Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/AX58DpknxLuBkR1qpd6TU1dcGIM.roa
File: AX58DpknxLuBkR1qpd6TU1dcGIM.roa (raw, json)
Hash identifier: 5x4mVx14wLOlpDKWwH6tiXTVGRvD6xATegqQ56qFhKk=
Subject key identifier: 01:7E:7C:0E:99:27:C4:BB:81:91:1D:6A:A5:DE:93:53:57:5C:18:83
Certificate issuer: /CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Certificate serial: 018FC7E1E9F5A9CE2006A3E3D7E7DA03411C
Authority key identifier: 3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/AX58DpknxLuBkR1qpd6TU1dcGIM.roa
Signing time: Thu 30 May 2024 05:03:42 +0000
ROA not before: Thu 30 May 2024 05:03:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63150
IP address blocks: 2a14:4900:2000::/36 maxlen: 48
2a14:4902:c000::/36 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 06:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c7:e1:e9:f5:a9:ce:20:06:a3:e3:d7:e7:da:03:41:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Validity
Not Before: May 30 05:03:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=017e7c0e9927c4bb81911d6aa5de9353575c1883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:95:6b:4b:d6:61:44:ed:b2:5a:d2:b6:ee:53:
69:64:cb:e0:d8:05:86:d7:71:25:f6:1f:86:09:c6:
2c:83:28:c1:9d:7d:d0:3c:24:fc:10:9d:67:bf:1d:
9d:f9:4a:e5:0b:96:e0:d8:e9:1b:e6:b1:ee:f2:a8:
82:31:b5:fb:bb:9d:09:1e:43:bf:2c:ec:a6:eb:23:
38:9b:0e:4c:b0:68:ed:14:8a:c6:b6:1f:ed:8e:7b:
f4:7e:71:14:7c:53:8a:8a:b1:54:ce:ef:a5:61:7a:
93:70:21:e1:80:15:ae:f8:28:63:09:46:1e:13:58:
c1:8c:5a:d0:f3:ba:ba:09:8d:c0:08:b4:26:88:c0:
06:33:64:9d:fc:bc:c7:e1:5a:94:f7:f4:e1:21:f6:
b4:13:d9:e8:45:54:eb:8b:30:11:29:99:71:96:34:
77:16:05:75:6b:f4:7a:96:24:79:9f:5c:68:c3:b6:
6e:d0:63:10:d5:be:b7:27:91:5f:e2:86:e2:0d:35:
05:c3:8b:ba:ea:c7:8b:4b:66:4b:d6:24:0c:04:43:
87:e7:27:41:0c:3f:dc:d1:ee:2a:0a:51:f8:95:ae:
00:81:22:2b:25:b2:e7:9c:e8:f3:0a:55:6c:31:98:
b5:e6:93:7c:e3:84:b4:cc:d8:8a:08:f1:42:35:1f:
63:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7E:7C:0E:99:27:C4:BB:81:91:1D:6A:A5:DE:93:53:57:5C:18:83
X509v3 Authority Key Identifier:
keyid:3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/AX58DpknxLuBkR1qpd6TU1dcGIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4900:2000::/36
2a14:4902:c000::/36
Signature Algorithm: sha256WithRSAEncryption
c6:f5:45:33:97:90:e0:48:f3:d9:0e:52:61:06:7e:29:0b:96:
35:bc:8f:fc:02:ab:e7:1d:e1:6c:ed:58:68:12:54:ab:35:1b:
62:93:c1:bb:97:23:db:98:1d:a7:c9:ee:e8:4b:44:d1:3b:d1:
00:49:29:c7:9a:fc:df:35:80:94:f5:74:ca:0f:a1:55:b0:48:
e1:14:fb:58:7b:ec:41:ed:0f:1e:b6:ac:6e:dd:53:09:4a:b3:
de:7e:58:0d:20:a0:f9:88:f2:2b:b2:36:e1:09:55:6b:f3:dd:
d7:7a:3b:47:5a:08:c3:b2:1b:57:8b:4b:f2:a1:cf:1d:af:b8:
de:ed:e3:47:ac:44:da:ff:78:f2:4b:30:0d:2c:ab:97:4d:16:
62:0e:7a:78:de:fa:2d:e0:95:61:77:27:3b:90:92:99:ae:7c:
ac:60:73:e6:37:05:0a:b3:df:6e:47:03:ad:79:0e:56:16:fa:
26:28:45:0d:e0:40:7e:79:20:d2:eb:db:d5:bf:90:7a:34:3e:
f7:5e:cd:99:8d:37:27:13:a0:06:cc:d4:d3:4d:d7:b2:6d:22:
57:4e:05:f9:69:88:77:35:82:b4:db:1e:71:07:41:95:1a:bf:
c5:7c:16:f3:28:7b:5e:5b:33:9b:ed:10:fb:f2:a8:45:4f:b6:
3e:a7:76:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:46 2024 by rpki-client on console-fra.rpki-client.org