Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5W0HR8dv7m7FF0hSpibnV5IWYkI.roa
File: 5W0HR8dv7m7FF0hSpibnV5IWYkI.roa (raw, json)
Hash identifier: a06+z3PGG+5bk4IKXeylHcXBTo6DItAOH75lj57iKeo=
Subject key identifier: E5:6D:07:47:C7:6F:EE:6E:C5:17:48:52:A6:26:E7:57:92:16:62:42
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA750FCCC98077AD155BE5C828C39A
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5W0HR8dv7m7FF0hSpibnV5IWYkI.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205298
IP address blocks: 2a0f:5707:aaa0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:75:0f:cc:c9:80:77:ad:15:5b:e5:c8:28:c3:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e56d0747c76fee6ec5174852a626e75792166242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d4:16:bd:81:65:50:34:58:78:e8:db:bd:59:
8f:9b:ae:3e:2f:2c:89:d4:b4:f3:55:08:97:af:44:
33:75:55:45:1a:0f:0b:20:9b:0b:97:da:5c:57:31:
50:f4:74:57:ed:3c:4c:5e:bf:3e:50:47:a3:b8:93:
56:39:4e:8f:9b:0d:b7:8d:80:42:f2:9d:42:0e:7e:
6e:59:b8:b6:3c:69:2a:7d:4f:04:5b:b4:cc:48:74:
7d:08:38:5a:6b:58:53:7f:90:10:f2:ed:2f:03:fa:
2e:00:1f:b3:c5:7f:fb:17:22:17:1e:c9:b4:78:8a:
e2:1b:6a:25:b0:58:e2:cb:f8:c8:74:d4:74:36:5d:
d2:b6:7e:06:69:38:49:cf:dd:f4:b4:09:78:f6:91:
e8:c7:da:04:0a:94:fc:0d:62:94:7c:c8:f6:a6:75:
c1:42:46:77:3c:39:93:15:09:de:c1:03:0a:b0:74:
15:13:99:a7:f7:3e:33:98:21:79:7c:71:a3:1f:2d:
66:63:55:20:42:b4:d5:ee:2e:b0:f6:c1:c2:12:8e:
b0:96:e7:37:e7:7b:ee:f3:c0:e3:43:5b:33:6b:2f:
32:96:3d:28:46:56:e5:2f:39:c2:ee:d7:6e:1a:be:
62:69:6a:ca:12:68:dd:80:98:50:c0:ce:9a:12:ff:
19:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6D:07:47:C7:6F:EE:6E:C5:17:48:52:A6:26:E7:57:92:16:62:42
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5W0HR8dv7m7FF0hSpibnV5IWYkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aaa0::/44
Signature Algorithm: sha256WithRSAEncryption
69:a8:af:ea:d0:02:c0:51:41:23:81:3e:c6:3e:6f:2f:19:50:
81:05:85:1f:a5:ad:be:4e:ea:a2:a3:ba:fe:98:29:10:10:90:
ce:96:c4:40:d8:bc:95:21:39:e5:c1:94:09:62:1f:01:03:27:
65:13:5f:09:59:1e:54:ea:4a:83:bc:85:02:a9:f0:ec:b7:62:
a9:0c:14:74:b0:7c:12:93:29:c9:b7:34:a8:cc:54:4e:60:62:
44:2b:3f:57:73:67:31:85:d6:85:ad:24:b2:63:f2:af:c2:85:
72:82:56:dc:11:cd:2a:a1:e6:fb:d7:52:c3:df:cf:5a:9b:69:
ee:80:6c:8d:f3:a8:e4:ed:35:c4:7f:a1:21:6b:71:30:8c:67:
47:c3:1a:64:d8:2c:38:50:91:99:57:af:59:47:57:15:7d:90:
82:43:cc:c3:1c:01:01:4e:bb:49:e5:50:dc:12:0f:c6:26:c4:
a4:6a:b0:35:c1:20:f3:ef:58:30:ae:f6:da:fb:af:03:10:dd:
f1:03:7c:a0:c8:64:0b:15:9d:9a:ff:ec:c8:01:a8:df:60:61:
74:96:e4:a3:81:84:df:a9:39:72:04:bd:46:a2:3a:42:d6:ac:
e3:29:25:6f:1b:66:7a:5c:a6:d8:02:ad:07:94:75:3a:26:9d:
a8:c9:ae:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org