Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/e5kILvsj8ZvotRKzfqyqTCLNIIc.roa
File: e5kILvsj8ZvotRKzfqyqTCLNIIc.roa (raw, json)
Hash identifier: fcVWcLSRzwqKRItHe53TnW4anjsdBfK9p80+a4wyudk=
Subject key identifier: 7B:99:08:2E:FB:23:F1:9B:E8:B5:12:B3:7E:AC:AA:4C:22:CD:20:87
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E18B779496141708052EF33964112B7C6
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/e5kILvsj8ZvotRKzfqyqTCLNIIc.roa
Signing time: Thu 07 Mar 2024 11:41:01 +0000
ROA not before: Thu 07 Mar 2024 11:41:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3292
IP address blocks: 2a02:26f0:116::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 10:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:b7:79:49:61:41:70:80:52:ef:33:96:41:12:b7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 7 11:41:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b99082efb23f19be8b512b37eacaa4c22cd2087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:49:05:b2:c1:ad:d1:4f:b4:9c:37:b1:cc:28:
1e:34:12:4a:49:b2:fc:c5:3a:38:dc:c8:e2:d3:b1:
f7:11:c8:1b:45:29:17:20:08:93:6c:e0:7f:ce:d3:
0f:4d:f6:ff:ca:74:31:6d:d8:02:d5:fc:c6:19:d3:
cf:26:4d:94:ea:51:ed:e9:f4:29:eb:3a:d5:c0:2e:
5f:45:7a:24:eb:55:6f:e8:0a:60:c8:bd:7c:13:48:
2b:98:32:76:b8:a7:bb:1a:e4:23:ad:67:c1:a1:eb:
d4:d7:25:de:0d:8b:97:75:4f:57:1d:e9:58:c1:0e:
17:9e:e5:9c:88:7a:18:1d:c0:02:ac:6a:2b:6c:89:
6a:5b:7b:bc:61:0a:31:47:aa:28:5e:79:43:9d:c1:
6d:4c:76:92:20:6b:be:79:d3:70:2d:5e:d6:a5:89:
6d:12:8d:f3:1f:99:e5:e1:32:76:fa:bb:54:b8:79:
34:b5:3b:5b:d0:f2:40:ee:18:d1:74:dd:35:61:eb:
86:00:fb:e3:d0:3a:d0:65:0d:fd:a3:ba:bd:bc:28:
88:4a:a7:64:9b:80:8a:21:eb:b9:28:bf:68:21:21:
cb:41:c1:9d:2c:e4:94:e6:ba:1b:5e:4a:06:79:a0:
1d:66:3c:a5:19:5d:d6:16:ef:fc:96:33:86:38:2e:
9c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:99:08:2E:FB:23:F1:9B:E8:B5:12:B3:7E:AC:AA:4C:22:CD:20:87
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/e5kILvsj8ZvotRKzfqyqTCLNIIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:26f0:116::/48
Signature Algorithm: sha256WithRSAEncryption
16:ea:cc:fc:e5:c7:f4:1b:88:86:77:e2:b6:b0:85:20:80:f7:
ad:c9:6c:3c:4b:25:91:5f:03:fa:3d:21:d8:d3:57:a2:87:2d:
f2:5b:d0:0b:56:a0:b2:5a:b5:55:69:95:ff:59:d3:22:ff:88:
cf:40:1c:94:29:fc:a4:50:5b:f7:1c:4b:8a:5c:a5:35:18:4f:
e6:26:ad:22:80:7b:c5:f3:88:44:fe:7a:3f:9a:ee:8e:3c:17:
e8:f7:c3:df:05:98:75:5e:88:f1:cc:aa:6e:af:7d:7f:62:06:
ab:3e:f6:31:5e:7d:0b:c4:ed:17:b5:ef:07:e4:6d:a3:d7:e4:
ae:7d:4e:7c:b8:c3:8c:cc:7a:b1:79:30:93:34:50:a0:d3:12:
29:99:fc:f0:32:73:ee:30:77:83:a5:02:6d:33:08:5c:04:ea:
8d:b0:60:05:b4:ad:a9:f7:fc:6e:57:a2:68:ee:18:c0:05:fe:
14:7a:ec:f3:e0:ce:68:98:1d:ea:da:f8:d2:fa:e9:56:74:f4:
a1:ca:7c:9a:b8:a7:c9:a2:fb:d2:07:d6:ad:ee:00:66:56:f9:
e8:f6:22:ff:15:38:1a:cd:06:61:8d:17:e6:77:de:c3:17:4a:
a7:9a:e2:fa:87:15:f7:c7:c7:b4:ff:6e:ba:ce:39:07:ab:a2:
ca:b8:2a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 15:17:37 2024 by rpki-client on console-fra.rpki-client.org