Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/_5MrvEw54wKIIe1TTqIpJ1VNQQY.roa
File: _5MrvEw54wKIIe1TTqIpJ1VNQQY.roa (raw, json)
Hash identifier: 0ny9HmXZO/e8gI0JwoTMf3pWHCckocrlDhhHmLul0/c=
Subject key identifier: FF:93:2B:BC:4C:39:E3:02:88:21:ED:53:4E:A2:29:27:55:4D:41:06
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018DEFB3193C54484F2D6A2BE49A80E2F06C
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/_5MrvEw54wKIIe1TTqIpJ1VNQQY.roa
Signing time: Wed 28 Feb 2024 12:31:48 +0000
ROA not before: Wed 28 Feb 2024 12:31:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12389
IP address blocks: 2a11:b85::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 09 Jul 2024 05:07:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:b3:19:3c:54:48:4f:2d:6a:2b:e4:9a:80:e2:f0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Feb 28 12:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff932bbc4c39e3028821ed534ea22927554d4106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fe:33:0f:04:d9:e5:56:f7:88:4f:57:4c:2d:
71:68:ca:84:cb:aa:71:55:25:30:71:78:07:4d:86:
6f:8d:03:e0:99:99:a1:f1:65:9d:57:5e:94:08:34:
bd:ad:f9:f5:0e:29:c3:6d:ca:96:eb:c0:90:55:e6:
e9:96:cf:31:df:b1:ab:08:94:06:3c:a1:9f:98:bc:
41:5c:eb:c4:d3:72:35:b2:5b:8d:f8:20:0f:0f:90:
f0:92:ed:3f:be:54:c7:dc:e7:ee:f1:79:5f:d3:27:
29:85:bf:d4:7a:0d:0c:80:6c:65:01:e7:fd:a3:e4:
81:32:d8:b4:0d:e9:5a:62:5c:b4:b2:5c:cd:d1:b3:
d2:26:12:c3:af:8a:65:ce:9a:92:5d:a8:b3:29:f2:
a7:c3:56:24:5a:b7:f9:8a:5a:d7:08:c0:a2:f5:bd:
1e:cd:45:c3:23:f9:ac:14:d3:4e:01:d2:64:b3:a7:
eb:3a:b1:e1:25:dc:df:f6:ac:da:4a:47:aa:f2:f8:
4c:3d:c3:63:f5:61:91:43:b6:56:88:d6:07:76:b3:
71:4f:dc:82:14:06:66:5e:db:8e:e3:a6:4a:0a:22:
95:26:c8:9f:a1:ef:fe:0f:2c:5d:88:a7:2d:87:1e:
c7:b5:ab:8c:38:42:62:0a:5c:50:a5:fe:88:38:58:
52:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:93:2B:BC:4C:39:E3:02:88:21:ED:53:4E:A2:29:27:55:4D:41:06
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/_5MrvEw54wKIIe1TTqIpJ1VNQQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:b85::/32
Signature Algorithm: sha256WithRSAEncryption
a3:ca:b1:bd:de:ae:ba:8b:ec:4e:7f:ec:bb:73:cb:bb:7f:ab:
ef:00:b8:8a:13:8c:64:f6:02:86:13:69:65:5c:73:ac:ac:11:
51:38:7f:76:07:46:f2:6f:4c:13:23:43:0a:6d:e3:00:78:2e:
b7:ac:ea:18:f1:e4:91:c5:20:47:ca:5a:3d:86:65:16:44:9f:
29:4a:d8:5a:51:a3:1e:79:b1:fd:f8:fb:5d:64:09:13:4a:08:
98:15:39:4a:46:6f:f1:60:93:cb:2b:60:87:94:1a:c4:7c:d1:
00:17:0d:cc:29:aa:5a:4d:04:79:85:d3:85:88:45:87:80:3b:
32:06:e3:3b:ce:46:38:a4:4b:2c:0d:54:57:84:7e:78:3f:7a:
7f:90:51:a7:ac:cc:a0:59:35:ce:9f:95:7a:0b:11:3c:6d:ec:
54:1c:3f:bf:53:42:89:3a:89:1b:e8:2e:6c:51:99:05:3d:d8:
3e:b9:e6:16:27:e2:93:a7:ba:53:3c:37:ba:35:56:bb:f5:e6:
28:8d:20:5c:43:d8:37:bd:0c:12:1e:09:de:47:c5:d8:1d:c1:
e7:3a:02:6f:1e:cb:17:05:36:bb:a2:86:c7:57:3f:d4:b5:c2:
47:f4:f4:4f:4b:34:f0:f3:79:35:75:7d:c6:34:5b:c9:88:25:
5f:e0:81:6c
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 9 06:22:47 2024 by rpki-client on console-fra.rpki-client.org