Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/bPw4XSkVWSgtf7JDzPXNoXduBiY.roa
File: bPw4XSkVWSgtf7JDzPXNoXduBiY.roa (raw, json)
Hash identifier: gpSCnHeFeZSpE5FgDdkkpuLY5cGV8mG6vsFkryl6e5s=
Subject key identifier: 6C:FC:38:5D:29:15:59:28:2D:7F:B2:43:CC:F5:CD:A1:77:6E:06:26
Certificate issuer: /CN=306134bcf59f581d6b76630cfa87867876a29215
Certificate serial: 018E6551D4803038AC06E908E2032D9773FB
Authority key identifier: 30:61:34:BC:F5:9F:58:1D:6B:76:63:0C:FA:87:86:78:76:A2:92:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGE0vPWfWB1rdmMM-oeGeHaikhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/bPw4XSkVWSgtf7JDzPXNoXduBiY.roa
Signing time: Fri 22 Mar 2024 08:40:45 +0000
ROA not before: Fri 22 Mar 2024 08:40:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5500
IP address blocks: 2a02:56c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 25 Mar 2024 09:17:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:65:51:d4:80:30:38:ac:06:e9:08:e2:03:2d:97:73:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306134bcf59f581d6b76630cfa87867876a29215
Validity
Not Before: Mar 22 08:40:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cfc385d291559282d7fb243ccf5cda1776e0626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b8:a4:d1:f9:38:c8:5b:d1:3e:2a:87:98:f3:
69:d1:11:b1:7f:fe:d7:f8:75:85:25:a9:80:54:f3:
b7:5f:dc:18:7f:62:40:f6:fb:f1:e1:f7:3a:fc:15:
bd:09:18:72:ad:de:b5:1f:a0:7f:41:9f:bc:d4:b8:
4f:1e:5a:1b:e6:52:17:9b:d0:a7:b3:ab:42:bf:fb:
d7:26:53:63:38:c0:4e:21:0a:fb:84:2b:e4:ac:77:
6b:90:1d:5e:12:2e:dc:2b:49:2d:24:d4:33:91:80:
15:71:cf:34:d0:91:e7:a9:15:3a:24:23:5d:dd:c9:
2b:ef:0e:f6:d9:f9:f6:94:08:21:84:b6:9b:07:8c:
cd:40:bf:4f:df:d9:42:2c:3a:75:9f:ca:6b:c3:ba:
67:74:c5:fa:32:e9:e2:32:70:73:94:c7:d9:6a:0d:
d0:9b:92:5b:b3:71:61:aa:60:d9:a9:8c:ad:8d:b7:
23:48:92:04:09:17:ea:36:e5:c2:3f:3a:cf:30:31:
d5:a8:d2:89:43:4f:f4:38:6d:15:49:1d:18:5d:71:
5e:f9:bc:a6:18:3e:5a:51:90:a8:9d:4f:c6:b4:7b:
bf:6f:13:b8:93:4a:9e:74:9d:70:81:59:f0:ee:6e:
dc:7b:3a:34:df:77:eb:b1:d8:10:31:e5:ff:fd:a5:
ca:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FC:38:5D:29:15:59:28:2D:7F:B2:43:CC:F5:CD:A1:77:6E:06:26
X509v3 Authority Key Identifier:
keyid:30:61:34:BC:F5:9F:58:1D:6B:76:63:0C:FA:87:86:78:76:A2:92:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGE0vPWfWB1rdmMM-oeGeHaikhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/bPw4XSkVWSgtf7JDzPXNoXduBiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a8941a-7250-48ec-aaf8-6d8ea9d1cd73/1/MGE0vPWfWB1rdmMM-oeGeHaikhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:56c0::/32
Signature Algorithm: sha256WithRSAEncryption
18:97:66:7a:c6:2d:26:8e:f0:83:8f:c2:d1:e1:bc:9f:9c:6d:
70:c3:3e:d4:ec:d9:d9:23:5c:5d:cb:db:b5:90:3d:a5:31:fb:
85:7d:8b:1a:7f:6b:6e:b0:45:35:cb:66:c5:a3:ad:84:f7:7e:
1a:3b:12:ca:6b:e7:d5:dc:f1:3a:5d:d7:a9:59:a1:77:e8:60:
03:2d:d1:e1:8b:80:68:c4:df:9a:9e:32:72:8c:5e:b1:52:c5:
95:23:06:d1:b5:4a:3d:c3:0f:55:44:f7:4d:18:47:2b:12:f2:
7a:fd:11:15:04:f8:f6:9b:e4:42:45:09:d4:e9:15:0d:d2:53:
34:d8:d9:f7:b1:e2:a3:65:92:6b:f5:0f:6b:bc:af:bf:b5:77:
05:1c:cb:4d:66:ef:31:ad:8d:a4:56:df:dd:53:a9:fe:8e:63:
86:85:da:46:c5:7f:04:ce:30:bb:67:73:12:a8:3d:bb:da:a0:
7f:86:a6:7b:c3:87:f9:58:23:52:e0:a1:cd:f0:95:62:f7:39:
d6:68:0f:42:b2:99:45:66:8c:20:ed:ff:fb:56:0d:fb:da:7f:
db:a5:17:3e:fa:39:24:6e:b1:fb:c5:e8:e6:9d:c6:05:ae:3f:
17:8d:22:25:b3:99:af:fd:71:eb:10:4e:0d:5e:a6:26:a3:ca:
ec:db:98:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:09 2024 by rpki-client on console-fra.rpki-client.org