Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/BEiuJLnK5OPiiWhKhS9QEBvMQcU.roa
File: BEiuJLnK5OPiiWhKhS9QEBvMQcU.roa (raw, json)
Hash identifier: 68jxdZlqPsDVbcH2ygO4CwNxJ9rJC5Y8IJJTyv8FXL0=
Subject key identifier: 04:48:AE:24:B9:CA:E4:E3:E2:89:68:4A:85:2F:50:10:1B:CC:41:C5
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018E5610319D333AC8537C91B0F5BEBE0DD6
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/BEiuJLnK5OPiiWhKhS9QEBvMQcU.roa
Signing time: Tue 19 Mar 2024 09:34:45 +0000
ROA not before: Tue 19 Mar 2024 09:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215633
IP address blocks: 2a09:2b80:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Mar 2024 15:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:10:31:9d:33:3a:c8:53:7c:91:b0:f5:be:be:0d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Mar 19 09:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0448ae24b9cae4e3e289684a852f50101bcc41c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c3:c0:0f:4c:15:01:00:40:f3:80:e9:5c:a9:
c9:6f:21:91:d4:be:84:34:2f:7a:0d:3a:df:2d:73:
7d:ad:c6:4a:61:f4:82:9b:e0:ec:af:84:38:28:e5:
e3:d1:1c:48:a1:4d:84:f3:49:61:53:68:1d:0c:7a:
ec:c3:80:49:a9:d4:44:36:fc:f9:0a:57:3e:86:79:
3d:da:76:4a:5b:00:02:9e:b4:3a:fd:9a:17:dd:6a:
da:40:85:80:5f:b1:fc:2f:c5:83:5b:34:62:b1:ec:
a3:7a:31:0b:76:5c:ad:74:bb:ac:68:b5:04:f4:44:
d8:ff:25:3b:fa:f8:0a:fb:0a:ea:f4:78:2d:f0:eb:
7d:a6:d1:1b:54:1a:2f:ff:57:3e:de:36:22:86:90:
07:7f:19:35:e7:25:ea:71:1d:46:57:24:e6:68:f3:
7d:e0:45:50:0f:06:8f:65:d4:99:35:f0:6e:3e:4c:
75:24:2f:21:bc:e8:35:17:c7:9c:ef:8c:bf:4a:0e:
5f:53:8d:41:c2:21:c1:6c:34:7d:1e:88:05:6a:99:
c7:25:b5:1c:ca:b3:a7:1f:57:e1:6f:bc:0d:8d:68:
8f:a5:fa:85:5a:e2:0f:be:9e:69:61:32:e8:cb:3c:
8a:f5:1a:c8:1c:45:24:5d:78:f4:df:9d:25:0f:80:
bc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:48:AE:24:B9:CA:E4:E3:E2:89:68:4A:85:2F:50:10:1B:CC:41:C5
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/BEiuJLnK5OPiiWhKhS9QEBvMQcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80:1::/48
Signature Algorithm: sha256WithRSAEncryption
3b:51:82:62:52:93:57:29:17:a5:b4:37:46:db:8d:0e:e9:01:
63:6e:83:7e:72:c1:af:3a:26:f1:29:20:9a:57:52:34:c2:3a:
ab:96:cc:2c:18:ff:af:f0:bc:c2:5e:f0:86:f1:76:f9:d7:f8:
51:bc:d9:6a:87:0f:2c:52:69:0b:48:5f:aa:9c:54:51:4b:1d:
d0:53:4b:a0:f2:2b:4f:d9:5a:84:17:0b:5e:80:00:5b:11:c9:
5e:6f:87:20:3d:12:27:9c:fd:e8:d8:35:7c:70:9d:8e:e4:2a:
29:a3:0e:13:10:a1:1c:2b:72:f7:0f:61:a1:e9:10:d8:1c:4d:
b5:9b:4e:bd:29:51:2f:ef:1b:20:4f:ca:c9:5e:69:59:38:2a:
df:56:77:96:fa:30:a4:8a:dc:3c:49:75:78:66:54:73:d4:75:
07:b6:50:ed:83:60:49:7c:e7:17:27:7d:87:ea:5d:22:8d:cd:
e9:c5:66:07:40:65:04:5c:51:b6:d6:fb:9e:70:c3:02:73:ce:
25:95:c0:57:23:72:27:af:a0:83:93:15:55:04:d5:a2:85:41:
46:59:58:17:97:e7:ff:7a:55:69:9a:92:fe:eb:12:f8:df:37:
f1:2a:e9:37:bd:21:32:34:55:37:15:f9:0e:02:29:bb:d9:d6:
ed:e2:85:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 18:22:41 2024 by rpki-client on console-ams.rpki-client.org