Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/ayvmbxtuODZU-jWGndArZtBuezc.roa
File: ayvmbxtuODZU-jWGndArZtBuezc.roa (raw, json)
Hash identifier: 14Pcp2TWZiKYTpcLzrYad1sYyeejlwseklpSDh0Xwdo=
Subject key identifier: 6B:2B:E6:6F:1B:6E:38:36:54:FA:35:86:9D:D0:2B:66:D0:6E:7B:37
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 01856D81B34C6E518ADC73D9BE0C7D2F9409
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/ayvmbxtuODZU-jWGndArZtBuezc.roa
Signing time: Sun 01 Jan 2023 13:24:54 +0000
ROA not before: Sun 01 Jan 2023 13:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56849
IP address blocks: 2a09:be44::/30 maxlen: 48
2a09:be41::/32 maxlen: 48
2a0e:ec00::/30 maxlen: 48
2a12:49c0::/29 maxlen: 48
2a09:be42::/31 maxlen: 48
2a0e:ec04::/31 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b3:4c:6e:51:8a:dc:73:d9:be:0c:7d:2f:94:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: Jan 1 13:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b2be66f1b6e383654fa35869dd02b66d06e7b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6a:7c:21:38:0c:70:e4:b2:fd:97:94:dd:f7:
46:e2:77:49:af:08:2f:2c:ac:2e:e7:10:88:56:39:
30:42:81:40:de:76:2e:9e:b9:4f:07:c7:12:35:3b:
5d:1a:22:6e:92:2e:d2:4f:b6:76:d1:62:91:ec:ce:
af:f2:dd:8e:e4:32:af:fc:13:7c:83:83:00:0c:6f:
a5:57:e1:c5:b4:05:75:24:51:ba:58:2c:ba:3b:dd:
bf:c0:38:3c:29:fa:1c:6d:aa:7a:ae:4a:28:39:15:
81:80:94:ea:20:c4:f5:cf:1a:e2:a4:81:c5:ac:f5:
21:65:c0:e7:ea:87:0b:8a:c3:b9:3b:e1:c0:55:27:
1f:9a:24:dd:4c:40:50:0f:18:5c:ac:fb:c2:c0:32:
b9:78:0b:b2:70:e5:ee:31:9d:5a:8e:c1:55:cc:5b:
ca:47:b5:97:1c:27:2b:f0:ac:68:8f:61:98:9e:a9:
45:cf:f7:11:f5:72:6f:7c:aa:16:65:6a:28:2f:5b:
fd:69:e8:4f:f3:79:cc:4e:1e:d6:f5:4b:b5:8a:ba:
17:3a:bb:63:19:b7:ee:ce:d4:64:79:8f:86:2e:0e:
c1:7f:67:97:6e:2c:e3:8c:7d:65:1f:fd:b9:80:ef:
8b:fe:50:47:63:f1:b3:0e:f7:b2:64:d9:3a:b7:05:
25:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2B:E6:6F:1B:6E:38:36:54:FA:35:86:9D:D0:2B:66:D0:6E:7B:37
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/ayvmbxtuODZU-jWGndArZtBuezc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be41::-2a09:be47:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:ec00::-2a0e:ec05:ffff:ffff:ffff:ffff:ffff:ffff
2a12:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
7f:c0:13:bc:62:c9:2b:58:f2:1a:9b:7e:17:ea:6b:ee:c8:19:
d2:d6:90:ef:60:74:7c:89:58:d3:6f:26:24:59:33:da:81:24:
d6:1d:b9:df:3c:d9:ba:98:63:32:ab:cb:03:34:30:ee:15:4c:
76:97:b3:e1:c7:a1:88:3a:57:3a:dd:1a:7d:84:22:65:d2:2c:
48:7b:18:27:4f:da:b3:95:53:96:ee:df:6c:61:c6:a3:f1:52:
32:95:63:60:18:ce:78:4c:f1:e2:54:01:74:9c:5d:65:aa:26:
91:e3:25:7f:b8:5a:6d:3f:77:5c:de:b3:bb:01:c2:09:61:07:
37:7e:10:20:fb:1c:64:23:68:83:75:14:e6:78:50:8e:aa:36:
af:72:14:d5:3c:8b:a9:e3:1e:95:d7:5a:f9:1b:ea:8e:5f:ad:
1a:f4:8a:82:bf:e3:11:5c:5f:d6:ae:57:57:d9:8b:f1:66:ca:
53:f2:4e:94:d8:73:58:95:9e:12:fc:23:c8:2c:a7:43:1b:0c:
76:62:53:f5:1f:aa:3c:42:ba:b1:35:ba:2a:8f:da:a2:bc:21:
de:d4:d5:ae:a5:ad:1c:a6:55:be:16:7d:81:3e:56:98:d8:9b:
ab:56:de:7b:a4:13:30:36:ed:9c:a7:8f:1a:f0:3c:5f:de:59:
f8:c8:3d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:26 2024 by rpki-client on console-ams.rpki-client.org