Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/XXLB-XdCx3iqEjGmJoT1pLflHGU.roa
File: XXLB-XdCx3iqEjGmJoT1pLflHGU.roa (raw, json)
Hash identifier: sfiQOTEAxui6MWs1pDK11l7Kp3cGXYmF0jbuiC9/Y1c=
Subject key identifier: 5D:72:C1:F9:77:42:C7:78:AA:12:31:A6:26:84:F5:A4:B7:E5:1C:65
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 018B9E9F36BEDD543FF94C63FA17CB31A63E
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/XXLB-XdCx3iqEjGmJoT1pLflHGU.roa
Signing time: Sun 05 Nov 2023 08:35:16 +0000
ROA not before: Sun 05 Nov 2023 08:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0f:7803:fd11::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9e:9f:36:be:dd:54:3f:f9:4c:63:fa:17:cb:31:a6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Nov 5 08:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d72c1f97742c778aa1231a62684f5a4b7e51c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:53:06:27:f3:1b:b1:0f:67:49:df:3c:a4:dd:
6f:75:c1:af:92:75:82:ab:92:c7:94:fe:61:e1:77:
0a:50:50:c9:c2:72:dd:4e:ab:28:0d:c3:a9:f2:c7:
1a:40:30:eb:21:15:8f:c2:1d:f3:ce:8d:3c:b4:16:
5d:a5:6b:24:b1:70:71:b8:d4:5c:48:6f:1b:8e:ce:
96:d1:86:af:0a:7e:07:ca:d6:8e:45:73:f9:a1:0e:
8c:3f:48:92:b4:e2:f6:44:62:17:11:c1:2a:54:7d:
90:3b:bc:d0:7e:40:2d:2d:06:ba:53:f9:d7:46:3a:
7c:91:31:72:22:61:90:c2:e0:e6:d0:34:90:79:fa:
b0:bc:41:92:48:b6:d5:60:5b:b4:17:59:a9:b3:51:
75:84:9a:c4:b1:c3:ba:6f:7f:01:77:c3:38:75:35:
3d:ca:e9:0b:73:d7:d1:68:07:ab:95:8b:69:ac:02:
d6:f2:99:bc:fa:f0:4a:0e:49:9a:f4:32:6c:b7:44:
1f:1e:b7:7b:8f:9a:ff:9d:31:f4:51:93:80:cb:7c:
e5:79:d5:74:02:a6:1a:a0:5b:8a:0b:a8:98:e4:f2:
75:d0:b4:31:26:78:a5:19:23:f9:75:30:2b:fa:6c:
96:39:da:42:e3:b4:61:62:74:8a:2b:d9:81:b6:31:
9b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:72:C1:F9:77:42:C7:78:AA:12:31:A6:26:84:F5:A4:B7:E5:1C:65
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/XXLB-XdCx3iqEjGmJoT1pLflHGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:fd11::/48
Signature Algorithm: sha256WithRSAEncryption
82:87:71:28:20:5f:25:2f:54:2c:ae:aa:62:38:9f:83:30:57:
ba:ac:a3:bb:d0:a5:c5:94:08:a6:b1:dd:9f:1c:f1:4a:77:ac:
aa:0f:c1:1c:f5:a8:6b:b6:6a:5c:f2:fb:0f:e4:82:b8:f4:a5:
d6:2f:23:95:c8:2c:c3:0a:d9:9d:2c:80:52:dd:b8:75:29:d0:
4e:b5:30:44:b6:56:87:2a:6d:e2:40:48:3b:f6:e5:b3:ca:d7:
fb:58:51:d7:ea:99:18:75:57:88:36:e0:7e:e2:6d:2f:32:a9:
42:88:6a:00:bd:d2:10:fe:2c:c9:87:d8:1c:12:fa:12:48:51:
8f:d3:19:ea:ca:30:1f:09:4f:6d:24:c5:54:94:7e:52:cf:b0:
8e:b2:2d:94:8c:69:3f:92:36:e1:3a:fe:88:6c:3f:e7:ae:ee:
6f:93:43:7d:8c:cb:60:33:eb:99:be:b5:41:02:fe:9e:fe:cc:
ee:29:07:96:e4:c5:f0:86:6c:97:95:f3:fe:ec:c7:47:6e:e0:
c7:e3:bb:ca:96:fb:d0:1a:c3:70:4c:9b:86:95:60:74:b5:08:
6f:4f:8b:5f:be:b3:31:81:7f:26:ff:7a:77:9e:06:7f:c8:20:
34:9f:d8:79:fa:b1:40:fd:78:79:e2:ed:3c:7d:70:11:2d:dc:
09:51:76:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:29 2024 by rpki-client on console-fra.rpki-client.org