Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/FJl6kRj61ikxY7JxZFhL7TgZ8tc.roa
File: FJl6kRj61ikxY7JxZFhL7TgZ8tc.roa (raw, json)
Hash identifier: uERL1YQLQqeecfaKJs69gDz3uZw2GkKqhyNAMzqZhW4=
Subject key identifier: 14:99:7A:91:18:FA:D6:29:31:63:B2:71:64:58:4B:ED:38:19:F2:D7
Certificate issuer: /CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Certificate serial: 018570DE325DF74673A96E7C9A7C99111EFD
Authority key identifier: 5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/FJl6kRj61ikxY7JxZFhL7TgZ8tc.roa
Signing time: Mon 02 Jan 2023 05:04:48 +0000
ROA not before: Mon 02 Jan 2023 05:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397568
IP address blocks: 2a06:6540:2003::/48 maxlen: 48
2a06:6541:2003::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:32:5d:f7:46:73:a9:6e:7c:9a:7c:99:11:1e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Validity
Not Before: Jan 2 05:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14997a9118fad6293163b27164584bed3819f2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f8:53:2c:ea:0f:34:c5:9f:81:56:90:21:b6:
31:86:33:7b:90:ae:5d:21:92:ca:97:88:9c:73:df:
13:50:3c:56:fd:79:86:fd:41:22:ef:23:9b:5e:34:
09:ab:62:93:7e:62:16:d0:18:aa:93:ed:57:ad:c8:
5f:f1:7c:1a:20:82:7b:f8:ff:f5:a4:80:66:f7:36:
54:cc:19:72:d7:c1:ce:04:74:66:27:ad:38:6a:4b:
92:4d:3a:d3:75:7b:15:81:a6:92:0d:24:e6:34:4e:
21:e9:10:ba:ff:81:5e:7e:b9:44:f1:c9:7d:7d:4b:
30:0f:d3:37:d0:9c:e2:b9:2a:80:fc:df:70:77:a3:
35:6f:40:33:0c:d3:63:34:0a:23:ed:ca:1d:38:9f:
a1:35:cb:e9:fc:ae:ef:a4:d1:87:a4:fb:d5:a2:a0:
a1:43:46:d4:2a:cc:bc:83:62:08:95:b3:47:e6:70:
97:d0:17:5f:56:1e:db:22:25:ca:da:d3:a4:e1:a4:
1b:f2:b7:81:49:38:d8:11:a3:56:2e:5a:c4:4c:9d:
43:c5:42:bc:89:eb:a8:b0:e6:41:88:b6:e3:3c:6e:
81:d6:55:dd:d6:fd:15:59:51:de:96:9b:ad:bb:27:
75:e9:5a:f3:78:bc:b5:9b:87:41:cd:1f:5c:ed:d5:
d1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:99:7A:91:18:FA:D6:29:31:63:B2:71:64:58:4B:ED:38:19:F2:D7
X509v3 Authority Key Identifier:
keyid:5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/FJl6kRj61ikxY7JxZFhL7TgZ8tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/WsRmzIn5204xxUANKueiv_2yJUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:6540:2003::/48
2a06:6541:2003::/48
Signature Algorithm: sha256WithRSAEncryption
0e:73:15:1a:82:fd:bc:03:e0:8b:51:e7:87:77:77:fb:4c:c2:
d2:0c:09:d5:07:50:08:12:b6:b2:78:6e:0e:b2:8f:61:38:96:
33:f7:a7:47:43:93:8c:ad:ac:a0:44:2f:ea:fa:23:6e:c8:e4:
94:13:e2:3d:bd:97:11:d9:cd:67:22:73:7c:2e:8e:4d:ad:12:
b1:46:4b:5f:46:3b:df:de:0b:08:31:20:77:27:18:e6:56:78:
9e:90:a8:e7:39:f6:c6:19:7d:61:d4:c7:e8:31:da:13:b2:6a:
d5:b8:86:3a:80:d4:ac:68:8e:50:1b:a5:c6:18:db:50:97:c2:
83:a1:77:56:34:f2:e6:c3:6a:23:a7:fe:2d:8a:9c:a0:8e:f0:
01:3c:b0:bb:f1:32:a2:6c:4e:51:35:16:85:05:15:91:8d:1a:
30:ce:a1:bc:e4:fe:6a:15:8e:87:52:8f:bb:45:9a:3a:0b:9a:
44:ef:af:3b:43:fc:c4:97:d1:62:4a:fe:7b:6e:cc:8e:c3:43:
b2:85:b6:36:5d:23:4e:62:d0:e7:ac:29:0e:50:61:d2:7a:8e:
3c:c9:e8:67:c8:c9:b2:ec:09:0b:5c:aa:b8:c1:4a:33:80:0f:
c3:eb:75:ec:a8:c2:e6:99:7d:5b:e9:34:bc:df:cd:ac:8e:75:
da:03:89:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:08 2024 by rpki-client on console-fra.rpki-client.org