Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/Bp4F1VH9DSYxF6nQcDtUsodzRdI.roa
File: Bp4F1VH9DSYxF6nQcDtUsodzRdI.roa (raw, json)
Hash identifier: jIcM1RcO1Ggt/TqNHcTLs9R55vwSbwfvHpEnxxmAcE8=
Subject key identifier: 06:9E:05:D5:51:FD:0D:26:31:17:A9:D0:70:3B:54:B2:87:73:45:D2
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 0189BDF5507925F8B9658CDFAFD5A9EE203E
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/Bp4F1VH9DSYxF6nQcDtUsodzRdI.roa
Signing time: Fri 04 Aug 2023 00:31:58 +0000
ROA not before: Fri 04 Aug 2023 00:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51087
IP address blocks: 2a0f:7803:ff70::/44 maxlen: 48
2a0f:7802:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bd:f5:50:79:25:f8:b9:65:8c:df:af:d5:a9:ee:20:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Aug 4 00:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=069e05d551fd0d263117a9d0703b54b2877345d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:97:2a:3b:79:d5:66:4a:5e:b4:43:3a:98:8c:
87:e2:9e:94:d9:e5:c0:14:d8:af:80:bf:62:a4:ca:
b5:05:39:83:4f:3d:f2:af:9e:e3:93:18:c2:73:d2:
76:7c:3e:f4:ca:8d:2d:6c:d1:16:65:8e:c4:62:5d:
b3:bd:13:e8:1e:7d:17:f4:5c:c9:7e:19:0a:ee:8c:
68:d3:c4:c1:40:ee:86:b2:6a:69:08:f8:bc:4d:c9:
2a:30:6c:a2:7e:82:c2:a8:4b:c1:80:bf:af:29:75:
22:93:cf:ca:61:bc:e7:fc:61:6e:24:63:9e:09:32:
34:fc:4f:f1:d7:78:bb:3d:63:af:41:78:15:d9:10:
b8:70:f0:d0:23:bc:14:40:1c:7f:d6:61:d6:c9:b1:
85:83:23:d4:4f:38:57:96:3e:a8:00:05:f7:af:5a:
de:f7:74:e0:f9:0d:2e:1c:42:97:87:86:ae:84:e5:
3a:31:3d:1d:a9:22:c0:8d:47:25:95:18:fe:48:20:
c8:49:29:ab:6c:50:60:cb:2c:44:d0:84:f2:b4:79:
c4:9e:97:15:bb:1d:22:3a:19:33:1f:3e:19:8e:e0:
23:46:59:d8:c8:0d:7f:b1:2a:7a:cc:bf:d9:93:af:
08:2a:de:50:3f:79:55:d7:f7:82:e7:25:f3:42:c4:
54:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9E:05:D5:51:FD:0D:26:31:17:A9:D0:70:3B:54:B2:87:73:45:D2
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/Bp4F1VH9DSYxF6nQcDtUsodzRdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7802:1000::/36
2a0f:7803:ff70::/44
Signature Algorithm: sha256WithRSAEncryption
3d:54:81:49:79:e8:9b:68:bc:d9:86:c9:09:ec:75:c8:58:6e:
cc:14:2f:f0:30:a2:5e:03:be:9a:e2:50:a4:36:41:a3:3c:6a:
3e:1b:81:74:d5:7b:60:96:2a:4a:16:01:45:41:ae:0d:30:1c:
99:0b:09:b7:fc:82:08:80:e0:88:13:03:67:59:bf:c6:e3:bd:
9c:39:fd:f0:af:5e:cd:ed:b9:a7:99:ce:02:b3:e8:56:0a:7a:
b4:ac:89:7b:61:81:5a:c4:d7:48:30:7b:36:23:5c:28:20:75:
c2:43:c9:4e:45:37:e8:f6:0a:ce:de:08:f5:bf:02:ce:4a:e3:
3c:40:04:61:b7:cd:5f:aa:e6:3c:6f:a7:8f:0b:2d:6a:e5:35:
0e:bc:f9:fc:f6:5b:fd:a3:60:39:ec:2a:b0:3e:0e:85:3f:98:
f5:d4:15:51:02:b8:17:0b:0f:3a:a4:bb:72:e0:69:3f:62:e9:
0d:56:83:13:a9:c5:c8:a3:1d:fe:d9:28:1c:ce:44:cf:ed:9f:
91:f7:09:9d:95:2f:13:f5:54:70:17:41:9a:77:a7:21:34:57:
ce:92:32:4c:01:3e:4a:5e:84:42:1b:cf:24:aa:4c:59:27:b6:
8c:45:f3:36:08:af:e9:22:04:3a:0a:cb:2c:6a:a7:d9:95:a0:
53:6e:38:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:29 2024 by rpki-client on console-fra.rpki-client.org