Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/U5bY6izY-gSCVMsrQiLUN6KvQOA.roa
File: U5bY6izY-gSCVMsrQiLUN6KvQOA.roa (raw, json)
Hash identifier: f0HU+yqDkC5sOAY6WXnFtfxV0ulgc+EUXaUisQRAl8Q=
Subject key identifier: 53:96:D8:EA:2C:D8:FA:04:82:54:CB:2B:42:22:D4:37:A2:AF:40:E0
Certificate issuer: /CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Certificate serial: 01876A5D28BA7EE48AAD7C12703D82F52D36
Authority key identifier: AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/U5bY6izY-gSCVMsrQiLUN6KvQOA.roa
Signing time: Mon 10 Apr 2023 08:51:42 +0000
ROA not before: Mon 10 Apr 2023 08:51:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202611
IP address blocks: 2a0b:1440::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Apr 2023 09:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:5d:28:ba:7e:e4:8a:ad:7c:12:70:3d:82:f5:2d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4a29c6138e2d93d54a36328b94cb1f8a382a6b
Validity
Not Before: Apr 10 08:51:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5396d8ea2cd8fa048254cb2b4222d437a2af40e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:24:12:d6:f2:a9:c4:2b:47:65:71:dc:28:
c4:34:0b:66:d3:9f:d2:36:b3:27:72:5f:a1:22:d5:
4d:98:58:c4:08:70:53:1f:c0:a1:32:8e:e6:3e:fe:
91:a7:37:1e:0c:63:e8:27:fe:72:0e:fa:e4:fd:9d:
78:72:65:c4:e7:fb:62:9e:51:92:0c:c9:f1:01:bd:
f8:bd:d5:22:44:cf:c0:f7:fa:bb:e0:9e:7f:61:24:
6e:f9:dc:f3:43:ad:13:ec:cc:27:0e:a3:04:0d:60:
87:7f:41:d1:05:30:8b:fb:ed:0a:c5:b5:4f:e7:5e:
e2:82:27:75:b0:64:90:4d:26:1f:14:de:d8:60:ed:
74:84:a1:2f:0d:54:73:a3:fe:c7:69:7f:dd:d8:58:
1c:f8:44:8e:0f:f9:ae:a9:56:ef:08:46:a0:20:80:
f8:f5:ea:b2:82:86:43:30:c5:13:e2:13:b7:44:7d:
aa:fe:a1:a5:e0:ac:ee:f8:e8:8d:14:9a:32:2f:68:
95:20:09:11:6b:eb:70:99:aa:a7:d9:50:b5:ac:75:
6a:4b:50:a5:ed:1b:7c:03:c5:6e:43:dc:3a:d4:f2:
82:95:d0:e7:dc:fc:40:e4:30:cb:2d:e8:65:8a:b8:
39:c3:0c:10:6c:63:3d:e6:ff:11:72:01:16:ca:7c:
36:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:96:D8:EA:2C:D8:FA:04:82:54:CB:2B:42:22:D4:37:A2:AF:40:E0
X509v3 Authority Key Identifier:
keyid:AE:4A:29:C6:13:8E:2D:93:D5:4A:36:32:8B:94:CB:1F:8A:38:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rkopxhOOLZPVSjYyi5TLH4o4Kms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/U5bY6izY-gSCVMsrQiLUN6KvQOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/35be04-d5b7-44aa-ade4-13401d1f22d2/1/rkopxhOOLZPVSjYyi5TLH4o4Kms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:1440::/32
Signature Algorithm: sha256WithRSAEncryption
57:61:aa:12:76:f6:ef:42:40:5e:ca:d1:ce:66:45:fa:8d:e8:
b7:b4:3f:74:a5:8e:d4:d8:36:62:ba:ca:c9:d1:49:89:5f:98:
ee:16:ed:fc:f0:64:0a:23:70:92:16:fa:25:34:fb:bb:23:f0:
80:77:78:e3:75:e3:81:a2:e0:a8:7f:32:20:c5:16:b6:c0:83:
4c:4f:a9:df:1f:d8:b8:45:a8:f8:af:47:f8:29:be:c6:38:58:
24:19:35:02:2c:fc:f9:67:be:94:cf:13:1b:b7:03:0b:fa:54:
bb:0c:8f:e1:aa:05:b8:0a:01:3a:db:73:a6:1d:d9:9d:e3:2f:
f8:64:12:35:93:ba:3d:7a:ce:76:35:64:a5:a2:57:ac:eb:e1:
42:0c:32:9d:5d:de:09:d6:c4:d6:95:d6:e7:0a:da:f2:b6:6d:
69:6e:d0:81:fe:09:79:3b:4a:c5:a9:23:9c:d1:aa:a6:82:75:
f5:30:e6:55:48:6e:31:5c:2f:ee:02:6c:53:fa:fc:f9:46:ea:
32:a0:41:5c:a9:bf:03:e1:8f:77:9d:cf:f3:bb:4c:20:d3:17:
68:79:09:e1:66:06:ee:05:37:b6:8c:9f:eb:0a:58:6a:0b:36:
55:92:71:95:f9:c0:64:2b:4a:60:2e:d2:49:85:b3:0a:3f:3e:
f4:a6:3a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:19 2024 by rpki-client on console-fra.rpki-client.org