Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/5zHRc7BmYAuWnbe0wc62ibGbjw8.roa
File: 5zHRc7BmYAuWnbe0wc62ibGbjw8.roa (raw, json)
Hash identifier: YM+KNYLBFebyvcirIALANxT3aO1PGUGji9KB92wskYc=
Subject key identifier: E7:31:D1:73:B0:66:60:0B:96:9D:B7:B4:C1:CE:B6:89:B1:9B:8F:0F
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018572A7EAAB5EEBCEDEC7BC830EE939C56C
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/5zHRc7BmYAuWnbe0wc62ibGbjw8.roa
Signing time: Mon 02 Jan 2023 13:24:44 +0000
ROA not before: Mon 02 Jan 2023 13:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a0a:f583::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 30 Oct 2023 18:08:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:ea:ab:5e:eb:ce:de:c7:bc:83:0e:e9:39:c5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Jan 2 13:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e731d173b066600b969db7b4c1ceb689b19b8f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:94:a1:da:81:2c:d0:6a:45:a8:4b:6b:f3:
3c:f8:3c:e9:de:90:20:5c:b4:df:9e:18:4d:8a:46:
c3:36:7f:9b:7e:4b:c6:8b:30:c4:90:a7:af:ba:c2:
58:28:5f:35:e7:ea:a2:04:dc:c5:43:bc:f1:17:11:
81:9f:c8:de:b8:53:b0:95:82:04:ed:22:27:76:f9:
d8:e8:f7:29:cf:9e:34:ae:db:82:ac:9d:1b:6b:c7:
b1:20:de:7d:59:ea:47:b6:1b:6a:67:fb:96:6b:ba:
3a:fd:4e:dd:16:11:26:5e:bc:e7:99:e6:ea:a1:3e:
45:92:71:38:4f:ba:1a:ac:d4:15:95:62:a4:13:51:
69:a0:45:b5:8f:32:93:41:16:91:8d:3d:09:bd:c6:
b5:51:98:f9:f9:fd:fd:5b:fe:91:08:07:e9:75:95:
05:b6:d5:28:82:8c:67:5e:e3:2d:fd:35:7c:a2:7f:
c1:4b:af:1a:9e:df:c4:55:6d:02:1b:77:c0:f0:d2:
39:06:ca:78:55:b2:51:85:06:56:8c:b1:64:1a:d1:
72:7b:e4:80:32:fc:f3:96:6e:e4:08:02:a5:84:11:
a1:83:b4:04:35:30:13:86:98:9f:20:9d:d2:d4:5b:
4b:38:44:16:91:e8:9d:ac:1a:bf:2b:76:f4:28:79:
fa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:31:D1:73:B0:66:60:0B:96:9D:B7:B4:C1:CE:B6:89:B1:9B:8F:0F
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/5zHRc7BmYAuWnbe0wc62ibGbjw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:f583::/32
Signature Algorithm: sha256WithRSAEncryption
81:d8:52:e3:b5:02:2e:33:51:d7:2b:41:be:ac:11:1e:0d:11:
4b:8e:6f:af:2c:1f:10:d6:33:df:0b:2d:00:ea:99:ca:17:51:
2d:b0:02:5e:d6:02:6c:8f:0f:a2:6b:4a:fd:27:18:30:83:10:
58:b6:bc:c8:d4:a2:b4:05:5c:86:d4:86:24:29:0f:88:68:f3:
5c:43:3d:10:21:0c:88:d7:2c:2a:b0:ed:5f:cd:a0:d5:77:29:
6c:41:eb:96:48:35:dd:9f:e1:cc:92:b1:10:cc:68:71:68:ce:
34:38:0a:70:a8:d6:45:0a:32:fb:97:47:4f:3a:3f:5b:1a:03:
ab:e5:44:f6:07:99:62:9e:94:1a:50:3c:43:cb:52:20:8b:61:
cb:67:2b:c4:4e:c8:23:f3:08:1c:de:5b:57:93:0a:7f:43:c3:
83:05:d4:e5:36:cb:84:92:b4:ee:83:6c:1e:51:da:f5:b0:f9:
46:ae:b1:a1:6a:45:9b:53:02:1d:67:fa:0d:bf:9b:53:f5:0b:
dc:82:07:5c:7c:f0:db:d4:65:14:fa:cd:f4:d2:1b:09:ef:f3:
b7:f3:a5:c3:4c:f6:35:20:d0:e8:0f:6d:07:68:45:e9:d2:81:
77:91:39:44:88:cd:92:f6:d6:b7:7e:a7:f6:38:6a:c8:2b:8a:
26:01:a2:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org