Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/seXoggulEsV3LJiH9GlV0T_ZpIw.roa
File: seXoggulEsV3LJiH9GlV0T_ZpIw.roa (raw, json)
Hash identifier: I67oGZztqgVuY+ZMvm7CrgCzuEeWI14Gy7+pJZeCA0A=
Subject key identifier: B1:E5:E8:82:0B:A5:12:C5:77:2C:98:87:F4:69:55:D1:3F:D9:A4:8C
Certificate issuer: /CN=5d4fccc994e94131dc11bfc95c64585b345e01f5
Certificate serial: 01856B2EA1DD0E9AC9A4677675BC8E056B87
Authority key identifier: 5D:4F:CC:C9:94:E9:41:31:DC:11:BF:C9:5C:64:58:5B:34:5E:01:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XU_MyZTpQTHcEb_JXGRYWzReAfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/seXoggulEsV3LJiH9GlV0T_ZpIw.roa
Signing time: Sun 01 Jan 2023 02:34:56 +0000
ROA not before: Sun 01 Jan 2023 02:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201458
IP address blocks: 2a03:4720::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:2e:a1:dd:0e:9a:c9:a4:67:76:75:bc:8e:05:6b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4fccc994e94131dc11bfc95c64585b345e01f5
Validity
Not Before: Jan 1 02:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e5e8820ba512c5772c9887f46955d13fd9a48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:cc:93:d0:fb:b8:d9:21:98:45:9d:d6:a4:49:
9a:eb:b4:f1:14:6f:dc:2d:13:5c:f4:97:55:84:62:
10:5e:bc:74:5b:86:21:48:74:c3:f1:07:8e:d1:ca:
5b:9c:0b:20:8d:42:3d:5e:a8:3b:9e:cf:a5:21:ec:
cd:81:9d:9e:a5:a2:1f:99:83:bd:06:be:2f:d6:ad:
1e:19:86:12:7c:25:43:6f:bd:eb:2a:f3:62:5d:d3:
37:fe:9b:c7:9c:30:9c:5f:8a:fc:ae:09:71:b4:ce:
28:d8:ee:38:fc:c0:42:3b:b9:eb:d3:c1:53:da:3b:
5b:c8:27:ad:4a:6d:58:56:e5:76:07:a2:a0:4a:36:
fd:06:c8:5b:bf:2c:9d:68:cd:29:ba:25:10:39:18:
b0:cf:f5:58:7a:21:1f:57:75:e9:28:39:1b:cd:5f:
85:dd:1a:fa:83:7e:04:fa:39:1a:2f:81:4b:0b:0b:
42:e5:77:80:e8:34:e8:d6:04:f9:3f:5c:da:16:8b:
82:fd:30:e3:f7:97:25:44:57:49:2e:0d:10:c9:5f:
7e:7f:25:0a:79:a4:27:71:38:bb:70:3e:c7:a0:9a:
a0:6b:23:75:f3:b8:44:fd:16:19:b0:ca:54:9d:c5:
8c:bb:e8:68:2c:80:c5:99:6e:6f:d8:2d:3f:1e:8d:
df:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E5:E8:82:0B:A5:12:C5:77:2C:98:87:F4:69:55:D1:3F:D9:A4:8C
X509v3 Authority Key Identifier:
keyid:5D:4F:CC:C9:94:E9:41:31:DC:11:BF:C9:5C:64:58:5B:34:5E:01:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XU_MyZTpQTHcEb_JXGRYWzReAfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/seXoggulEsV3LJiH9GlV0T_ZpIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/XU_MyZTpQTHcEb_JXGRYWzReAfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:4720::/32
Signature Algorithm: sha256WithRSAEncryption
b2:f4:a1:8d:d0:a4:d7:c7:1e:be:26:8f:73:80:ca:22:7f:9e:
7d:be:d9:f2:77:65:e5:cf:23:7c:7e:9a:94:2b:e1:6e:4f:5c:
4b:3f:e9:89:d2:b8:26:22:c0:0f:12:1f:bd:72:47:3d:0a:02:
48:f8:d2:c9:a5:f5:40:56:04:72:fd:18:f0:cb:15:8f:1d:69:
bc:59:db:a9:a8:f6:c5:d7:0e:f4:d3:1f:91:7d:13:20:78:1b:
ee:eb:8c:ab:39:fe:ba:8d:9f:6d:d5:48:b3:10:94:5b:e8:64:
b8:23:01:e0:5a:0b:f5:b1:a9:fe:da:38:0b:d9:27:f4:46:a9:
c7:da:2e:85:7e:b8:c4:89:2d:48:63:c2:fc:80:03:06:65:c3:
67:f2:2c:85:87:43:f6:af:57:a5:96:5d:ee:00:06:4e:ce:9e:
d2:6b:cf:73:e7:30:80:b8:1e:90:3b:89:70:16:e6:df:cb:51:
4e:66:9d:69:14:96:6b:1f:49:fc:e6:cc:f3:a8:ac:14:ab:44:
52:f6:5b:a5:92:77:a3:d8:b8:44:19:83:56:90:21:f9:0d:c7:
88:c1:d7:54:3f:0f:d9:d2:0c:ce:fe:5c:6e:d5:18:61:d0:c3:
96:6c:c0:b0:96:a3:24:31:67:a3:5c:f6:da:a8:98:58:67:f9:
24:3b:b5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:33 2024 by rpki-client on console-fra.rpki-client.org