Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/l5dQwtC9LiCgzKLcb0RcyzTZvrA.roa
File: l5dQwtC9LiCgzKLcb0RcyzTZvrA.roa (raw, json)
Hash identifier: ZV0vOrEgki206zFaBPtVUz4BnGKGhbrkWDqJ4BK5aT4=
Subject key identifier: 97:97:50:C2:D0:BD:2E:20:A0:CC:A2:DC:6F:44:5C:CB:34:D9:BE:B0
Certificate issuer: /CN=49f7c1a4677eb7826dae69de01a699b6201d6244
Certificate serial: 0189493A6712CA4C75570C367B571A392E7D
Authority key identifier: 49:F7:C1:A4:67:7E:B7:82:6D:AE:69:DE:01:A6:99:B6:20:1D:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SffBpGd-t4JtrmneAaaZtiAdYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/l5dQwtC9LiCgzKLcb0RcyzTZvrA.roa
Signing time: Wed 12 Jul 2023 08:31:51 +0000
ROA not before: Wed 12 Jul 2023 08:31:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 2a02:d480::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:3a:67:12:ca:4c:75:57:0c:36:7b:57:1a:39:2e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f7c1a4677eb7826dae69de01a699b6201d6244
Validity
Not Before: Jul 12 08:31:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=979750c2d0bd2e20a0cca2dc6f445ccb34d9beb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b2:15:25:9f:75:7c:cf:c9:72:93:73:9c:36:
77:5d:3f:15:a7:0d:57:ee:66:32:5b:25:a1:ef:f8:
c3:2c:44:81:c0:59:00:bc:d7:07:fd:85:b4:d5:4a:
42:03:cc:e8:26:e8:d1:ae:6f:a7:5e:ad:99:ab:a2:
c9:6c:e6:c8:61:a9:6d:44:39:ba:54:3f:b2:2a:c9:
a3:be:7c:08:53:58:74:5f:68:3e:e2:cb:fe:05:35:
09:22:39:e6:c4:88:2c:ab:5f:64:34:86:8a:9f:c7:
a5:08:55:60:b8:97:49:ff:e4:a8:c0:2e:23:02:5b:
1c:e9:4c:e2:9f:ad:de:8e:67:51:db:c4:62:55:8c:
2b:15:dc:dd:1a:8f:52:75:ba:25:cc:e5:8c:af:93:
dc:99:ee:e7:f8:2a:38:c1:04:d0:d3:06:a5:78:39:
1d:4e:80:7a:83:09:e1:dc:4b:bf:75:6f:8f:a0:11:
d6:8a:11:00:60:ba:fe:f5:3c:19:1b:c7:71:64:be:
81:6b:99:6e:d5:0f:54:77:9a:6a:f4:31:9a:71:2f:
bb:12:50:9f:9b:d3:54:14:e3:4a:61:6d:f0:31:8d:
ad:e6:48:b6:ac:59:10:52:55:01:f8:35:a7:3b:3b:
76:70:37:52:e1:61:12:35:ae:30:5c:e0:e1:a4:73:
c8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:97:50:C2:D0:BD:2E:20:A0:CC:A2:DC:6F:44:5C:CB:34:D9:BE:B0
X509v3 Authority Key Identifier:
keyid:49:F7:C1:A4:67:7E:B7:82:6D:AE:69:DE:01:A6:99:B6:20:1D:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SffBpGd-t4JtrmneAaaZtiAdYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/l5dQwtC9LiCgzKLcb0RcyzTZvrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/SffBpGd-t4JtrmneAaaZtiAdYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d480::/32
Signature Algorithm: sha256WithRSAEncryption
15:5c:86:d3:62:08:07:a5:9b:8d:1a:b1:e2:08:f3:ca:9f:c2:
44:8c:82:76:53:ac:2c:3a:79:eb:29:74:b7:0c:eb:5d:0b:84:
bb:a4:a4:ca:70:18:d8:01:b2:33:4f:f4:4b:cb:8e:b6:8c:95:
f3:50:10:ca:7e:a3:8d:4a:3f:47:e8:ab:6b:14:37:ac:7b:10:
84:e2:cd:9d:71:d2:c1:fe:0c:57:5b:8b:ae:c0:8a:43:05:43:
0b:70:f8:ef:db:1d:b4:01:f8:e1:e7:85:81:81:1f:55:00:20:
b2:23:bd:8d:23:29:7c:cc:e7:f9:f6:94:9e:0a:e9:c8:e3:12:
85:4b:6a:0a:2b:bf:b0:68:5d:45:e7:8c:61:91:a0:c1:31:92:
5e:21:1f:a3:25:f1:b6:49:a7:2a:e4:cc:66:20:ce:65:73:e0:
d5:d0:ae:78:9d:13:cb:25:2e:26:57:f1:f8:c6:eb:5a:06:8c:
25:3b:e4:52:af:19:04:94:06:bc:5c:b5:50:53:81:35:17:6c:
e5:d5:2b:f8:7b:d6:a8:72:d0:15:b9:0d:80:5f:b1:a4:b1:cd:
20:4a:2f:f6:12:f0:7c:53:c6:aa:df:2b:8d:60:0d:23:2d:d3:
1e:6b:c7:a8:ee:b3:f9:39:c3:31:3f:dd:98:1a:40:92:00:7f:
19:3f:bc:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:43 2024 by rpki-client on console-fra.rpki-client.org