Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/2E55V59ZsZiZP4RFR_skTm5kS0U.roa
File: 2E55V59ZsZiZP4RFR_skTm5kS0U.roa (raw, json)
Hash identifier: /3i/tK84+eNkn1+oJLQq9eTvAXcTkiIT1SNtMgzwwSU=
Subject key identifier: D8:4E:79:57:9F:59:B1:98:99:3F:84:45:47:FB:24:4E:6E:64:4B:45
Certificate issuer: /CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Certificate serial: 018C44C0B7DE41A8ED64DD389A2A30056F4A
Authority key identifier: C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/2E55V59ZsZiZP4RFR_skTm5kS0U.roa
Signing time: Thu 07 Dec 2023 14:48:49 +0000
ROA not before: Thu 07 Dec 2023 14:48:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 2a05:5100::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:44:c0:b7:de:41:a8:ed:64:dd:38:9a:2a:30:05:6f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61850173c8d28d5afbf91091ca63e5da3c75ed4
Validity
Not Before: Dec 7 14:48:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d84e79579f59b198993f844547fb244e6e644b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:a4:87:e5:e0:66:40:c4:27:fa:95:a5:78:
66:99:25:64:ab:d6:ab:ba:df:7f:4f:b8:b4:77:0b:
07:91:18:89:84:fe:aa:c0:ee:67:10:77:17:af:1c:
c6:c7:98:d1:d8:ec:8e:34:df:fb:7a:0b:76:d6:cc:
14:11:09:53:27:07:86:f3:24:81:ba:de:5b:db:27:
be:f2:4f:c3:56:f1:67:d3:57:fc:2b:a4:bc:eb:cf:
0f:21:c0:ec:43:b8:c6:bc:d3:05:26:b3:24:a4:5e:
84:02:75:57:6b:c5:fc:dc:cc:7e:c5:f6:e1:9c:f2:
fd:9b:3c:19:84:95:f7:2d:eb:be:8b:73:9e:11:bb:
c6:ae:8d:12:ba:d7:f6:87:49:c6:2c:e7:b9:6d:3a:
66:b3:48:b4:6b:8c:69:04:66:15:3a:08:c2:c1:25:
cc:e5:a3:e8:6b:97:03:c4:8e:d9:7e:5d:7b:ab:be:
00:0b:e9:a7:b6:37:11:f8:7e:bc:ed:7a:16:74:16:
c8:0b:30:3e:90:df:b2:e9:80:7f:fb:6e:15:0e:f7:
9a:c8:94:d4:1d:28:c3:e2:ca:3e:ec:29:ac:85:d9:
a9:a3:64:c3:0c:2d:c4:aa:15:3f:b8:25:5a:a4:3d:
7c:9d:d2:04:ae:eb:57:fe:f3:43:52:1a:8b:1f:eb:
b8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4E:79:57:9F:59:B1:98:99:3F:84:45:47:FB:24:4E:6E:64:4B:45
X509v3 Authority Key Identifier:
keyid:C6:18:50:17:3C:8D:28:D5:AF:BF:91:09:1C:A6:3E:5D:A3:C7:5E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/2E55V59ZsZiZP4RFR_skTm5kS0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ee09f1-7d0b-431f-aaee-bb8debc00388/1/xhhQFzyNKNWvv5EJHKY-XaPHXtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:5100::/48
Signature Algorithm: sha256WithRSAEncryption
0a:c8:00:ac:05:db:9c:44:0b:ac:22:d0:56:15:29:bc:e4:30:
b5:03:d0:af:2e:67:5b:79:32:7e:75:47:5d:77:2a:b3:8d:e1:
56:80:10:f4:17:6c:91:e8:0f:18:e2:db:48:f1:96:5c:0f:39:
01:c9:21:99:4e:f3:9b:64:5a:fa:ef:1b:8a:9b:51:58:e8:62:
12:0e:41:93:0c:27:b9:95:f5:08:cb:e1:c8:0d:18:e4:ee:db:
32:53:9c:ce:2d:e4:4e:22:88:2f:fc:17:7e:94:c2:00:7d:cd:
9d:60:52:fc:95:23:52:c2:ac:18:65:de:a7:35:1a:d3:bb:e1:
be:d8:70:7d:a3:c7:bd:a9:5c:49:02:64:d0:7d:7d:b4:eb:82:
5f:84:c3:75:28:c8:55:65:a3:43:0b:83:97:79:88:64:b1:cd:
98:8c:11:a9:14:1d:7a:99:60:8a:99:7b:73:21:3b:f2:75:4d:
6e:03:ea:e5:3e:d5:fd:f0:9a:62:16:a0:4c:7f:5e:19:38:8d:
28:f3:85:87:ab:87:87:c2:c9:78:2f:78:41:ed:d0:ff:f2:24:
0b:43:9f:d3:55:a3:9b:da:49:34:6c:90:19:d0:b7:35:c6:9a:
be:90:87:bb:bb:6c:47:78:e2:d3:5b:10:d3:8a:36:f2:a4:b2:
90:b9:17:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:30 2024 by rpki-client on console-fra.rpki-client.org