Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/mD2cJxqkA3nE7oFMCzz2YpY-o64.roa
File: mD2cJxqkA3nE7oFMCzz2YpY-o64.roa (raw, json)
Hash identifier: l/WMD32JgHdMTw+Gac/BZ0oQOITrb6QOl4e84n6ysTo=
Subject key identifier: 98:3D:9C:27:1A:A4:03:79:C4:EE:81:4C:0B:3C:F6:62:96:3E:A3:AE
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 01877C025971DA8E2747FACD50650F200868
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/mD2cJxqkA3nE7oFMCzz2YpY-o64.roa
Signing time: Thu 13 Apr 2023 19:05:41 +0000
ROA not before: Thu 13 Apr 2023 19:05:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53667
IP address blocks: 2a0a:f581::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 30 May 2023 19:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7c:02:59:71:da:8e:27:47:fa:cd:50:65:0f:20:08:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Apr 13 19:05:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=983d9c271aa40379c4ee814c0b3cf662963ea3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:95:fe:f4:2d:c7:cb:47:fe:05:46:49:c5:
c8:31:4c:e8:80:a0:1b:05:83:78:a5:78:13:62:75:
b9:69:80:c4:78:43:b7:61:b2:77:97:bb:72:ce:da:
43:18:44:c4:8b:16:f6:aa:b3:1a:01:21:f0:cf:01:
5b:5f:41:a4:80:60:bf:81:90:1c:e3:8e:4b:d2:ed:
0b:de:9f:d9:22:99:0e:68:f6:38:3c:f6:f2:1e:15:
f0:16:3d:c0:81:97:05:27:f8:25:36:e1:ab:e9:58:
b3:92:9d:1d:1c:ea:4c:80:d3:da:cf:53:89:1e:9f:
6c:dc:98:6c:2a:3b:ca:5e:0e:73:26:82:ab:57:15:
f0:5d:77:80:c5:33:b1:cf:4d:da:bc:5f:fe:0a:14:
01:96:ca:96:ec:f2:07:b6:b4:35:6b:b9:03:f6:74:
87:4c:ba:b5:a0:85:7a:76:88:1e:24:ff:57:b0:c8:
3a:d4:30:a4:d6:30:78:0a:2b:1d:b4:dd:65:ec:f7:
59:82:a3:75:5d:a1:fd:3c:c0:b6:6a:d1:b6:67:76:
86:97:f5:de:21:a0:00:bc:bb:00:bb:5a:de:43:3f:
58:c2:0c:31:1e:e0:c4:95:96:9b:ef:69:e0:1f:c2:
5e:34:33:3d:c4:03:8f:58:be:c1:5e:af:9c:80:bb:
5e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3D:9C:27:1A:A4:03:79:C4:EE:81:4C:0B:3C:F6:62:96:3E:A3:AE
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/mD2cJxqkA3nE7oFMCzz2YpY-o64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:f581::/32
Signature Algorithm: sha256WithRSAEncryption
45:0f:6d:f1:8a:af:a0:de:78:7e:fd:08:64:98:ca:9d:99:29:
0e:2e:1f:51:b3:9d:30:b8:d6:9a:2f:61:a2:a6:59:65:23:fc:
aa:64:c5:73:c5:dc:70:5b:4d:5d:81:e1:1f:c7:cd:6f:d1:9d:
3b:d1:1e:7d:5e:cc:e9:10:ea:b8:02:9c:38:3e:37:bb:9d:8a:
c3:a1:ee:56:60:49:a4:00:75:8a:07:73:59:9e:19:dd:65:f1:
aa:65:64:11:f5:68:7f:57:05:1d:5c:bf:87:13:4b:5c:d2:47:
6f:20:1d:26:42:d2:5f:d2:aa:da:d9:a3:96:82:a8:bc:a9:35:
29:03:e9:c6:fe:56:49:bc:29:48:ba:80:55:a7:db:46:88:60:
71:71:3f:de:2c:38:74:54:97:28:97:66:81:6c:4c:e2:df:03:
2d:b2:5e:4e:d3:a1:3a:9d:d8:63:78:c6:b5:9a:34:9f:75:79:
24:e8:02:1c:79:c9:0f:38:b3:ad:84:71:8c:f4:1c:45:a3:c9:
d4:09:ce:52:86:4d:7a:7b:29:35:5a:03:98:4c:c7:86:59:75:
c7:b7:f0:f5:4b:95:d0:1b:5c:da:7d:19:f2:87:6f:40:87:81:
03:f1:c2:00:d9:b4:23:8e:61:39:2f:a2:08:51:64:91:29:72:
85:56:bb:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org