Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/hJ49uzl7a8li2HjxI0FEgvZj1hY.roa
File: hJ49uzl7a8li2HjxI0FEgvZj1hY.roa (raw, json)
Hash identifier: at6uRGPUjNDLhaDbAKXXr2x6zL393Qr22D6grxreS+w=
Subject key identifier: 84:9E:3D:BB:39:7B:6B:C9:62:D8:78:F1:23:41:44:82:F6:63:D6:16
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 0185F83912906800E4D1A3630A43D8ECAD5E
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/hJ49uzl7a8li2HjxI0FEgvZj1hY.roa
Signing time: Sat 28 Jan 2023 11:52:47 +0000
ROA not before: Sat 28 Jan 2023 11:52:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61120
IP address blocks: 2a10:fa81:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f8:39:12:90:68:00:e4:d1:a3:63:0a:43:d8:ec:ad:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jan 28 11:52:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=849e3dbb397b6bc962d878f123414482f663d616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:20:e1:bf:0b:42:6b:6e:52:28:b1:ad:71:c2:
1e:45:f8:6f:2e:c5:4e:8d:14:ef:d4:16:81:77:c2:
3f:20:f8:d8:cf:85:71:73:41:3a:95:50:29:75:fa:
46:a8:2f:ea:c2:93:87:7d:40:3f:e1:97:bd:4c:3d:
8d:12:0a:bf:d5:3d:18:6a:42:43:9a:e2:17:39:38:
e4:ed:00:72:69:57:dd:2e:dd:14:41:eb:36:6d:3f:
56:c4:c9:da:eb:eb:6c:05:98:83:a1:f5:2e:e9:fa:
6e:2b:e9:9b:f7:9b:af:c2:ab:e8:1d:6d:f4:c7:22:
52:75:53:72:05:21:5e:f9:35:75:a4:2d:7b:f1:76:
f8:0a:17:47:04:18:0c:3f:4d:cd:84:aa:86:7d:d8:
58:ba:e7:99:36:fb:74:cd:13:8b:b5:6f:76:ba:c1:
75:ac:12:39:60:c0:53:95:a0:9f:31:f2:71:38:95:
a6:e3:09:05:4b:f0:dd:f3:66:65:05:61:ea:c2:f2:
51:bb:af:e8:62:49:bf:04:0e:0a:67:c0:fa:70:23:
3b:a0:b5:0b:7b:ae:90:48:8b:ad:e7:08:72:5a:8e:
35:97:69:6f:25:de:c8:17:96:20:0f:f8:85:5d:c2:
05:c9:4e:36:39:fd:a3:91:86:1d:9e:71:7b:80:b1:
51:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9E:3D:BB:39:7B:6B:C9:62:D8:78:F1:23:41:44:82:F6:63:D6:16
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/hJ49uzl7a8li2HjxI0FEgvZj1hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa81:2::/48
Signature Algorithm: sha256WithRSAEncryption
0a:39:02:93:4a:ae:b4:ec:a5:94:ec:d3:52:0a:f4:52:47:38:
b1:61:6c:30:6f:24:7b:05:27:6c:e1:c8:d1:af:60:d8:f5:ac:
a5:27:a7:9b:bc:7c:79:99:55:50:d8:ef:cb:bd:8d:cb:16:23:
4a:98:e5:91:6c:a1:d7:ee:6f:76:81:04:d3:4d:9b:48:3f:04:
31:28:82:6e:05:f0:dc:c8:b9:f1:3c:c7:2d:6f:9d:b5:0c:71:
08:1e:8d:31:3e:3d:2c:2d:23:3b:fb:ee:dd:04:d8:d0:cd:0a:
3e:00:2a:f6:97:56:a2:27:5c:64:4f:6d:db:c2:35:a7:a0:d6:
7d:82:5d:88:63:c3:f0:a9:2d:06:6a:96:5d:c3:b8:c6:ad:48:
f0:72:9c:b2:be:50:04:2a:ed:6a:9a:ed:fe:2d:59:65:2f:4e:
48:c2:8e:f3:c0:7c:6d:f9:c0:94:d9:5f:dd:de:08:c4:ca:e2:
61:51:00:de:3f:b6:2f:c8:21:9f:f3:2b:73:b8:bd:b5:d8:ec:
c3:88:8e:d3:67:84:12:51:5a:28:a9:69:c8:57:d1:24:79:51:
17:4d:4e:ee:fa:ff:75:5a:8b:b6:d1:5e:75:d5:e9:f8:03:e7:
5e:2b:25:6d:3c:a6:7b:fb:27:a4:a2:77:cf:28:cc:16:85:41:
35:f1:d2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:00 2024 by rpki-client on console-ams.rpki-client.org