Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/6Z5pXjs-jldVFIJ5ZUTgLHHCaGE.roa
File: 6Z5pXjs-jldVFIJ5ZUTgLHHCaGE.roa (raw, json)
Hash identifier: NtNl/e6HPJk/svrWwXX0LMuuuQYgyirfg6FlObhKvt8=
Subject key identifier: E9:9E:69:5E:3B:3E:8E:57:55:14:82:79:65:44:E0:2C:71:C2:68:61
Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial: 018D0DDF17E4F2D599C1C6F233F16D150FBD
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/6Z5pXjs-jldVFIJ5ZUTgLHHCaGE.roa
Signing time: Mon 15 Jan 2024 16:05:40 +0000
ROA not before: Mon 15 Jan 2024 16:05:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48407
IP address blocks: 93.94.55.0/24 maxlen: 24
2a00:8b20::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Jan 2024 06:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0d:df:17:e4:f2:d5:99:c1:c6:f2:33:f1:6d:15:0f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Validity
Not Before: Jan 15 16:05:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e99e695e3b3e8e57551482796544e02c71c26861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:13:49:e4:16:7b:37:5c:42:30:98:cc:81:86:
38:18:cc:3b:ed:a7:4c:46:9f:cb:97:2b:89:f4:b2:
e3:23:5e:34:43:19:ec:86:06:14:dc:e6:c7:68:60:
a9:0d:c3:52:29:b4:21:61:b1:5a:f0:2e:a6:d2:b6:
db:39:30:94:1f:a1:fc:e8:e1:14:29:6e:c7:b9:6a:
e6:6b:61:39:5f:94:cd:aa:74:6c:14:2c:ca:6f:76:
7f:cf:fb:be:c8:c6:d3:1a:29:c2:5a:11:14:e2:69:
f7:cf:c6:6b:ab:c2:df:9c:62:a3:7c:e4:37:8b:92:
19:b3:98:1c:0d:37:7b:7b:53:f8:a3:aa:0b:e2:f7:
4c:27:91:78:a3:da:1d:e8:29:c9:10:ee:55:4b:3a:
fa:74:17:38:22:30:b5:39:3f:58:b1:ef:c7:30:fd:
9d:8d:e5:30:b7:b0:9d:5f:c8:89:d8:5a:6f:36:e8:
24:3c:d3:ba:f1:fd:a9:ab:dc:f7:ff:79:3c:96:a6:
10:2e:e0:51:46:43:ad:ac:a0:e8:6d:7c:40:05:00:
74:54:01:ae:d0:fe:59:7e:56:22:45:06:b1:49:83:
39:79:1b:74:4d:32:af:fa:a7:97:e7:cb:db:eb:cc:
55:bc:7c:31:bf:ee:cf:ea:0f:99:8a:56:ce:9e:b6:
a7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9E:69:5E:3B:3E:8E:57:55:14:82:79:65:44:E0:2C:71:C2:68:61
X509v3 Authority Key Identifier:
keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/6Z5pXjs-jldVFIJ5ZUTgLHHCaGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.94.55.0/24
IPv6:
2a00:8b20::/32
Signature Algorithm: sha256WithRSAEncryption
aa:a2:6b:bb:e4:c1:09:80:9b:df:41:3e:5a:e6:ac:1d:d1:29:
29:36:b8:c5:68:fc:08:34:01:25:b3:b9:ad:68:d2:c8:e3:cc:
08:da:22:e7:bb:64:fc:8c:ec:e1:d8:9a:02:d2:f0:44:41:e5:
b7:69:f7:47:5b:75:ee:f5:cc:ab:47:6f:85:06:2f:f2:7f:df:
b7:8e:b9:1a:f2:7c:7f:7b:f2:43:9d:3d:f8:00:00:31:9b:d7:
0d:0d:0c:70:fa:6b:a5:3a:86:7f:57:9c:a1:a8:c5:d9:bf:40:
52:88:af:64:ef:6f:15:27:a2:4c:10:92:b0:b2:9b:32:3e:19:
86:e8:5c:33:05:1d:a7:d1:73:fb:4e:87:48:36:aa:6c:2e:d3:
d3:04:28:08:2e:63:53:73:1c:85:fe:48:80:fd:0a:38:46:cc:
c9:b6:a2:7b:ee:d0:36:65:48:28:1b:d4:a0:96:56:67:d4:a6:
3d:72:65:e6:ec:71:98:93:72:95:b8:b1:07:9f:9d:d4:12:fe:
79:32:32:9e:3c:9d:c0:95:30:f4:ed:68:0a:79:82:2e:62:89:
9e:9e:fc:f5:87:6e:8b:06:4c:5a:a4:dd:e3:61:31:58:77:32:
d5:36:7b:ce:29:a4:68:05:bb:d8:c3:05:cc:a0:89:60:9b:40:
c7:61:52:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:15 2024 by rpki-client on console-ams.rpki-client.org