Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/1e238clBds-dAUanCQza0_N7-lU.roa
File: 1e238clBds-dAUanCQza0_N7-lU.roa (raw, json)
Hash identifier: NtFz5ibXFHZMbrb0ydf3KTAGXg5H3sHt4xpgMzbnMVQ=
Subject key identifier: D5:ED:B7:F1:C9:41:76:CF:9D:01:46:A7:09:0C:DA:D3:F3:7B:FA:55
Certificate issuer: /CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Certificate serial: 018FE9642E4CFEFB716398E8A56BD7D74533
Authority key identifier: 5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/1e238clBds-dAUanCQza0_N7-lU.roa
Signing time: Wed 05 Jun 2024 17:13:27 +0000
ROA not before: Wed 05 Jun 2024 17:13:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2a0a:7744::/32 maxlen: 32
2a0a:7745::/32 maxlen: 32
2a0a:7746::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 07 Jun 2024 23:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e9:64:2e:4c:fe:fb:71:63:98:e8:a5:6b:d7:d7:45:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Validity
Not Before: Jun 5 17:13:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5edb7f1c94176cf9d0146a7090cdad3f37bfa55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:dd:0b:f6:bd:7c:9b:27:45:f6:46:49:da:a1:
c4:23:a9:83:c1:c0:85:f9:22:c1:66:b0:38:fa:14:
c5:69:bd:f4:82:96:c1:1b:45:77:d0:df:bf:66:d5:
47:b3:f8:2c:ef:5d:70:56:aa:86:dd:cc:e5:c4:70:
7f:2c:55:12:e3:9d:d7:2e:97:e9:34:42:07:27:41:
10:7a:3e:1e:89:1c:78:fe:fe:a4:7b:70:52:56:2b:
a6:11:36:e8:f5:28:8e:9b:a2:0a:b0:7c:c7:32:65:
bc:39:e1:11:c0:b2:16:1d:e6:98:ba:4c:f9:72:5c:
1b:02:2a:7b:38:c0:17:20:19:55:b8:04:df:b9:99:
f5:38:28:de:c9:f5:52:89:a6:ba:07:a9:41:ba:b0:
a8:43:4e:12:b2:91:a4:ab:1b:81:be:fa:cc:cb:90:
71:87:9e:13:15:cc:26:86:3e:c1:df:5e:f5:fa:f6:
20:8d:ef:62:22:55:17:2c:0a:db:40:2b:0f:96:30:
e3:95:34:2a:ee:ed:a2:3d:3c:84:57:10:53:b5:dd:
31:f1:bb:9c:54:9d:64:05:07:00:bb:a1:da:4b:02:
47:8e:6b:d0:29:0f:49:64:03:66:97:52:6f:74:0a:
e3:df:bf:71:07:7e:a1:2e:ad:98:f3:fb:b1:71:7d:
16:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:ED:B7:F1:C9:41:76:CF:9D:01:46:A7:09:0C:DA:D3:F3:7B:FA:55
X509v3 Authority Key Identifier:
keyid:5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/1e238clBds-dAUanCQza0_N7-lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:7744::-2a0a:7746:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8c:21:1c:99:03:32:e4:9b:ba:93:4a:f8:31:77:3c:7a:4b:36:
fa:79:b5:af:a4:8c:7b:27:e5:d6:90:df:f1:a6:d5:26:da:e1:
ac:8b:ab:ce:66:e9:53:46:75:56:d0:15:62:00:6c:e5:22:6b:
5e:5a:4c:c0:8d:41:9c:8b:d6:49:48:c0:41:4a:c1:ea:f5:45:
78:ba:0e:85:ca:b7:32:e9:37:dd:9c:9f:dc:1b:31:63:3c:d1:
54:d9:d7:12:12:9e:4a:61:8c:cb:cb:48:dd:6c:0f:b3:15:4e:
6c:ca:15:47:b2:c0:85:ab:b0:5d:06:6d:2d:a7:91:89:84:31:
a4:e0:8f:cf:fc:b1:f8:ed:6b:b1:7b:4b:30:b8:0f:3f:55:5f:
09:aa:71:5a:73:1a:bc:01:10:19:3a:59:4c:f8:f6:eb:b8:a3:
d1:34:ae:94:b1:50:3a:b2:8c:54:0b:66:b5:f7:c9:91:5b:37:
bc:c8:9d:0c:6e:bf:2c:d0:db:f1:3e:85:59:36:20:33:ef:ab:
f3:ec:49:33:b2:15:75:08:5f:14:da:e9:fb:1a:66:1b:11:bd:
f0:1c:d6:40:15:de:32:72:8f:d7:ae:24:96:d8:a4:85:a3:e2:
bd:46:95:cc:8b:4d:b3:6d:1c:7f:6f:23:4a:2c:53:6b:c1:db:
d7:ac:7f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 01:22:49 2024 by rpki-client on console-ams.rpki-client.org