Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/XWvmp0jd4-76dsZ5WK_VpBV88AY.roa
File: XWvmp0jd4-76dsZ5WK_VpBV88AY.roa (raw, json)
Hash identifier: u0Wk4nS/joEqP/X6y/y0Fp/30hKKGaVqYZKIdvyRTVc=
Subject key identifier: 5D:6B:E6:A7:48:DD:E3:EE:FA:76:C6:79:58:AF:D5:A4:15:7C:F0:06
Certificate issuer: /CN=afa929be73491acd99d590372a52b815fa1f23f5
Certificate serial: 0185715559A686737174FD8CA9C3E77694E2
Authority key identifier: AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/XWvmp0jd4-76dsZ5WK_VpBV88AY.roa
Signing time: Mon 02 Jan 2023 07:14:56 +0000
ROA not before: Mon 02 Jan 2023 07:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42504
IP address blocks: 2001:678:d38::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:59:a6:86:73:71:74:fd:8c:a9:c3:e7:76:94:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa929be73491acd99d590372a52b815fa1f23f5
Validity
Not Before: Jan 2 07:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d6be6a748dde3eefa76c67958afd5a4157cf006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:eb:e6:e3:e9:1e:66:91:47:8a:c3:56:65:de:
3e:6d:d5:8c:e3:01:74:9d:76:70:0f:6f:84:9d:eb:
0d:56:10:c0:fc:50:a4:06:cd:74:eb:f1:57:ab:32:
28:43:9f:4e:9b:53:c2:12:87:36:cb:bc:e2:00:1f:
88:8e:d9:d4:01:40:04:aa:3c:35:a1:c9:bd:91:e3:
0f:e4:10:38:01:c6:aa:e0:c2:be:b1:1b:21:98:5c:
2b:d8:1e:5e:af:1c:69:1b:b8:bf:fb:72:c4:91:38:
e4:09:d8:d0:20:3f:f6:fe:af:c2:5d:86:ab:a3:c2:
2e:f8:42:fa:16:b1:49:34:c7:3d:ed:83:a2:84:80:
44:7b:f1:a6:04:35:20:96:3d:a2:52:37:63:98:0f:
c1:54:98:ad:67:c2:16:ac:8a:e5:c8:ce:0a:36:0e:
1a:89:06:84:8c:ae:3d:77:07:66:f7:a3:d0:e2:8b:
02:49:c3:69:1b:03:4c:a5:07:ac:cf:b2:dd:bb:61:
87:50:82:b3:72:96:b3:a0:0d:db:c0:2f:d9:74:2c:
ea:52:63:08:8d:a2:b6:73:3a:d7:d5:e1:76:c5:18:
ca:25:85:ba:ea:e7:d6:85:48:e1:70:6f:c8:e4:ca:
84:a0:38:8e:fd:07:e4:a4:7e:ff:e5:be:22:8d:db:
33:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6B:E6:A7:48:DD:E3:EE:FA:76:C6:79:58:AF:D5:A4:15:7C:F0:06
X509v3 Authority Key Identifier:
keyid:AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/XWvmp0jd4-76dsZ5WK_VpBV88AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d38::/48
Signature Algorithm: sha256WithRSAEncryption
15:73:b1:8c:8e:b6:0a:28:88:c9:11:10:1e:c6:bf:22:c1:29:
37:d9:18:53:6e:4c:23:db:2a:17:d7:5b:21:3c:da:74:b5:86:
49:eb:56:34:0e:ef:a5:e6:0b:5a:a9:e1:a2:da:b2:93:c4:a7:
2a:c3:a6:71:fa:b8:91:d0:a1:5f:6f:95:6a:30:c3:7b:3f:89:
70:fd:a4:80:18:df:29:29:81:83:6f:41:cf:1d:ff:17:8d:6f:
36:59:b5:c0:66:54:6a:19:80:4f:8b:db:c9:da:59:ff:c1:1d:
3a:ed:13:7b:bb:86:1f:ea:9f:b5:1a:de:61:96:c4:56:f2:45:
b0:34:28:7a:96:3e:0d:88:e2:02:44:c2:6e:10:25:27:a2:1d:
ef:6b:18:bb:05:8c:05:3d:93:8c:92:b8:d2:85:cf:60:c1:4a:
bc:e5:ae:ec:f8:2d:cb:f7:e9:8a:28:ca:b3:dc:68:5a:9b:f3:
e9:5d:1f:50:c8:ee:b7:31:d7:73:44:f6:11:65:dc:d8:c8:40:
be:1c:8a:86:ca:bf:4d:be:ae:31:ec:ff:e7:fd:b7:41:61:38:
21:19:c4:8a:83:a4:e1:da:29:9f:86:ce:e0:18:74:46:18:f6:
e5:e0:77:15:86:e4:68:c3:7d:0b:a8:af:37:3e:2f:e9:36:b9:
ab:19:2a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:44 2024 by rpki-client on console-fra.rpki-client.org