Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/42wS48XkMiNTfhBOnKluGDTqy7w.roa
File: 42wS48XkMiNTfhBOnKluGDTqy7w.roa (raw, json)
Hash identifier: IoCFaimUL2UeXe3VBeoOJv8Q3e+ZjGzRahQ7JGm+W0g=
Subject key identifier: E3:6C:12:E3:C5:E4:32:23:53:7E:10:4E:9C:A9:6E:18:34:EA:CB:BC
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 01856C6F1F69D8E1E80B2EF5BD42AFC25C18
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/42wS48XkMiNTfhBOnKluGDTqy7w.roa
Signing time: Sun 01 Jan 2023 08:24:59 +0000
ROA not before: Sun 01 Jan 2023 08:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142418
IP address blocks: 2a0f:ca81:6960::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:1f:69:d8:e1:e8:0b:2e:f5:bd:42:af:c2:5c:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 1 08:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e36c12e3c5e43223537e104e9ca96e1834eacbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cf:a7:0b:bf:78:9b:a9:25:80:85:0c:57:56:
5d:ff:57:f4:6e:90:b5:ae:da:4a:52:ec:36:13:c5:
67:03:b6:dd:f7:a2:9b:72:79:4f:7d:82:22:54:44:
6a:7e:41:4d:69:52:a2:46:fa:4d:6f:33:3a:61:cc:
ec:38:07:8d:d7:ec:2e:b9:3f:5c:10:45:6d:b8:b0:
5f:51:d4:dc:2e:e9:4f:54:66:bb:b6:72:4d:96:b1:
f9:29:b2:4b:81:09:47:fd:9f:b6:e0:26:b5:76:77:
60:c0:11:e8:a5:a0:31:bc:d6:5d:76:a4:0d:9e:c3:
00:bc:d0:9a:fd:06:6c:0a:d1:00:93:a4:2b:58:b4:
73:23:d8:e8:73:1a:f6:60:08:fc:ed:b9:cb:40:6a:
6e:e3:2f:da:d0:ba:91:4a:54:f2:e2:b4:04:3e:b8:
da:6a:ec:13:44:43:2a:d3:7d:7f:b9:0a:10:b2:6f:
cf:46:2a:31:b8:2b:71:22:4b:4b:18:bf:af:88:7e:
f5:7f:e5:e0:c5:44:cf:f0:87:95:ac:1d:11:a9:30:
d2:40:a3:46:63:c2:72:12:6d:c6:25:11:00:36:a4:
40:08:87:4b:59:d5:6b:28:db:d9:3f:a8:f2:05:86:
03:fb:7f:8a:c2:82:b1:a0:03:33:14:9b:8b:57:b7:
82:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6C:12:E3:C5:E4:32:23:53:7E:10:4E:9C:A9:6E:18:34:EA:CB:BC
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/42wS48XkMiNTfhBOnKluGDTqy7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ca81:6960::/44
Signature Algorithm: sha256WithRSAEncryption
07:04:49:16:68:62:0c:a6:a2:67:02:e7:59:8a:83:c0:97:0c:
c2:70:de:f4:a3:4d:9f:d4:a7:4b:57:fd:bc:15:83:e0:79:55:
e8:e3:ff:38:46:58:fe:0d:04:70:93:dd:da:9d:86:a8:c7:0e:
3d:ac:89:64:5b:6a:a1:4a:0f:0f:f5:ac:54:da:d7:8b:a9:06:
bb:44:17:62:59:b1:ca:0f:9a:63:1b:46:db:d2:75:fe:62:8c:
16:eb:7a:8f:0a:fa:03:57:b9:35:76:4e:f9:14:0f:f6:23:93:
42:22:01:4a:73:47:78:6f:fd:c3:39:b2:15:5f:23:6b:56:ff:
db:dc:7e:d1:b0:58:fb:8a:c6:3e:a1:4c:31:f6:cf:ce:20:33:
22:27:62:fa:23:74:6b:95:54:84:ea:a6:a1:a2:cd:d9:76:ff:
01:b4:9b:59:8f:d1:f9:31:5e:40:06:b7:b6:d7:ba:7c:27:29:
1e:62:a4:94:33:b8:78:d6:4c:40:d7:42:07:ac:db:a6:9b:f4:
b1:74:58:dd:9a:33:fc:d9:15:a1:89:6c:a1:b0:2f:4e:0b:b0:
8b:92:69:25:20:dc:95:c3:1a:66:44:2f:ee:1e:e7:bd:b6:67:
5e:74:26:bc:3d:68:01:84:4a:ac:f4:bd:d5:93:6c:6c:d1:87:
0f:31:5c:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:55 2024 by rpki-client on console-fra.rpki-client.org