Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Y5czU5n4ZoIDqASDHcxLpg_n2jw.roa
File: Y5czU5n4ZoIDqASDHcxLpg_n2jw.roa (raw, json)
Hash identifier: Ao6Hq+ThGoea0YAiqFyWCtvd+Yu+oJ8GeUa84UooXL4=
Subject key identifier: 63:97:33:53:99:F8:66:82:03:A8:04:83:1D:CC:4B:A6:0F:E7:DA:3C
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FDF0A03F4FD7D5B70BDAAFF7E8366
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Y5czU5n4ZoIDqASDHcxLpg_n2jw.roa
Signing time: Sun 01 Jan 2023 21:14:46 +0000
ROA not before: Sun 01 Jan 2023 21:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58235
IP address blocks: 2a0e:aa01:ab01::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:df:0a:03:f4:fd:7d:5b:70:bd:aa:ff:7e:83:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6397335399f8668203a804831dcc4ba60fe7da3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:9f:e5:df:4f:bb:48:c3:e1:96:07:f0:2c:
89:18:da:ec:35:90:68:32:f5:7e:7d:0a:45:fa:75:
1d:bb:62:55:ae:80:3e:ea:d2:97:ce:85:f1:73:72:
01:26:48:11:80:37:3d:42:3e:76:8f:8d:b9:65:e0:
b5:f5:b5:a1:9f:11:24:4c:61:fe:17:dd:25:10:c6:
87:84:5d:4e:70:50:00:0d:63:64:c6:8c:7e:16:ee:
e2:7e:e7:38:be:84:52:b0:0f:29:28:5c:7f:06:6e:
a4:5b:a2:c1:eb:21:aa:9d:38:78:c0:33:e0:f3:41:
22:71:6a:7a:cd:5f:7f:5c:0d:29:bd:94:12:e6:ab:
de:cc:e7:e5:bb:1d:4a:4d:eb:67:9a:5a:43:54:92:
f1:b8:bf:29:ae:cf:f8:87:e3:b8:e0:6c:2e:2a:c9:
26:68:9f:a6:2d:c2:54:03:83:f1:6a:84:aa:9e:1e:
fc:4c:32:40:7f:5d:7f:73:9f:4c:8a:cd:2f:c0:49:
3a:c7:25:f8:03:07:d3:6b:21:48:f5:b5:cf:70:b7:
64:16:88:f5:42:4a:42:7c:60:5e:c1:dd:e6:34:b0:
a1:a4:fa:c7:44:5d:cb:da:81:e3:c4:ef:54:c0:3f:
a9:45:87:60:90:2d:5c:08:e9:a7:33:3b:70:81:95:
c2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:97:33:53:99:F8:66:82:03:A8:04:83:1D:CC:4B:A6:0F:E7:DA:3C
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Y5czU5n4ZoIDqASDHcxLpg_n2jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:ab01::/48
Signature Algorithm: sha256WithRSAEncryption
2e:ea:63:80:9e:ae:25:5d:d4:d8:0e:a4:7f:4a:97:1b:b5:5f:
70:d4:86:28:29:ea:f1:4a:91:fb:6a:2e:c3:70:c4:c6:22:71:
e6:a4:f5:ba:4a:d2:19:e7:c3:78:ea:60:41:d3:11:ec:c7:38:
12:47:09:41:c9:ca:eb:23:81:38:ba:36:41:fd:1d:c2:d1:7b:
0c:7e:89:3b:76:bf:39:69:58:8b:9a:63:07:e9:81:32:ae:a5:
69:6d:df:90:46:04:6b:2a:08:6f:c7:94:5a:bb:b0:51:4b:d6:
64:f6:bf:dc:ab:62:03:64:75:13:6b:75:89:79:df:86:c7:15:
26:95:9a:70:7b:96:8f:0f:ad:2b:e3:ba:54:b9:8a:07:b4:d6:
4c:fe:50:bf:39:9b:98:a7:ea:b1:0e:90:84:bc:40:c6:c5:af:
9f:44:88:d0:f7:ed:29:3c:e3:64:26:46:f8:53:94:16:01:aa:
c9:a2:ec:5a:de:5e:f1:75:38:18:91:b8:63:20:39:8c:8b:10:
54:83:28:a2:0e:41:09:6c:61:21:76:10:8f:ae:8b:05:c6:a3:
79:b8:66:07:f8:39:aa:8d:d1:b6:e3:b3:ac:0b:77:1d:4d:e9:
e1:0a:61:5a:74:07:2a:4a:78:ef:ce:a2:ec:5c:4c:a8:87:90:
df:21:28:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org