Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/hmPzQJuyDQrUlCMMo8gtKs6aPXs.roa
File: hmPzQJuyDQrUlCMMo8gtKs6aPXs.roa (raw, json)
Hash identifier: dj1XwYrDy7uaGhWKFNxHz5v2TnCnm1YRn2m2rt/Fcfo=
Subject key identifier: 86:63:F3:40:9B:B2:0D:0A:D4:94:23:0C:A3:C8:2D:2A:CE:9A:3D:7B
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C458C09F622D30F54FC28600BC14F
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/hmPzQJuyDQrUlCMMo8gtKs6aPXs.roa
Signing time: Mon 02 Jan 2023 10:34:44 +0000
ROA not before: Mon 02 Jan 2023 10:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50219
IP address blocks: 2a0a:6500::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:45:8c:09:f6:22:d3:0f:54:fc:28:60:0b:c1:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8663f3409bb20d0ad494230ca3c82d2ace9a3d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bb:b4:6d:96:73:2b:f0:fd:3d:25:f8:fc:c2:
fe:c0:41:f5:27:95:f4:cc:96:0b:ad:7c:9a:df:4c:
fc:ef:64:d4:52:de:ce:9d:e0:b2:52:b0:1f:a0:16:
68:62:49:57:1b:93:ed:52:8d:10:ca:61:b6:13:fb:
fd:94:84:d4:e9:7c:c6:a7:cc:0d:47:1b:18:f6:b4:
9a:ea:3a:fa:56:90:d6:c2:16:19:fd:3e:dd:b5:02:
fd:4d:2b:4f:97:f1:6c:05:3c:e3:34:26:69:42:30:
91:3a:35:11:00:85:eb:76:7d:72:cf:d8:76:c2:ea:
b2:a1:37:20:a0:c9:1b:73:5e:84:5d:6c:5f:86:72:
df:4e:48:34:23:f3:e6:f5:65:13:26:0e:7e:f6:a6:
e0:43:e8:43:41:53:7b:79:03:9f:51:2b:e1:1e:a9:
b4:1d:c0:d4:a1:39:79:5f:78:65:09:23:f1:ee:58:
67:3e:2a:2e:18:87:aa:cd:5d:0d:fc:68:0c:e2:c8:
18:4c:15:1a:92:bd:2f:9a:c9:f2:d9:8b:d0:86:fe:
7a:0f:5e:81:25:34:22:9a:e1:81:91:4e:d0:c3:c0:
f3:22:d0:02:9a:f9:03:e3:38:0b:f8:a6:c4:59:07:
3e:6e:40:9a:b8:7b:46:41:ee:bc:46:00:21:73:86:
0d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:63:F3:40:9B:B2:0D:0A:D4:94:23:0C:A3:C8:2D:2A:CE:9A:3D:7B
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/hmPzQJuyDQrUlCMMo8gtKs6aPXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6500::/48
Signature Algorithm: sha256WithRSAEncryption
9e:2f:34:ea:81:b2:ee:92:ff:89:b8:f9:00:ea:43:4f:f2:4b:
9e:a0:d9:c9:36:e0:17:16:79:8a:f7:05:2d:a7:a5:09:18:83:
b4:c2:07:38:86:85:c0:6b:69:bd:9f:c4:99:d8:d2:61:60:8e:
69:bf:7a:e6:06:a3:d5:fe:ee:9c:1e:e5:f2:7e:d2:4e:e6:b7:
6b:7a:1e:48:be:1a:e4:42:96:06:fd:7f:78:75:c5:bf:17:4e:
24:14:a8:d2:5b:7f:57:f2:db:d6:00:95:b4:a9:17:4f:b4:1f:
40:07:2a:53:17:2e:71:88:0c:4f:f3:4f:f9:4d:64:7c:17:15:
be:93:01:b1:4b:fd:8c:11:5e:4c:0e:4f:77:4c:af:be:e3:76:
25:65:d4:7c:e4:d3:46:9a:ca:da:dd:17:64:f0:13:ed:76:8a:
0d:6f:60:9c:2d:47:d7:94:c0:7f:b5:28:7a:4b:95:ae:61:35:
2b:5c:c7:aa:b0:64:7d:f4:b4:14:bb:74:29:d9:e5:a4:0f:d4:
05:34:58:b4:46:94:70:19:a8:2a:c1:ca:f3:82:ca:af:44:51:
b9:8f:c8:30:66:cd:df:6c:db:4a:2e:8e:b9:3c:6e:69:65:94:
48:9f:24:08:f8:b6:f6:39:26:ac:21:1f:da:91:17:c3:9f:38:
f8:8e:b5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org