Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/aWzqOVgcLVQ-GasELtDTOjtt284.roa
File: aWzqOVgcLVQ-GasELtDTOjtt284.roa (raw, json)
Hash identifier: ZdQG+ZDNnUvlB5uo/ZdGi5PcYq9i3tGukGp4jbGFAms=
Subject key identifier: 69:6C:EA:39:58:1C:2D:54:3E:19:AB:04:2E:D0:D3:3A:3B:6D:DB:CE
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018C1C42AF3B8E886E07A749CE9123D72981
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/aWzqOVgcLVQ-GasELtDTOjtt284.roa
Signing time: Wed 29 Nov 2023 18:06:21 +0000
ROA not before: Wed 29 Nov 2023 18:06:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52041
IP address blocks: 2a0e:4bc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1c:42:af:3b:8e:88:6e:07:a7:49:ce:91:23:d7:29:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Nov 29 18:06:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=696cea39581c2d543e19ab042ed0d33a3b6ddbce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:41:f6:0b:fa:7e:d7:db:4c:df:f1:32:ca:a8:
eb:dc:6d:91:43:80:43:c4:fc:c4:1d:ba:64:bc:de:
54:64:23:ca:28:c0:5c:ad:a5:08:0c:d9:48:41:df:
ec:16:2e:4b:e0:87:e4:bd:dd:4a:d5:f5:a8:bf:43:
e4:9b:ef:2a:85:90:7b:30:34:ce:e8:18:d0:73:e6:
29:de:2d:22:2f:eb:aa:48:0a:cf:cf:1b:47:ec:47:
7b:6a:0a:01:3e:7e:a5:0c:d6:17:6f:0c:0d:31:32:
7a:7c:d2:ab:c6:35:7f:b0:3a:5a:09:96:5e:e5:f9:
63:23:3a:9f:83:98:0d:dc:04:f9:a2:bc:3a:8b:59:
8a:ec:89:35:54:29:33:bc:ae:17:28:74:22:25:50:
f6:7a:80:56:39:6e:c1:c0:47:1b:d4:ec:44:38:dd:
c0:8a:0e:72:07:29:37:3d:f2:db:69:f8:31:d5:fc:
a7:c1:8a:c0:3f:2d:64:8c:c1:9f:0a:56:3b:5c:7f:
00:8f:2f:e3:d5:cc:cb:c7:78:8e:30:6b:94:6e:ef:
84:37:ba:0e:44:a3:2f:e3:28:67:bc:01:d5:7a:a9:
89:2f:d9:f9:93:be:9e:e3:0b:fd:d9:71:2d:31:37:
e2:22:c0:4a:e8:cd:97:bd:6b:fc:10:55:3d:6c:35:
00:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6C:EA:39:58:1C:2D:54:3E:19:AB:04:2E:D0:D3:3A:3B:6D:DB:CE
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/aWzqOVgcLVQ-GasELtDTOjtt284.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc1::/32
Signature Algorithm: sha256WithRSAEncryption
74:55:95:07:e5:e3:30:ce:98:1c:c0:9f:49:fc:b3:fa:ca:33:
bf:2a:98:dd:f0:24:f0:37:ba:b4:35:6b:c5:9c:6d:e4:e8:2e:
57:91:24:ae:72:4a:fe:a0:c0:6b:34:ad:13:8c:e3:c3:c2:6d:
82:de:b4:b4:5f:c2:08:be:65:1e:22:3e:48:82:43:ba:7e:c4:
07:8a:c9:79:b4:cb:38:c5:02:33:b6:2b:ef:b8:e3:fa:e6:ec:
4e:65:69:38:02:a2:d5:f9:2d:d0:46:47:5a:ec:d6:22:7a:fe:
24:b7:af:cd:7a:40:78:4a:da:27:49:68:fe:5f:de:0f:1e:50:
2d:57:f8:76:d0:ae:5f:5e:74:d8:1c:77:31:c6:74:a2:82:ef:
3f:18:2a:77:70:74:6d:12:bd:df:a7:8d:99:1d:fc:0d:4f:3c:
f2:50:3e:94:39:84:80:10:1c:fd:f0:32:ee:1f:90:49:c7:2a:
a1:34:c9:9e:6b:8e:e0:e2:b2:52:a2:95:75:2c:a8:c5:5e:f1:
f8:45:05:ad:c6:da:90:b1:e4:95:35:e2:e3:32:d1:bb:32:4b:
0c:e3:65:ba:2a:25:27:d0:de:2b:84:d1:90:d3:b7:c3:de:f6:
db:0f:43:a2:f4:1f:95:86:00:90:2c:78:e9:37:4e:aa:c7:ea:
ae:3a:18:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org