Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/15cc52-51ee-460e-9aeb-ee5559b3658b/1/EdddN2lYtdWaDtLjhhbFQ_p4PzM.roa
File: EdddN2lYtdWaDtLjhhbFQ_p4PzM.roa (raw, json)
Hash identifier: uouIlAvA41Zd85cFP6evjmaUMCQ17jwY7XOS78rPuuI=
Subject key identifier: 11:D7:5D:37:69:58:B5:D5:9A:0E:D2:E3:86:16:C5:43:FA:78:3F:33
Certificate issuer: /CN=91a071508338260551a55f01fd0708fdf5e08287
Certificate serial: 01856B8A1D52811429B619CB241E1BCE2BAA
Authority key identifier: 91:A0:71:50:83:38:26:05:51:A5:5F:01:FD:07:08:FD:F5:E0:82:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaBxUIM4JgVRpV8B_QcI_fXggoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/15cc52-51ee-460e-9aeb-ee5559b3658b/1/EdddN2lYtdWaDtLjhhbFQ_p4PzM.roa
Signing time: Sun 01 Jan 2023 04:14:51 +0000
ROA not before: Sun 01 Jan 2023 04:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8466
IP address blocks: 2a05:9ec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:1d:52:81:14:29:b6:19:cb:24:1e:1b:ce:2b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a071508338260551a55f01fd0708fdf5e08287
Validity
Not Before: Jan 1 04:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11d75d376958b5d59a0ed2e38616c543fa783f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7b:2c:1f:6e:79:9d:3f:5a:9f:3f:75:55:93:
9f:79:b2:c9:97:b9:bc:40:ee:ed:73:5c:1d:d7:57:
43:9a:8f:5d:8c:50:e5:64:d2:ef:a8:ea:52:b6:f0:
b3:51:79:36:04:bd:6e:88:23:c0:24:d3:27:c6:53:
d0:d5:2d:15:ca:a0:2c:50:4c:a3:5d:b0:32:82:18:
f4:62:fc:7c:9a:96:ac:c7:ab:16:84:21:ea:e1:27:
05:89:34:65:d3:0e:bf:81:15:bb:8c:c8:ff:12:07:
bd:ab:c9:f2:8a:e5:fa:14:9e:ed:16:9c:10:6e:86:
51:2f:af:fe:ab:dd:fa:47:35:21:11:ab:92:6c:77:
75:c0:42:6f:7d:24:38:c6:7b:a4:74:6c:9c:48:a2:
9c:83:9d:2a:83:cc:b2:c8:ea:d4:ff:a6:a0:95:b6:
9b:d2:82:81:97:31:57:9e:01:18:13:c9:16:ee:b8:
bb:b6:d3:5d:b6:da:1c:89:a1:59:19:91:4a:ae:1d:
1f:1c:15:d4:f8:bb:e3:06:10:76:a3:b7:0f:a6:29:
94:a8:0a:92:92:7b:9a:e3:3e:db:5e:35:2c:fd:52:
0a:08:c2:b0:82:bf:25:cd:b8:b5:d0:f9:d6:cd:9e:
a5:c0:8f:7c:81:ef:20:18:44:5b:7a:05:3e:f8:bd:
fb:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D7:5D:37:69:58:B5:D5:9A:0E:D2:E3:86:16:C5:43:FA:78:3F:33
X509v3 Authority Key Identifier:
keyid:91:A0:71:50:83:38:26:05:51:A5:5F:01:FD:07:08:FD:F5:E0:82:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaBxUIM4JgVRpV8B_QcI_fXggoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/15cc52-51ee-460e-9aeb-ee5559b3658b/1/EdddN2lYtdWaDtLjhhbFQ_p4PzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/15cc52-51ee-460e-9aeb-ee5559b3658b/1/kaBxUIM4JgVRpV8B_QcI_fXggoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9ec0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:2e:a6:02:a4:8c:c2:32:80:47:d7:6e:8d:b6:72:ba:1b:4f:
29:2f:b0:1e:f9:d0:f7:b8:73:18:f9:c0:71:a8:99:bc:61:40:
b9:c9:50:38:08:a8:e8:08:42:3f:31:5b:e3:46:99:f9:8f:9d:
4b:3e:3c:99:9c:2d:b0:11:29:70:e1:af:ac:43:25:71:d8:cd:
4c:4c:c0:11:a1:17:6d:8f:15:54:eb:0f:a4:f9:3a:b7:b1:29:
5f:9a:e3:23:10:91:d3:b7:75:8e:06:0f:bd:8b:78:cb:a3:0d:
c5:c8:dd:72:05:01:9e:0a:03:59:7c:3c:33:24:45:49:88:a5:
3f:d8:87:e2:2a:61:4b:f5:ce:cd:8d:45:c2:e0:db:e1:53:fa:
6b:02:19:72:0c:ae:67:07:9f:76:07:50:f7:cc:25:78:e2:05:
47:e2:12:07:a5:2c:f2:56:e0:87:4d:d0:16:70:ea:e6:76:55:
8e:c8:eb:85:fe:92:eb:6a:ff:16:d2:8d:41:86:7e:db:d1:58:
80:79:10:ab:e1:71:37:9f:9d:1e:ae:c7:e3:0c:00:cc:5d:c2:
f1:9e:26:da:eb:6e:0a:a2:43:5f:4c:3a:44:80:92:3b:43:b6:
9e:b1:b2:10:dc:50:35:91:02:64:c2:c8:fb:3e:e5:af:61:19:
ad:aa:ec:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:22 2024 by rpki-client on console-fra.rpki-client.org