Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/oLqcz6_oORMhoibNuVwE0Hp_jAs.roa
File: oLqcz6_oORMhoibNuVwE0Hp_jAs.roa (raw, json)
Hash identifier: N6kRJrtmF7H3kYxaPnVSJ8vvX0nWHeef1CTt2c8IiJg=
Subject key identifier: A0:BA:9C:CF:AF:E8:39:13:21:A2:26:CD:B9:5C:04:D0:7A:7F:8C:0B
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C416A58E20D77E627F54670C192D431
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/oLqcz6_oORMhoibNuVwE0Hp_jAs.roa
Signing time: Sun 01 Jan 2023 07:35:04 +0000
ROA not before: Sun 01 Jan 2023 07:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203314
IP address blocks: 2a0d:2587:8800::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 May 2023 08:11:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:6a:58:e2:0d:77:e6:27:f5:46:70:c1:92:d4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0ba9ccfafe8391321a226cdb95c04d07a7f8c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:40:84:e8:e8:0c:d5:6b:32:49:b0:58:18:06:
e4:8c:23:15:9d:82:29:08:3b:42:8f:a7:a1:66:da:
85:13:58:cc:73:ab:a8:e4:2d:77:92:62:31:81:a7:
28:5e:a5:68:8a:18:1b:3a:d6:1c:a6:af:e7:9e:28:
1c:f0:ce:64:52:d1:4a:6c:9b:33:71:e9:d6:83:44:
18:b3:51:85:07:56:11:cd:da:54:86:8e:bd:c9:6a:
3e:49:c7:9b:a8:99:1f:c9:6e:54:23:38:1c:85:57:
e9:e2:27:24:ce:a6:93:b4:37:4c:51:dc:6b:cf:d0:
95:f9:39:9d:e1:da:8d:2c:a0:95:17:60:2a:04:e6:
3a:10:fa:ce:fd:ed:38:d3:ff:e7:0c:f1:8f:e3:3c:
c9:bf:bd:48:59:19:f7:cf:aa:c2:d8:f2:3b:06:d0:
cc:5a:00:77:8a:29:97:01:fd:dd:37:76:21:d0:10:
f8:f3:08:50:cb:61:4a:e3:c4:3a:21:13:33:ad:36:
3c:27:2b:1c:2f:0b:a1:f4:e1:ee:79:d2:f7:4d:5e:
5d:a8:9c:bc:07:c7:16:e3:36:84:dc:2d:fc:79:ba:
c4:a4:9f:b0:a1:19:8c:a1:08:f1:ee:6c:a7:90:a5:
0e:a1:f2:6b:57:20:af:1d:ae:75:b0:98:39:4c:c7:
5d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BA:9C:CF:AF:E8:39:13:21:A2:26:CD:B9:5C:04:D0:7A:7F:8C:0B
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/oLqcz6_oORMhoibNuVwE0Hp_jAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2587:8800::/40
Signature Algorithm: sha256WithRSAEncryption
b4:fc:fd:f7:60:e0:06:5c:59:a2:67:1d:e2:3c:26:37:c0:65:
a7:2c:0d:f8:a3:d5:0d:fc:99:89:4d:78:a3:b9:fd:ef:fc:c8:
25:03:d5:f4:b1:28:45:d3:22:9d:8b:ef:d6:c8:3a:b1:cf:c9:
ab:da:53:06:aa:56:da:24:18:1e:81:23:61:5d:95:3d:3b:94:
0b:36:e0:5e:13:3e:f3:fb:2a:b6:ef:3f:7a:81:39:15:ee:7a:
f7:87:9d:e6:3d:93:dc:e7:e7:d1:f3:33:6e:f1:00:a2:e0:9e:
a6:bb:c9:14:78:fa:71:ea:09:d5:1f:a9:6f:b4:9a:60:4a:da:
5a:79:1c:09:68:d9:a3:2d:f3:9f:de:5c:29:3b:14:c6:4e:bd:
1e:aa:85:ac:ce:10:8b:35:af:bd:c8:5d:1b:6d:43:84:b7:db:
69:a0:7d:1a:10:00:b6:b4:16:40:9d:5e:95:e1:53:f3:b2:6d:
66:38:4e:7c:f9:9a:aa:6b:21:ba:77:dc:f2:ef:8a:1e:b4:51:
60:4e:23:b2:6b:e7:18:39:ee:77:b0:b4:ff:69:9c:39:21:bc:
a2:4c:42:e3:99:35:c9:0e:43:d2:d7:ab:7b:2f:67:58:79:f7:
8f:f2:f1:c7:c7:f0:db:9b:d5:70:13:2e:c3:6e:cf:b5:15:67:
af:11:57:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org