Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/M4xYLm4_hEOs_0rCW_syn6nr8gg.roa
File: M4xYLm4_hEOs_0rCW_syn6nr8gg.roa (raw, json)
Hash identifier: f/Ji+BdzXNyTfq3Qv/W3HJmSWDE+5ieCmDIhUU+qO6g=
Subject key identifier: 33:8C:58:2E:6E:3F:84:43:AC:FF:4A:C2:5B:FB:32:9F:A9:EB:F2:08
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018D4142C6BF93192146B1B9183582EB7F86
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/M4xYLm4_hEOs_0rCW_syn6nr8gg.roa
Signing time: Thu 25 Jan 2024 15:35:11 +0000
ROA not before: Thu 25 Jan 2024 15:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206766
IP address blocks: 2a0f:6fc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 09 May 2024 19:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:41:42:c6:bf:93:19:21:46:b1:b9:18:35:82:eb:7f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 25 15:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=338c582e6e3f8443acff4ac25bfb329fa9ebf208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d7:11:ee:2e:3a:a7:22:16:7d:9c:57:06:3d:
f7:32:ed:d0:87:84:db:ea:c6:54:b7:76:92:8a:74:
d2:76:e7:39:bd:b2:45:5d:4d:31:9a:e6:86:4c:56:
0a:94:b1:1d:c6:e2:d3:37:32:da:02:3b:ac:47:29:
5e:34:8a:55:18:5c:5e:49:75:2b:57:cc:c1:8b:a9:
dd:23:1b:9b:59:7a:4a:3d:1d:e0:55:71:2e:ac:a9:
a6:50:20:18:f8:59:70:22:de:94:98:7c:5d:a2:94:
51:88:1e:b1:30:2a:ad:1b:2c:d6:9f:c3:52:ec:22:
16:b9:c5:ca:70:5d:7f:32:5f:be:70:06:06:eb:af:
8e:a5:93:e7:e1:40:dc:d6:55:e0:eb:00:9b:79:46:
08:19:c5:9c:c4:eb:64:c6:95:b5:7b:61:e9:14:6a:
c1:4d:0c:5d:aa:64:d7:c4:b4:1f:65:4a:eb:5a:31:
45:b0:d8:bb:c3:c0:b8:71:b1:b1:12:78:d7:0d:b9:
3f:1e:7c:97:e0:d3:c9:81:e9:5e:94:e6:fb:0b:d4:
08:7d:ce:18:af:9d:36:77:6d:28:be:2e:57:eb:0d:
47:5b:89:7d:3d:78:4c:5e:a7:f1:6b:2d:74:3f:d1:
c1:7c:b4:60:6f:11:9e:e7:34:60:be:3b:35:60:9a:
b7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8C:58:2E:6E:3F:84:43:AC:FF:4A:C2:5B:FB:32:9F:A9:EB:F2:08
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/M4xYLm4_hEOs_0rCW_syn6nr8gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6fc1::/32
Signature Algorithm: sha256WithRSAEncryption
7c:f7:4c:a5:f9:39:7e:bf:7c:30:01:2e:81:72:ec:f0:6f:0f:
fe:00:c6:92:98:a5:78:65:0f:d9:f0:d2:5a:ea:b2:b5:90:c5:
62:cc:15:2b:ae:b0:bb:30:3d:45:f5:32:d2:6b:db:e3:2c:49:
50:f0:6f:75:f7:66:9e:10:b5:b0:b8:26:2a:55:e8:09:20:fa:
cf:a6:64:0a:2f:b4:4d:58:6b:27:f2:f2:f1:04:9a:1e:a1:af:
e4:61:74:10:a7:06:80:01:0b:75:31:42:eb:8d:15:00:40:76:
5b:07:3c:df:54:ad:b1:a6:ab:16:d0:f4:f9:ee:5a:17:d7:1d:
7d:68:89:6d:16:0a:3d:36:4e:23:df:4f:95:8f:19:ec:2d:cf:
5b:8c:22:58:34:61:96:fb:61:1e:7d:44:ed:94:d2:ee:9a:4a:
89:58:74:28:c0:57:83:8b:2a:a1:95:74:5c:5f:e6:9f:e2:74:
e8:76:0d:45:7f:90:bd:f3:70:73:5a:14:03:a7:d0:08:b2:f4:
28:d0:69:e6:bc:ce:80:27:0e:93:6a:b5:ea:a9:24:fa:b9:cf:
c0:38:5c:99:cd:36:6d:79:ca:72:15:5f:73:ef:fc:2f:6c:11:
25:c7:ca:c9:0d:a4:79:14:c0:09:8f:1a:3f:8a:6d:10:31:04:
06:27:2e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org