Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/1EpG3hxSu-SLQ-UtNH4h0O04eAI.roa
File: 1EpG3hxSu-SLQ-UtNH4h0O04eAI.roa (raw, json)
Hash identifier: D0OApiV0nfQzX2wFNcMrVqu5oqC8yQXMwwwkQYrcjBc=
Subject key identifier: D4:4A:46:DE:1C:52:BB:E4:8B:43:E5:2D:34:7E:21:D0:ED:38:78:02
Certificate issuer: /CN=58ff89023b87c0bf8479b9ff4725258613e4f0b5
Certificate serial: 01856F02431A860F409A8387A581F95F302B
Authority key identifier: 58:FF:89:02:3B:87:C0:BF:84:79:B9:FF:47:25:25:86:13:E4:F0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WP-JAjuHwL-Eebn_RyUlhhPk8LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/1EpG3hxSu-SLQ-UtNH4h0O04eAI.roa
Signing time: Sun 01 Jan 2023 20:24:57 +0000
ROA not before: Sun 01 Jan 2023 20:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 2a07:4b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 20 Dec 2023 08:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:43:1a:86:0f:40:9a:83:87:a5:81:f9:5f:30:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ff89023b87c0bf8479b9ff4725258613e4f0b5
Validity
Not Before: Jan 1 20:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d44a46de1c52bbe48b43e52d347e21d0ed387802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1f:af:59:26:ac:b2:e1:ce:af:89:50:37:9a:
ee:17:f1:ad:4f:2c:72:8b:da:d0:17:45:c4:48:e2:
cd:4f:4b:a2:50:1c:5a:13:e3:53:40:9f:dd:29:a6:
4c:c2:2c:4c:dd:ad:b6:b1:1f:a6:2a:aa:a7:96:1d:
c9:fd:33:60:bb:9e:75:93:ca:0e:28:53:e0:f7:01:
2f:bf:ce:18:44:ac:56:b7:6b:fd:a9:45:08:2a:35:
f5:1e:ed:50:ad:f4:b7:15:f6:5a:69:8a:e0:8d:b4:
8e:c8:66:48:91:b9:74:72:dd:fb:25:c3:ad:ae:ed:
fe:4e:b1:0f:4e:bd:4b:fb:f1:33:e5:b8:a7:b1:6d:
aa:e3:fe:0a:9d:c3:1c:f0:16:ab:04:d6:6c:d4:84:
a8:f8:9f:4f:81:1a:70:b7:b6:7a:f7:dc:9b:fa:12:
4d:1d:16:0e:ee:4f:90:bd:74:26:98:09:31:bd:3d:
52:1a:0a:2a:2c:e5:07:5f:aa:05:b6:14:64:35:de:
80:a2:d7:d5:11:aa:4d:83:d5:71:ec:02:0d:9a:2b:
52:62:bf:e6:6b:03:eb:3d:96:33:12:48:93:73:68:
59:a1:3c:7b:0e:c1:c2:d3:e2:0f:f1:7d:83:d1:6b:
5b:3b:16:d2:55:50:eb:9c:86:75:e9:dc:54:77:2d:
cb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4A:46:DE:1C:52:BB:E4:8B:43:E5:2D:34:7E:21:D0:ED:38:78:02
X509v3 Authority Key Identifier:
keyid:58:FF:89:02:3B:87:C0:BF:84:79:B9:FF:47:25:25:86:13:E4:F0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WP-JAjuHwL-Eebn_RyUlhhPk8LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/1EpG3hxSu-SLQ-UtNH4h0O04eAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/WP-JAjuHwL-Eebn_RyUlhhPk8LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
1f:6d:9b:9a:76:e3:ba:b9:ac:6b:9b:7f:cc:82:a1:20:15:eb:
f1:85:b8:46:d2:bf:01:14:22:eb:54:73:ca:c8:b8:86:06:18:
08:2f:3f:d6:24:e5:a5:2d:ea:86:67:ea:1c:b4:67:e6:e0:3f:
90:60:01:8e:cb:cf:60:77:38:a9:87:40:23:9d:4b:18:89:78:
29:d9:7c:44:db:12:51:f8:02:04:0e:bc:38:91:2f:e5:e9:8f:
d9:17:28:1e:1f:55:ae:e6:cc:aa:e1:ac:26:a5:62:b9:a3:3d:
db:86:23:ea:bc:69:cd:1e:16:c2:a6:a0:a0:b5:fb:4e:dc:c2:
f6:98:62:de:c9:0c:e5:61:85:5a:c2:0e:68:7b:d9:27:9f:b5:
9b:f5:86:29:33:47:17:42:d8:45:0c:24:3e:15:83:d4:59:20:
c5:9e:4b:bf:17:aa:cc:bd:be:ed:24:12:2c:a1:74:6c:30:ef:
0e:81:59:88:f6:82:4d:8e:f9:c4:ae:8c:d1:4d:a6:3a:71:ea:
4d:d3:59:ac:09:52:c1:5b:e6:ae:9f:e3:5a:13:09:20:68:a9:
fd:3b:97:45:8d:c4:63:e1:59:90:17:07:98:51:a6:45:df:d1:
c1:f7:f6:1f:4e:99:76:ee:e6:f6:7b:22:ac:ee:8e:2a:3a:b7:
0f:92:eb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:22 2024 by rpki-client on console-fra.rpki-client.org