Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/2rrndCowH-JTLAQyzL3rEPdgxXs.roa
File: 2rrndCowH-JTLAQyzL3rEPdgxXs.roa (raw, json)
Hash identifier: X9YvTB/KBOTkm3t2RwsS4zaImgmEmTs1R9F1/ZGhPRs=
Subject key identifier: DA:BA:E7:74:2A:30:1F:E2:53:2C:04:32:CC:BD:EB:10:F7:60:C5:7B
Certificate issuer: /CN=d23708099f7a205564b5f8e05d217bd2fae4de88
Certificate serial: 01856F54B9C4B199501640353DC2C539868C
Authority key identifier: D2:37:08:09:9F:7A:20:55:64:B5:F8:E0:5D:21:7B:D2:FA:E4:DE:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jcICZ96IFVktfjgXSF70vrk3og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/2rrndCowH-JTLAQyzL3rEPdgxXs.roa
Signing time: Sun 01 Jan 2023 21:55:01 +0000
ROA not before: Sun 01 Jan 2023 21:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58132
IP address blocks: 2001:678:594::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b9:c4:b1:99:50:16:40:35:3d:c2:c5:39:86:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23708099f7a205564b5f8e05d217bd2fae4de88
Validity
Not Before: Jan 1 21:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dabae7742a301fe2532c0432ccbdeb10f760c57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a7:ba:af:05:6a:ff:b4:ef:99:0e:9d:fe:dc:
2f:2f:54:75:60:fe:56:97:07:1f:76:88:d0:eb:fc:
24:8b:55:12:64:35:10:ec:99:d0:f5:be:88:f6:49:
7e:cf:aa:df:16:d3:e0:55:02:aa:bd:cd:38:9a:4e:
0e:e1:33:ab:05:79:f6:e5:12:af:4d:cb:e0:3f:85:
fb:1e:25:0e:40:01:5a:38:a2:44:79:5f:93:92:05:
52:d5:f2:c4:2b:73:50:e8:cd:c2:ad:0f:20:0c:42:
2f:c4:37:c9:40:ba:14:f6:82:0c:0e:00:a8:06:25:
e7:61:4a:70:55:76:4f:b7:19:af:26:87:df:54:fe:
d5:23:d6:8c:ad:9e:73:f3:12:8a:79:dd:35:44:50:
15:56:bd:b8:21:a0:22:90:b5:ef:61:a2:b9:1e:1d:
f8:96:5a:52:67:e0:3b:43:cc:e6:4a:0b:2d:c4:33:
f9:27:7e:e6:dd:7b:75:77:dd:13:29:ce:a0:55:e5:
bc:e6:3c:44:85:64:66:58:8f:73:e9:9a:48:60:f7:
6f:41:a2:2b:2a:4a:aa:0a:29:23:95:60:76:21:53:
5c:02:81:ec:18:cf:32:26:b4:dc:82:6a:c7:f1:b4:
c4:3d:86:38:07:d0:07:14:25:30:2d:8b:5e:28:bf:
23:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BA:E7:74:2A:30:1F:E2:53:2C:04:32:CC:BD:EB:10:F7:60:C5:7B
X509v3 Authority Key Identifier:
keyid:D2:37:08:09:9F:7A:20:55:64:B5:F8:E0:5D:21:7B:D2:FA:E4:DE:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jcICZ96IFVktfjgXSF70vrk3og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/2rrndCowH-JTLAQyzL3rEPdgxXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/01b5af-b777-4b59-a5b2-5e97f4a512e5/1/0jcICZ96IFVktfjgXSF70vrk3og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:594::/48
Signature Algorithm: sha256WithRSAEncryption
cb:44:87:3a:6e:8a:bb:35:65:fc:d0:9d:84:a1:c9:12:87:0b:
96:8f:05:61:14:42:2c:d8:ea:b9:80:6b:1d:c4:a9:6d:e9:16:
26:54:7e:ba:45:96:ec:b2:5e:01:22:4e:51:33:a8:14:0a:87:
4c:6d:63:bd:85:4f:b7:8c:e5:20:ac:45:c7:13:de:46:2a:1a:
c7:8e:41:9b:aa:64:39:9e:60:3b:02:87:29:93:89:40:2c:23:
ea:01:82:b3:1d:c2:6f:dc:86:79:cb:8c:5c:e9:7b:ae:e3:26:
80:1c:46:63:7d:43:62:77:09:5c:2e:63:bd:95:21:35:da:d2:
98:93:f5:2f:9c:e7:37:ce:3c:a7:72:d3:60:c8:32:0d:ea:18:
09:6a:e1:95:40:3a:b6:cb:2f:d7:9f:6c:b2:5b:9d:ea:a1:5a:
f7:54:ae:06:72:e1:53:1a:ac:28:91:82:56:af:ac:03:23:76:
99:49:ca:2a:28:e4:2c:05:8d:19:01:5c:bc:bb:c0:59:df:52:
73:f5:ab:5c:4d:a5:a5:fb:d4:09:7b:02:b8:a4:88:86:4c:0f:
7f:fd:e5:90:ca:5c:80:82:b6:a0:e2:cf:ea:67:d1:7f:53:50:
69:fd:76:55:89:b5:f2:91:eb:34:99:b1:39:7f:8e:b4:49:44:
45:13:57:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:35 2024 by rpki-client on console-fra.rpki-client.org