Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/_isk6TwO38CcXDreo2hXdcTxLiI.roa
File: _isk6TwO38CcXDreo2hXdcTxLiI.roa (raw, json)
Hash identifier: +ggR+bYvOs2cl0OV37QN6aJ3gTu2fZUgnhwZImIxujE=
Subject key identifier: FE:2B:24:E9:3C:0E:DF:C0:9C:5C:3A:DE:A3:68:57:75:C4:F1:2E:22
Certificate issuer: /CN=593b53fb9306346f272494928d77839cbaf9ddc7
Certificate serial: 01856DA65847C991BAA1B3B42FCE27FF0AF3
Authority key identifier: 59:3B:53:FB:93:06:34:6F:27:24:94:92:8D:77:83:9C:BA:F9:DD:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTtT-5MGNG8nJJSSjXeDnLr53cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/_isk6TwO38CcXDreo2hXdcTxLiI.roa
Signing time: Sun 01 Jan 2023 14:04:56 +0000
ROA not before: Sun 01 Jan 2023 14:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12637
IP address blocks: 2a0b:ee40::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:58:47:c9:91:ba:a1:b3:b4:2f:ce:27:ff:0a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=593b53fb9306346f272494928d77839cbaf9ddc7
Validity
Not Before: Jan 1 14:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe2b24e93c0edfc09c5c3adea3685775c4f12e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:79:7b:9b:b7:66:4c:68:14:80:bc:79:9f:20:
f2:2f:a0:ae:d0:c8:1d:4d:58:80:72:7b:58:d0:4b:
d4:2c:f4:53:16:1f:3d:c7:58:8d:90:08:d8:d5:fa:
89:bb:b5:19:e5:45:54:e6:3e:11:1e:e3:52:33:76:
b5:72:dc:60:3e:2b:cf:f8:33:63:b5:1f:63:47:f9:
63:61:73:82:d7:55:50:3f:d5:0e:e9:97:51:8e:57:
56:4c:57:52:b5:fd:ed:b3:3c:58:af:16:16:0d:85:
eb:9a:45:0b:2f:93:09:51:46:48:9a:d3:85:a7:6e:
31:fb:e0:18:a2:e3:0a:5e:9d:e5:8d:f9:ed:c9:f2:
93:18:e1:64:2d:d3:66:4e:56:03:e3:1a:39:d2:8b:
a4:e4:37:28:2a:bb:17:3a:bb:24:a8:82:02:9c:e9:
08:3b:35:56:36:43:7f:5d:55:0d:c0:58:c7:39:3d:
08:1a:9d:d4:cf:c9:bf:e2:0f:bc:57:f5:ca:83:52:
be:40:8f:40:1a:25:c4:ca:de:f8:51:d4:5e:3d:51:
69:f6:08:82:21:40:6d:34:9a:bd:b4:0b:09:8b:d9:
e0:f0:1a:51:3a:5d:85:b4:b4:af:8d:4f:4a:26:49:
ef:d6:72:6f:61:6b:fe:98:02:ab:45:2c:e5:17:7c:
02:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2B:24:E9:3C:0E:DF:C0:9C:5C:3A:DE:A3:68:57:75:C4:F1:2E:22
X509v3 Authority Key Identifier:
keyid:59:3B:53:FB:93:06:34:6F:27:24:94:92:8D:77:83:9C:BA:F9:DD:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTtT-5MGNG8nJJSSjXeDnLr53cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/_isk6TwO38CcXDreo2hXdcTxLiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/WTtT-5MGNG8nJJSSjXeDnLr53cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:ee40::/29
Signature Algorithm: sha256WithRSAEncryption
af:06:f7:8e:33:8b:6b:6c:8e:4d:84:2a:01:a9:93:e1:06:37:
03:3b:3c:35:4f:82:3f:e3:6a:7c:2e:b8:a1:f9:db:d4:8c:71:
1a:eb:c2:3e:a9:bc:48:2b:a8:fa:c2:ac:13:e6:34:3e:1e:6b:
ac:d8:a0:f6:fa:79:0b:99:27:90:41:b0:45:be:d4:0d:68:b1:
e3:cf:0a:f1:6b:05:c8:30:e3:8b:94:98:e6:c8:a2:c9:1f:a1:
09:c1:f5:1b:57:c3:9a:50:b1:e3:a6:11:63:31:f2:4a:c1:99:
72:7c:77:c5:b4:bf:38:17:00:31:9c:d7:72:ff:ad:86:f7:0d:
02:a8:d0:a8:32:46:7c:fa:49:ea:f7:49:b9:a3:de:77:2b:7f:
9c:29:12:ca:1b:30:42:2c:06:d7:dc:00:4d:8b:af:78:73:d8:
5f:2c:b2:18:40:55:03:c4:97:83:ec:1d:f8:21:7e:3e:33:ba:
41:25:f6:e2:b4:25:c2:8c:d8:86:8a:5d:17:0c:28:9c:e7:05:
f3:fb:1a:0c:bc:22:31:62:db:68:42:83:0e:a6:ef:17:1d:92:
21:26:5d:d1:12:50:ed:e9:a9:0d:25:d5:31:b6:13:e2:22:41:
aa:df:3e:09:5b:9a:ea:6e:3f:9c:e3:4e:c6:f3:9c:5c:aa:e6:
ca:6f:47:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:12 2024 by rpki-client on console-fra.rpki-client.org