Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/dlxXTCaULzIaKfuT9mkR02K1RbM.roa
File: dlxXTCaULzIaKfuT9mkR02K1RbM.roa (raw, json)
Hash identifier: NxPRp0v48cmIdB9VXJ4ZtLB/4VyXvH71mmNq/XUUud0=
Subject key identifier: 76:5C:57:4C:26:94:2F:32:1A:29:FB:93:F6:69:11:D3:62:B5:45:B3
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 018F76E936287C9D81BEA85FA26D18C5DFAF
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/dlxXTCaULzIaKfuT9mkR02K1RbM.roa
Signing time: Tue 14 May 2024 11:42:26 +0000
ROA not before: Tue 14 May 2024 11:42:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204104
IP address blocks: 2a05:9080:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 07:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:76:e9:36:28:7c:9d:81:be:a8:5f:a2:6d:18:c5:df:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: May 14 11:42:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=765c574c26942f321a29fb93f66911d362b545b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:87:69:8f:90:aa:d9:00:4e:78:80:c4:14:9b:
f2:df:d0:c7:47:ea:1d:58:5a:84:27:16:b9:49:8b:
e4:42:52:1e:06:35:62:7a:55:36:d3:c2:07:a3:54:
9d:ff:c9:a8:d2:3c:c3:e7:66:b8:e3:36:15:57:79:
35:4a:bb:7b:58:4c:52:e7:f7:16:3a:94:e5:7c:e4:
8e:d0:66:6a:aa:58:a5:74:4f:10:82:bd:62:0f:f0:
1b:9e:ab:06:eb:57:62:be:9a:9f:97:52:a8:dd:ef:
e3:e3:46:34:a3:12:8c:a2:d4:45:f6:0d:e3:09:b8:
ef:8e:e7:f3:54:84:ae:5d:87:c8:0b:55:1e:c2:6d:
33:49:7d:b5:93:a9:76:93:25:fe:dc:cb:c1:8b:79:
90:01:b1:f9:f7:13:da:f9:c9:20:be:a2:25:25:e1:
db:2d:a1:60:dd:be:c9:ef:86:ed:ec:27:01:51:ec:
a6:ad:a7:54:77:49:85:74:7b:1f:75:18:b9:ea:f5:
74:08:8f:71:15:4b:92:72:fc:d5:41:35:9f:cb:0b:
78:50:b7:0d:88:43:cb:27:d3:b9:ea:1b:79:4c:c0:
7e:15:fa:25:d1:1c:4a:10:1c:e6:3a:f4:c6:51:06:
f6:52:94:bc:1e:dd:1f:73:74:bd:29:b8:a9:d1:86:
59:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5C:57:4C:26:94:2F:32:1A:29:FB:93:F6:69:11:D3:62:B5:45:B3
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/dlxXTCaULzIaKfuT9mkR02K1RbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9080:1::/48
Signature Algorithm: sha256WithRSAEncryption
76:96:3f:f9:ee:e6:c5:c8:83:b0:8e:c2:80:b8:42:2b:65:e4:
83:2d:bd:19:d4:cf:d0:d7:27:25:7e:0c:f2:b9:75:5a:f5:ee:
94:d3:de:e9:69:bb:5d:f1:9f:0b:04:1d:23:19:ca:17:22:40:
68:1e:44:b9:f3:b1:69:3c:4a:94:7f:da:ab:00:35:2c:ed:0a:
03:8d:41:01:65:c9:fb:b4:e5:79:bb:20:e6:62:02:d9:4a:2b:
0c:b7:60:bf:0b:76:6e:f8:55:c3:dd:e3:d9:19:36:01:b4:e5:
3b:e4:ce:0d:f5:a7:1e:1f:1d:c1:5e:d8:16:6b:a7:c5:3b:01:
15:64:4b:70:a9:f4:a5:b1:c6:0b:af:92:89:2e:74:ee:de:15:
7b:ff:3b:94:37:d9:86:b3:46:b7:5a:8b:fe:e9:1f:3b:eb:42:
ce:55:58:97:7f:3e:62:c2:b7:2f:39:c1:71:bb:ea:1e:e4:29:
d7:6c:c8:93:57:e3:1f:15:82:3c:32:70:42:b8:df:77:9e:c0:
52:26:3f:98:a9:ba:fe:19:ac:95:4d:54:d7:56:6d:e8:6b:b6:
19:94:70:d4:c5:44:04:56:df:51:ee:20:94:5f:59:a7:bf:49:
96:23:5f:cd:df:55:7a:3e:25:96:34:7b:68:a9:01:61:ef:21:
13:a6:18:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:35 2024 by rpki-client on console-fra.rpki-client.org