Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/Jhl0hLt76_ElAVDnZ4zA-BF3pTQ.roa
File: Jhl0hLt76_ElAVDnZ4zA-BF3pTQ.roa (raw, json)
Hash identifier: slp6csfe6pznSZP/xXgDZbMLL+57gXkvOkIjH3e/vY4=
Subject key identifier: 26:19:74:84:BB:7B:EB:F1:25:01:50:E7:67:8C:C0:F8:11:77:A5:34
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 01856E01FFFD2437FA834DC60C2FA92E2E33
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/Jhl0hLt76_ElAVDnZ4zA-BF3pTQ.roa
Signing time: Sun 01 Jan 2023 15:45:02 +0000
ROA not before: Sun 01 Jan 2023 15:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209112
IP address blocks: 2a0e:1200::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:ff:fd:24:37:fa:83:4d:c6:0c:2f:a9:2e:2e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Jan 1 15:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26197484bb7bebf1250150e7678cc0f81177a534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6c:a2:dc:dc:47:98:80:5b:64:04:be:fd:33:
e9:72:e5:ba:16:9f:73:75:72:a7:fe:38:4a:fc:3c:
61:e1:ae:db:8e:88:6a:0c:06:33:26:cc:6d:28:88:
53:23:5f:3b:30:16:a6:f3:0a:3d:ad:28:1c:f5:a4:
7f:bc:62:6c:66:04:ac:5f:5c:30:32:5b:bb:ba:52:
65:a1:0f:fb:dc:b4:99:d1:31:9a:6b:ac:af:60:74:
04:85:7d:95:20:a7:16:97:84:f9:ad:4d:bf:6e:09:
c9:25:e6:1f:53:1c:ef:46:18:02:21:0d:20:1d:a8:
21:6d:37:0e:bd:84:30:bb:9c:01:24:29:f4:6d:ed:
5d:63:83:f6:d9:a1:22:23:7b:93:fd:08:b9:bf:90:
1e:fd:ad:6c:f2:fb:bc:59:1b:6c:59:89:88:89:21:
6d:6c:38:72:46:6b:dd:2f:8a:07:c8:97:ea:67:9d:
d8:f9:d6:5a:bb:d3:d1:e9:1f:15:8d:65:1c:5f:79:
94:26:00:88:50:a2:93:a2:8f:61:0f:c1:f4:c7:b4:
37:e4:b4:64:8b:96:99:22:78:d1:c7:a3:2e:4e:02:
b7:3a:7e:f5:78:74:02:3b:de:b0:6f:cb:3d:78:af:
7f:a1:b5:da:1a:82:2b:a5:4b:17:16:6d:f2:de:f4:
78:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:19:74:84:BB:7B:EB:F1:25:01:50:E7:67:8C:C0:F8:11:77:A5:34
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/Jhl0hLt76_ElAVDnZ4zA-BF3pTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1200::/29
Signature Algorithm: sha256WithRSAEncryption
a4:bc:74:9e:03:97:39:eb:5b:be:78:58:f5:f0:ca:bc:0b:9f:
66:d3:e9:71:0a:0c:8c:36:b6:85:a2:e1:cf:46:ff:16:9c:cb:
e5:ff:0c:89:6c:48:2f:c2:d3:c6:4a:94:f0:70:1c:59:8e:50:
03:38:73:e3:10:54:70:4e:a2:62:59:36:09:63:a7:46:db:52:
92:16:21:34:2d:51:17:47:29:b8:6f:39:6b:be:d0:e1:37:a3:
57:10:b7:f6:db:9e:5d:fc:56:d3:0a:ab:f4:4d:35:a0:b3:0f:
c3:9d:97:82:ea:53:fb:aa:74:fd:f6:21:78:57:8b:21:8d:73:
42:ec:29:21:a9:53:57:fd:b3:5e:50:c3:d3:57:31:29:2f:1b:
60:6f:0f:72:5e:a6:45:8d:47:4f:85:cb:15:63:d6:4c:ad:5b:
05:1a:6f:1e:61:82:91:27:af:34:c0:3d:77:d8:d1:01:00:15:
2d:f4:5a:8d:c6:4b:f0:35:f6:75:71:c6:37:83:a2:d6:a3:ec:
40:3d:9d:a7:52:1e:4c:c9:2f:37:68:2b:66:40:17:1e:53:28:
80:cc:81:e7:64:b1:4e:a8:2a:6e:4e:f6:f7:db:de:bd:fc:07:
e3:b8:e9:00:9b:67:a9:46:5a:7a:bc:d4:15:f2:16:f2:a5:be:
5d:9a:6b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org