Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/IsNaJ0Z1CJYKrAkml1V-yWap2Z0.roa
File: IsNaJ0Z1CJYKrAkml1V-yWap2Z0.roa (raw, json)
Hash identifier: Bd2JYIDH3al4Hjw7+H9VBK3UyRguShcHfFraskSm2pQ=
Subject key identifier: 22:C3:5A:27:46:75:08:96:0A:AC:09:26:97:55:7E:C9:66:A9:D9:9D
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018CC86FBF62C486DED644EE75C60050EC9E
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/IsNaJ0Z1CJYKrAkml1V-yWap2Z0.roa
Signing time: Tue 02 Jan 2024 04:30:15 +0000
ROA not before: Tue 02 Jan 2024 04:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44812
IP address blocks: 2a0e:4bc5::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 17 Apr 2024 12:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:bf:62:c4:86:de:d6:44:ee:75:c6:00:50:ec:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 2 04:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22c35a27467508960aac092697557ec966a9d99d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:bf:df:86:31:28:2b:0e:8f:1c:3d:18:9a:6f:
cc:b1:a3:c6:da:6d:2b:77:a9:6d:76:94:52:dc:3e:
71:6f:9e:f9:20:4b:54:3a:ba:72:2f:d8:2b:72:83:
34:fd:99:17:89:2d:de:6b:8a:b8:b8:e0:f7:58:9a:
f4:3b:09:eb:22:6d:6c:34:c6:88:3b:ab:61:d2:48:
e3:66:e9:7b:bd:ef:1a:b2:cc:53:e7:5c:26:ed:6b:
e3:ae:36:8e:1c:25:8b:be:0b:0a:3a:ee:27:ea:d0:
cf:af:9e:59:d0:b0:29:ac:8f:91:28:86:79:82:13:
13:3e:9b:ca:86:2f:a9:15:1d:26:79:03:e8:0b:f0:
58:30:61:0b:a5:79:50:d8:1c:8e:3e:fc:1a:8e:a5:
54:b8:d4:04:56:80:a9:39:36:54:a0:6c:22:4a:eb:
8a:83:a5:37:4f:82:ff:ff:b6:7e:fe:86:78:fa:61:
06:a1:e9:6e:6b:57:4d:de:bf:31:6e:45:35:de:38:
bd:27:41:76:bd:0c:a4:85:da:56:82:5e:ab:73:f5:
f5:ac:2e:a8:69:81:39:87:3b:45:ff:96:d8:7b:b3:
41:72:0c:db:d1:57:53:4d:d2:e4:f3:64:5f:96:ca:
39:8a:b9:b7:de:61:4a:e4:a2:e1:09:80:8b:cb:e5:
3f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C3:5A:27:46:75:08:96:0A:AC:09:26:97:55:7E:C9:66:A9:D9:9D
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/IsNaJ0Z1CJYKrAkml1V-yWap2Z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc5::/32
Signature Algorithm: sha256WithRSAEncryption
5f:bb:6e:83:19:f5:b5:bd:53:22:04:2f:e6:bb:19:08:6b:d6:
44:39:b0:1e:16:cf:b0:83:00:ba:b1:25:45:79:27:22:38:dd:
f8:10:24:fa:ae:ba:1e:89:f2:1b:6a:d1:12:15:2f:19:e7:9b:
12:17:fe:29:7d:bd:da:c5:0e:5e:32:91:42:ec:85:11:e3:2f:
07:10:c5:d8:6c:42:3f:25:39:4e:7f:8d:6f:84:81:70:a5:74:
35:fe:c0:eb:a4:65:e6:72:e6:d0:78:c9:7e:2e:ab:d4:5b:54:
ea:46:d4:2d:c9:ef:71:a1:b3:61:70:e3:1f:60:85:3b:20:37:
fd:0e:9f:6a:08:0b:83:39:b3:cd:c2:e1:1a:35:35:d4:0d:b4:
6a:49:0b:f5:4b:c5:9c:cf:86:05:3c:b3:e0:b5:3b:05:16:a3:
a2:53:f6:92:12:49:73:ec:60:51:ab:1c:da:50:f2:57:43:2e:
ce:01:ba:1c:7e:a6:1b:46:e7:5c:8a:1e:00:86:ad:ce:2b:92:
28:7d:ca:ba:51:4e:5f:28:1f:d1:84:59:70:82:12:ef:29:cc:
c4:98:50:4e:41:f5:fa:cd:e2:c1:7b:24:7d:2d:e8:fe:af:b7:
ad:85:0a:72:c7:3c:d6:72:f1:2f:e8:91:a5:43:fc:c9:87:65:
50:36:a9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org