Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HtdnAxjTpKrd1h-GEocYrf73YkE.roa
File: HtdnAxjTpKrd1h-GEocYrf73YkE.roa (raw, json)
Hash identifier: bHBXaiTaGzFOgbGNedG8apTM4MTNJBrhA0FlCockPq8=
Subject key identifier: 1E:D7:67:03:18:D3:A4:AA:DD:D6:1F:86:12:87:18:AD:FE:F7:62:41
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C39171BB4E9039DA2783CD25ECA56
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HtdnAxjTpKrd1h-GEocYrf73YkE.roa
Signing time: Mon 02 Jan 2023 05:55:04 +0000
ROA not before: Mon 02 Jan 2023 05:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207415
IP address blocks: 2a09:5301:7220::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:39:17:1b:b4:e9:03:9d:a2:78:3c:d2:5e:ca:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ed7670318d3a4aaddd61f86128718adfef76241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:82:2d:c4:6b:6a:45:e0:3a:3d:2d:f3:cd:de:
c8:12:e5:32:1c:11:ee:60:bc:c8:e9:04:0f:62:c7:
dd:04:96:86:ce:a1:e5:ec:8d:90:30:4e:e4:6a:2a:
e8:e3:43:56:21:8c:db:24:4a:ea:2b:c9:ec:14:fe:
20:0c:e9:6f:9f:6e:f2:d5:62:9b:a9:dd:4d:f1:cd:
81:74:26:9b:f8:48:18:13:72:13:6b:2b:4e:5e:de:
ad:4f:54:03:b8:e9:e3:0b:04:11:c7:4a:bc:82:dc:
db:3a:75:f9:ea:bb:28:fa:e9:56:ed:77:46:fd:90:
8e:75:79:7d:c3:26:53:1e:24:d4:03:b7:a8:c2:c1:
05:aa:a0:1f:ac:20:37:fa:36:90:7d:08:e2:32:53:
ae:be:32:02:0b:6a:31:18:f2:06:a8:61:4b:b9:54:
b1:60:1a:a5:eb:7e:85:18:07:8e:3b:21:e6:8e:5e:
29:34:59:90:d9:71:5f:1b:a9:dc:9d:60:24:67:9b:
d6:11:4a:82:eb:38:6e:5b:05:98:3c:5b:e4:88:e8:
f8:72:ab:f7:7c:78:85:fd:0f:9c:90:ba:9f:97:89:
96:68:f2:5e:0e:9a:c9:ba:4a:b8:aa:52:68:c6:48:
ab:0a:7a:ea:33:49:3d:27:7a:f3:12:0a:f7:71:e5:
d1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D7:67:03:18:D3:A4:AA:DD:D6:1F:86:12:87:18:AD:FE:F7:62:41
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HtdnAxjTpKrd1h-GEocYrf73YkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:5301:7220::/48
Signature Algorithm: sha256WithRSAEncryption
a9:42:fb:f6:19:1f:a9:23:a4:51:62:27:78:02:71:25:fe:c0:
42:ba:4f:5c:fe:2d:2c:dd:4d:13:39:00:63:c8:d8:8d:30:b0:
cd:61:d8:37:c8:7f:ec:ff:4b:07:e2:16:d7:21:ab:ec:e1:60:
fe:5d:7a:2b:fb:12:2a:bc:27:1f:0f:c6:1f:e4:03:11:9b:c8:
44:d6:43:0e:7e:d4:7f:30:11:6f:68:f9:3c:70:d9:a2:b9:cc:
9a:a6:9b:82:e7:56:f9:d3:97:8c:2c:22:c5:8c:c2:26:00:50:
b1:4f:9a:75:25:ba:30:33:4b:4e:bc:54:20:35:a3:01:9a:a4:
eb:9e:98:80:0f:91:ca:0a:00:c5:69:d5:21:d0:5d:f3:db:c1:
87:c4:90:75:d3:93:c7:25:43:f1:f2:9f:46:bf:33:66:77:a9:
d3:c0:fa:e4:ba:c5:39:1a:81:05:c8:b8:fd:95:8b:d4:84:ae:
02:eb:63:39:fc:5d:a5:28:56:fa:a5:2b:d9:cd:40:30:aa:71:
64:25:f4:d8:59:bd:07:86:08:6d:d3:4a:f6:8b:b4:04:78:19:
bf:9d:de:42:1d:88:5c:e9:38:ec:79:0e:ee:31:c7:95:ce:d9:
51:81:42:b2:2f:63:45:07:60:b1:4d:9c:e8:02:d8:48:81:3a:
ad:dc:5e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org