Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/ldBZXk_QG3wzndBMSEXIPRPk9Xw.roa
File: ldBZXk_QG3wzndBMSEXIPRPk9Xw.roa (raw, json)
Hash identifier: 9RVEQJPPX7nGA484YG3b5HboWZ43f3tYmFRduXXQUV8=
Subject key identifier: 95:D0:59:5E:4F:D0:1B:7C:33:9D:D0:4C:48:45:C8:3D:13:E4:F5:7C
Certificate issuer: /CN=4a341558dba0b6db94c55ce06e306ff6519d6ef1
Certificate serial: 01889AC2B6DD9E2E94B646DFB1CEE91AB809
Authority key identifier: 4A:34:15:58:DB:A0:B6:DB:94:C5:5C:E0:6E:30:6F:F6:51:9D:6E:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SjQVWNugttuUxVzgbjBv9lGdbvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/ldBZXk_QG3wzndBMSEXIPRPk9Xw.roa
Signing time: Thu 08 Jun 2023 11:27:11 +0000
ROA not before: Thu 08 Jun 2023 11:27:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49792
IP address blocks: 2001:67c:1194::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:c2:b6:dd:9e:2e:94:b6:46:df:b1:ce:e9:1a:b8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a341558dba0b6db94c55ce06e306ff6519d6ef1
Validity
Not Before: Jun 8 11:27:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95d0595e4fd01b7c339dd04c4845c83d13e4f57c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0a:69:17:32:79:85:4c:d2:c3:6d:09:0f:05:
fb:2a:9e:8b:cf:5d:65:04:bc:5b:06:66:f4:d9:05:
e9:ae:c1:fb:36:c3:da:fc:37:c8:6c:27:01:b6:73:
98:26:4c:90:2b:2d:10:a7:f1:33:08:92:36:48:d0:
b4:95:cc:fa:8b:38:f6:67:4f:b5:07:c8:b8:f7:ed:
a8:48:98:2b:1c:0f:2d:2d:b7:b1:14:c8:7f:02:1c:
31:22:54:60:dc:93:62:d4:49:2f:9e:af:20:db:5f:
59:26:bc:23:4c:c0:76:1b:cb:26:b8:1b:ac:bb:29:
38:18:d7:f5:14:fe:97:b7:d0:e1:99:c1:e2:0f:52:
bd:33:b3:ad:3e:23:38:be:ac:48:22:2c:95:31:b5:
c1:12:c1:e1:0f:9b:44:b9:17:c9:99:52:02:7a:96:
1a:31:d0:30:0c:a1:db:e0:e2:9b:1d:c7:15:93:75:
5f:57:d9:20:15:f1:2c:be:42:9f:6d:b6:94:b8:bb:
de:64:15:03:5e:d1:54:ba:9c:a5:b6:df:51:87:5b:
c0:b0:c0:26:35:eb:d3:88:28:0d:e3:c8:80:66:8a:
cc:67:05:87:dc:39:c7:37:72:b8:71:5a:21:ee:2b:
13:84:c7:7d:96:b8:41:8b:9d:12:78:86:0b:07:51:
aa:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D0:59:5E:4F:D0:1B:7C:33:9D:D0:4C:48:45:C8:3D:13:E4:F5:7C
X509v3 Authority Key Identifier:
keyid:4A:34:15:58:DB:A0:B6:DB:94:C5:5C:E0:6E:30:6F:F6:51:9D:6E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SjQVWNugttuUxVzgbjBv9lGdbvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/ldBZXk_QG3wzndBMSEXIPRPk9Xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5526d4-afc1-401f-a09f-0b697a3b762a/1/SjQVWNugttuUxVzgbjBv9lGdbvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1194::/48
Signature Algorithm: sha256WithRSAEncryption
68:ac:56:3d:7a:de:1c:68:e2:5d:5c:28:4f:a9:4a:5e:36:af:
3c:33:cd:74:a8:c3:27:ee:cc:aa:c1:ec:84:3c:87:d2:c9:33:
fb:27:fb:20:89:a9:14:39:8e:db:22:5b:20:dd:15:c7:fe:a7:
0f:3b:62:a6:27:a9:72:57:a9:95:ed:b4:66:07:f5:38:93:ce:
38:10:99:78:68:e1:44:b9:f5:1b:16:81:32:ad:2f:90:ff:5e:
72:fc:b6:f7:a7:1c:29:29:13:98:6c:3b:7f:79:56:86:b9:2a:
39:d1:1a:b3:6a:30:19:4c:c0:a1:cd:78:72:3a:ec:f8:5c:da:
78:3d:ec:1a:b4:10:09:ff:27:af:32:2e:53:95:b9:62:78:d2:
17:31:ec:63:14:61:3d:ef:78:b7:4c:67:90:f7:3e:61:91:c6:
31:78:76:8d:5f:37:10:bd:bb:9c:07:9c:d3:54:f5:fd:8a:bb:
75:22:33:85:68:43:ec:35:6c:a0:d7:c4:29:04:50:2a:63:b8:
c9:81:52:59:fd:e3:c1:e6:0e:20:e0:8c:cd:ea:12:b7:48:9d:
27:04:d4:73:1b:3d:17:0a:46:fc:e2:2e:df:43:5d:80:01:e2:
94:75:e9:3d:56:ce:44:3d:4c:0b:94:db:79:31:1f:23:69:40:
52:cc:6e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:01 2024 by rpki-client on console-fra.rpki-client.org