b1:31:b3:a8:d2:50:
31:9c:55:02:82:c4:0b:c5:6c:17:5b:63:d3:2f:f3:
bf:73:1e:bd:2a:40:ac:5e:81:8c:14:7e:e2:59:ff:
a3:59:f7:2c:7a:ab:f4:63:39:c8:3f:12:a0:b6:4c:
4b:72:80:d5:ac:7f:c8:a2:42:6c:06:62:8d:76:8a:
87:6d:f5:4a:09:4c:d8:81:40:21:0d:c2:8e:03:4d:
77:40:b6:f0:d3:ec:28:4a:56:b9:69:2e:cf:28:ca:
7d:eb:4f:62:82:68:6a:c7:1f:b5:3b:58:b7:dd:fe:
4c:b1:a5:2e:5d:69:09:a0:b7:74:18:0c:c9:fd:3d:
6e:79:66:03:ed:d2:2b:76:26:47:46:43:58:a0:1a:
b5:2c:0e:75:c9:af:ad:71:14:c8:b0:14:47:d5:6c:
ce:3d:fc:bb:ca:b9:26:c5:68:2e:d8:3c:b3:ed:2a:
b1:cb:e7:28:00:25:1f:fa:a8:3f:40:21:be:ce:8c:
bf:83:3e:a3:b9:3d:56:a3:f0:28:d8:d4:7c:6d:cf:
63:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EC:E2:F7:75:49:D0:D1:12:D5:83:78:91:4E:F4:63:C6:3D:74:EA
X509v3 Authority Key Identifier:
keyid:23:4B:54:B1:19:A7:B3:EF:F1:53:08:5B:73:15:50:7C:D8:51:3A:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/1-Ozi93VJ0NES1YN4kU70Y8Y9dOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/I0tUsRmns-_xUwhbcxVQfNhROg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5b82:2000::/48
Signature Algorithm: sha256WithRSAEncryption
a8:02:ee:86:63:34:ca:06:14:18:36:0d:ff:d6:b4:e7:39:58:
03:7b:27:b9:cf:17:6c:a3:93:81:53:44:41:fd:8f:75:e6:f5:
f9:b8:4e:e1:45:f7:d4:06:e5:d5:39:ef:a5:78:c9:c0:e8:97:
ee:00:6c:00:c4:42:18:05:8d:8c:e9:92:59:95:51:5a:44:7e:
07:66:89:05:59:68:02:5c:70:9e:54:00:f5:70:10:5a:8f:bd:
ad:21:9f:df:34:9e:5e:a4:ee:9e:32:49:08:a7:40:40:e9:c1:
79:0a:85:65:37:97:9a:ed:6f:29:99:e8:c8:57:86:62:da:4f:
f7:ba:ba:06:8f:b6:cb:f7:6b:7e:61:a0:b6:e2:02:a9:e1:12:
ed:98:60:ec:44:59:c0:8f:5f:8c:22:5a:e2:b1:06:62:a2:4d:
e4:4e:36:9a:3e:c7:82:89:92:d6:2a:44:26:47:71:1b:1f:26:
ca:0b:1e:d6:4d:05:9e:a9:99:4e:5b:59:b9:2b:c7:78:34:94:
f8:63:c3:e4:b8:f9:75:21:91:96:85:85:28:e5:1d:00:0d:54:
c0:d4:80:69:fb:89:30:ad:25:25:6c:31:e6:0d:52:81:bc:8c:
5b:81:7d:52:ce:2f:b0:0d:26:71:a7:13:fe:89:f2:6d:85:59:
fe:18:5c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 24 08:03:57 2024 by rpki-client on console-fra.rpki-client.org