Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/5hu9nzfpitZ9eJeKcUtBYXiqXSY.roa
File: 5hu9nzfpitZ9eJeKcUtBYXiqXSY.roa (raw, json)
Hash identifier: gEHq00KyJw+WqerWkJGuxay1r4+t+FhwCRwbtzkrtlY=
Subject key identifier: E6:1B:BD:9F:37:E9:8A:D6:7D:78:97:8A:71:4B:41:61:78:AA:5D:26
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018FD0C784FAE49204755F8574AAA3CE2383
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/5hu9nzfpitZ9eJeKcUtBYXiqXSY.roa
Signing time: Fri 31 May 2024 22:31:27 +0000
ROA not before: Fri 31 May 2024 22:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 142418
IP address blocks: 2a0d:2586::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 28 Oct 2024 23:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d0:c7:84:fa:e4:92:04:75:5f:85:74:aa:a3:ce:23:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: May 31 22:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e61bbd9f37e98ad67d78978a714b416178aa5d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:10:e7:ea:90:9c:2c:c3:35:48:05:77:12:47:
74:a6:16:4d:24:99:06:52:e5:a2:d7:96:14:9a:9a:
e0:f4:b4:7a:bf:79:d9:0d:ca:a7:f5:d7:c4:87:fc:
ed:dc:4e:6b:98:18:3e:34:b2:8a:cc:40:43:38:34:
95:c7:9c:43:d7:d5:c9:b0:88:2a:9b:8c:c5:3c:35:
74:42:6a:74:a2:16:cf:8d:1b:60:d4:cf:69:a1:8f:
d2:60:ad:f4:ba:53:42:8d:a2:84:de:b2:39:2a:68:
4f:db:db:a5:b6:c7:8c:1f:f1:0e:b9:22:83:5a:ff:
02:15:af:12:ff:76:48:b8:53:b0:76:a1:01:ea:7c:
e2:61:b9:7c:b2:c2:df:d5:8a:5f:7d:44:50:0a:46:
a5:6f:01:13:87:87:15:f6:0e:63:a7:cc:7f:33:e6:
2f:d4:da:c4:c6:de:6d:f7:60:57:b7:d6:e5:90:d8:
43:87:22:7f:c1:28:26:64:1f:b5:ac:5b:d6:04:2f:
81:33:15:14:18:24:d9:a5:0f:52:a8:75:6c:48:fe:
fe:cd:30:65:e5:b0:7b:f2:52:8c:17:db:55:34:45:
37:5b:89:44:d8:c8:84:db:14:92:1d:62:ed:9d:6f:
74:3e:fb:4c:79:84:f3:76:3a:83:ed:6d:fa:9f:9a:
62:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1B:BD:9F:37:E9:8A:D6:7D:78:97:8A:71:4B:41:61:78:AA:5D:26
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/5hu9nzfpitZ9eJeKcUtBYXiqXSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2586::/32
Signature Algorithm: sha256WithRSAEncryption
20:f2:8e:c0:2a:c2:bc:0f:f8:73:48:c9:33:f4:01:8a:bd:21:
95:c5:f8:35:92:9e:ee:bf:29:c4:e2:ec:24:72:9c:03:8f:e5:
0c:0f:e3:31:0e:8f:a9:e2:d2:b7:5e:8f:c4:a9:8f:ac:30:5b:
a9:ab:17:ef:17:93:48:c8:d9:e3:39:6a:11:34:e6:18:ac:6f:
19:19:b1:a5:ad:0f:9b:4d:25:3a:81:45:61:a9:1c:dc:48:27:
62:1f:2a:a1:77:99:70:af:2a:22:7b:ec:a9:b2:92:12:bf:ad:
54:75:d3:c7:0b:4e:de:50:8f:43:98:2d:65:51:24:a2:78:de:
1e:2e:8e:4a:58:80:40:61:08:e8:50:01:a7:3c:3d:91:bc:84:
a9:e2:54:1b:02:66:a8:83:7a:51:eb:ed:13:f6:3b:a7:fc:92:
27:a9:f3:2d:f8:5e:74:ca:19:f1:a9:61:40:53:a3:5a:ed:92:
1d:7e:b2:19:57:6f:00:a8:92:99:73:12:2a:73:6f:3f:c2:f7:
a6:d4:e7:9a:b9:39:cc:45:99:5a:38:ee:d9:07:62:2e:c7:47:
91:2f:d4:30:96:f1:a5:f7:f4:db:c4:7d:85:06:37:2d:f6:ef:
53:ed:6b:e9:b9:c0:9d:e7:3e:77:74:6d:1f:53:5a:06:2e:48:
4e:bf:69:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 02:38:19 2024 by rpki-client on console-ams.rpki-client.org