Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/URbVbeAsO78TpagRoJQqhFeJnQs.roa
File: URbVbeAsO78TpagRoJQqhFeJnQs.roa (raw, json)
Hash identifier: laGC0WYRdHePg0QQKA2wl2tlID1gasGlv+W7V6TXhpA=
Subject key identifier: 51:16:D5:6D:E0:2C:3B:BF:13:A5:A8:11:A0:94:2A:84:57:89:9D:0B
Certificate issuer: /CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Certificate serial: 018CC348ABD38ACF51E66071E34E6F0D4400
Authority key identifier: 93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/URbVbeAsO78TpagRoJQqhFeJnQs.roa
Signing time: Mon 01 Jan 2024 04:29:28 +0000
ROA not before: Mon 01 Jan 2024 04:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206834
IP address blocks: 2a01:bb20:2000::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 08 May 2024 14:27:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ab:d3:8a:cf:51:e6:60:71:e3:4e:6f:0d:44:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Validity
Not Before: Jan 1 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5116d56de02c3bbf13a5a811a0942a8457899d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0e:11:a9:af:89:6a:62:28:e4:b6:e9:8f:7d:
6d:af:02:83:51:ea:31:a9:ac:81:c7:ae:f5:41:d2:
58:f2:b3:f0:cb:69:f3:52:62:d8:ab:64:89:d0:59:
40:e9:1e:c5:9d:87:61:8c:c1:c0:57:72:71:0a:d6:
8a:e0:79:91:6b:83:51:1a:ad:6d:76:db:16:2f:e6:
64:62:30:1a:8b:65:a1:18:36:37:63:c8:10:c6:14:
b3:e5:26:25:92:64:02:9c:60:a6:b3:92:a1:eb:40:
36:11:9a:16:92:f2:a2:4f:bf:e1:70:4e:30:1c:6f:
2a:0a:1e:b1:bb:8f:db:12:4b:dc:22:d9:dc:e1:c2:
80:71:61:9f:3b:f7:ed:76:3f:34:d5:ed:48:a5:69:
c5:74:ea:a8:57:c7:76:fd:28:0d:dd:cf:1b:29:52:
55:9b:32:f6:d3:58:bb:27:82:16:0c:04:a5:e8:2c:
ee:e7:97:b1:f0:00:97:0a:86:8c:8e:1d:e3:ac:22:
07:64:73:89:48:5d:d3:f8:d3:5e:6b:f0:fd:17:1c:
1c:8f:f8:97:03:4e:be:b3:6c:1e:3c:ca:fa:4f:7c:
40:71:1d:97:8a:6a:e5:15:12:7b:cd:6a:6a:df:fe:
9f:41:7b:38:2f:2d:9a:2b:86:78:9f:53:23:c7:f3:
42:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:16:D5:6D:E0:2C:3B:BF:13:A5:A8:11:A0:94:2A:84:57:89:9D:0B
X509v3 Authority Key Identifier:
keyid:93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/URbVbeAsO78TpagRoJQqhFeJnQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:bb20:2000::/36
Signature Algorithm: sha256WithRSAEncryption
4b:1e:00:1d:c4:6f:00:15:2d:6d:1c:c2:d6:09:72:c1:98:63:
36:b3:45:fb:eb:55:25:7c:a4:62:38:a9:e2:2c:33:24:50:ed:
dd:ae:e8:43:b2:34:6c:fd:f0:8c:f3:81:96:ec:3b:6d:26:ad:
31:73:10:c1:ed:a5:a0:39:1c:76:08:56:60:64:15:ee:8f:75:
92:b5:50:25:0e:49:77:4a:cf:1e:2e:21:9c:8b:e9:67:33:8f:
3f:36:e4:f6:7c:1e:74:b3:cd:48:9d:cd:23:2f:54:0d:a3:8a:
19:b4:bf:72:c0:b4:de:00:7f:42:ab:6d:9c:8f:01:84:ba:16:
6a:71:99:b3:51:e2:1b:5c:07:bd:45:fc:0c:51:24:f9:42:84:
24:8e:c7:74:c5:ca:28:ae:f7:cf:5a:42:15:71:04:1c:26:01:
99:16:83:02:e4:2f:cc:cb:e5:92:35:60:63:7e:5a:1a:bd:0a:
a5:08:d4:65:75:5a:75:36:b4:19:72:25:d7:84:47:d0:44:57:
e4:3c:e4:8a:f2:c1:69:b2:c3:84:ac:8f:45:18:c5:88:9e:04:
e9:7e:15:f9:a2:ca:db:71:fa:15:18:ca:2f:f3:00:7c:a7:02:
13:db:1e:79:02:c0:06:cf:81:ed:69:8f:bc:06:c2:a8:cb:ee:
d4:bd:8f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:32 2024 by rpki-client on console-ams.rpki-client.org