Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/sp4OD_kpoRlhNIxvtL7jMLUh4YU.roa
File: sp4OD_kpoRlhNIxvtL7jMLUh4YU.roa (raw, json)
Hash identifier: ObgBU+44b5W8oPu3xGXwnqZSWeLtDcG1s6TgiEdyG+s=
Subject key identifier: B2:9E:0E:0F:F9:29:A1:19:61:34:8C:6F:B4:BE:E3:30:B5:21:E1:85
Certificate issuer: /CN=2326eeeadd4c0ee55b3594a596e67220819c18d5
Certificate serial: 0185729EF4666DCBEFA3149E909F4102824B
Authority key identifier: 23:26:EE:EA:DD:4C:0E:E5:5B:35:94:A5:96:E6:72:20:81:9C:18:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iybu6t1MDuVbNZSlluZyIIGcGNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/sp4OD_kpoRlhNIxvtL7jMLUh4YU.roa
Signing time: Mon 02 Jan 2023 13:14:57 +0000
ROA not before: Mon 02 Jan 2023 13:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208478
IP address blocks: 2a0e:73c2:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:f4:66:6d:cb:ef:a3:14:9e:90:9f:41:02:82:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2326eeeadd4c0ee55b3594a596e67220819c18d5
Validity
Not Before: Jan 2 13:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b29e0e0ff929a11961348c6fb4bee330b521e185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9c:4d:a1:8b:31:7c:78:66:84:92:3c:f4:6d:
96:11:7b:c2:81:74:2b:6d:f9:15:5f:69:e4:3b:c1:
c6:96:e5:ad:91:0f:e3:37:9b:e9:f6:6f:38:4d:18:
08:e7:a2:8f:9b:54:11:85:44:e1:b4:ef:9c:db:4d:
b7:39:10:30:75:b9:93:9d:41:7d:8d:ea:d2:a5:d6:
b6:68:f2:7a:6d:d8:c8:fb:49:12:9a:93:3f:52:c3:
50:fa:d1:2e:e7:94:11:4d:4a:54:2b:2c:5a:93:af:
99:3a:52:ec:00:14:61:c5:ef:3b:b2:f6:6b:c9:5c:
8d:c1:08:86:5c:06:f5:2a:9d:fd:09:f5:11:99:6d:
33:7b:eb:e4:21:c5:9e:5d:3a:42:9f:e3:fc:4f:c4:
6f:3a:71:9c:d4:11:d4:da:9f:18:4d:f3:34:62:93:
7d:a8:e1:c8:f1:a4:1d:8a:77:45:80:e7:56:26:5a:
09:09:92:8f:08:a8:17:b7:fd:7d:55:1f:25:c4:ef:
07:2c:08:ed:ca:ff:75:84:55:1c:1d:d2:cf:89:f6:
4d:cc:70:25:d3:7d:17:40:12:a2:64:0e:7d:17:b5:
bb:5d:47:74:ab:1a:53:b3:68:c1:6a:6d:49:ab:0a:
f3:89:51:b8:9b:97:9d:57:46:24:47:2e:60:64:13:
8a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9E:0E:0F:F9:29:A1:19:61:34:8C:6F:B4:BE:E3:30:B5:21:E1:85
X509v3 Authority Key Identifier:
keyid:23:26:EE:EA:DD:4C:0E:E5:5B:35:94:A5:96:E6:72:20:81:9C:18:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iybu6t1MDuVbNZSlluZyIIGcGNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/sp4OD_kpoRlhNIxvtL7jMLUh4YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/a5980d-65f4-4573-9759-33415967c213/1/Iybu6t1MDuVbNZSlluZyIIGcGNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:73c2:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
65:64:e6:4d:ca:7a:a8:58:26:6f:08:3b:a3:a8:49:19:b1:d5:
97:f5:35:c7:46:81:19:ab:04:8c:3f:6b:09:31:46:45:49:86:
42:3f:58:f1:cc:a8:a8:69:69:35:8f:ee:0a:e7:b7:8a:67:e1:
f1:ff:31:d3:4e:91:ef:64:10:df:65:5d:dc:62:00:df:d1:11:
3a:e1:5e:96:da:ee:6b:38:01:0e:47:a9:ad:8f:9f:7c:21:ec:
96:2b:62:24:f7:30:8b:11:ca:87:3c:11:1c:36:3d:87:29:eb:
49:77:96:10:a7:5b:60:d6:8e:a7:7b:ec:7a:cc:84:f5:13:05:
e7:91:fa:60:3f:7b:9c:af:25:85:2a:fb:b2:90:e0:27:53:04:
46:5d:d7:62:50:70:d3:b8:a6:f3:4c:17:98:39:0b:48:a9:72:
02:ca:18:f8:33:34:06:30:76:10:ed:59:73:3e:e5:31:f4:58:
d2:00:82:59:cd:a7:f3:93:26:bf:64:e3:c9:f7:af:5a:18:50:
78:25:02:d8:91:39:fb:98:6e:14:e7:70:9a:89:50:3d:6a:86:
d9:57:ca:ec:cc:07:b2:8d:96:53:48:19:0f:b8:ea:38:cb:fd:
7a:54:f1:1c:b1:2e:0d:04:57:03:a1:1f:0f:ca:fa:45:de:d4:
94:96:5d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:37 2024 by rpki-client on console-fra.rpki-client.org