Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Edfb0GiNnJoXkI7Qad_lIeOKYG0.roa
File: Edfb0GiNnJoXkI7Qad_lIeOKYG0.roa (raw, json)
Hash identifier: hjiCnWKNLzMVDM+OMoEcPrwp127ULF92THfSGwMWMTk=
Subject key identifier: 11:D7:DB:D0:68:8D:9C:9A:17:90:8E:D0:69:DF:E5:21:E3:8A:60:6D
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C46BAA87A19BD6532815A99D1F4E1
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Edfb0GiNnJoXkI7Qad_lIeOKYG0.roa
Signing time: Mon 02 Jan 2023 10:34:45 +0000
ROA not before: Mon 02 Jan 2023 10:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60742
IP address blocks: 2a0e:8100::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:46:ba:a8:7a:19:bd:65:32:81:5a:99:d1:f4:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11d7dbd0688d9c9a17908ed069dfe521e38a606d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3a:ec:d0:80:3b:b9:b0:d5:6b:56:81:61:33:
68:28:7f:f9:5a:3f:7c:42:c3:42:0f:18:e4:c4:53:
b2:63:d0:2a:a9:de:8f:44:db:c5:e6:ac:e1:6b:3d:
ac:97:99:d7:af:50:74:98:fa:a6:20:e8:85:be:9e:
16:91:13:c7:8f:d8:3e:3a:49:c0:c3:ff:51:a8:32:
1c:79:c2:20:a2:39:d5:37:bb:76:31:57:ad:e5:13:
16:44:1e:3c:be:1d:f7:42:93:16:eb:af:c1:21:23:
5d:b8:52:f7:d3:ef:88:7d:99:d9:2a:f8:2b:dc:39:
e0:b1:aa:db:8b:15:20:02:cc:44:97:09:37:a7:f6:
37:da:15:ac:68:35:02:13:e5:ac:0b:ea:c1:10:e4:
c5:71:b6:b5:f0:f3:89:00:2a:8f:e0:60:08:21:f5:
b0:ba:00:d3:6c:b8:36:77:91:85:c0:5b:31:c8:8d:
11:f1:b4:33:4d:b3:6b:3b:78:9c:7d:d8:17:89:2a:
5c:a4:cb:48:02:f5:0d:03:37:52:af:89:2d:be:a6:
c8:1c:d4:54:61:2a:e4:ea:dd:27:a1:77:c8:15:4a:
8e:bf:e9:8f:64:3d:3e:00:69:e3:3e:a3:ee:7d:b1:
99:05:c2:20:3d:ca:8d:f0:7a:be:43:6e:0c:d0:28:
06:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D7:DB:D0:68:8D:9C:9A:17:90:8E:D0:69:DF:E5:21:E3:8A:60:6D
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Edfb0GiNnJoXkI7Qad_lIeOKYG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8100::/32
Signature Algorithm: sha256WithRSAEncryption
93:21:1e:5f:75:ee:3c:55:56:3c:62:36:af:5e:6d:44:08:7c:
b7:2b:28:15:93:94:c6:3b:af:7e:9e:fb:58:d5:6f:81:79:08:
66:cc:7b:d4:10:fc:95:41:3a:8b:da:3e:91:77:ae:37:a7:43:
be:b9:73:e8:19:b3:99:a5:9e:ec:35:e9:b7:f1:fe:10:5f:a6:
68:7a:4d:a3:57:58:b7:da:86:64:6f:0a:78:94:8f:be:6a:e1:
a8:e7:2e:ad:c6:03:ab:33:37:15:3b:28:72:a9:04:57:86:e3:
1f:39:22:57:08:b4:7a:e6:8e:ef:25:1e:1b:1d:bc:57:7d:66:
41:c9:6f:83:e6:d8:c0:0c:60:d5:0b:8b:45:88:d7:66:eb:60:
f3:ac:68:e1:ad:da:ca:e0:8b:27:16:df:3d:c1:d1:7d:20:e5:
c4:34:70:60:a2:75:bf:ab:8d:d6:22:99:e3:2b:eb:e5:e7:67:
91:c6:33:92:00:6b:11:23:de:9a:1f:2b:d1:7c:f6:2c:4e:91:
f7:59:2e:8d:2b:16:dc:c2:d1:51:64:c1:0d:d7:8b:e8:06:db:
d7:ae:e2:ec:9e:81:6a:81:c9:95:8f:3d:59:08:0e:82:a8:2f:
64:d2:0e:40:31:b8:95:0f:d0:d4:f4:7b:08:72:88:9c:84:36:
94:dc:2f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org