Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/oNhrBm4wHFJ4D3WVsiW0V6tw2Sg.roa
File: oNhrBm4wHFJ4D3WVsiW0V6tw2Sg.roa (raw, json)
Hash identifier: U+z6Wxnsqi+VZBSfX7gZ2kxahDVBI/gGJwYNY2mXj7o=
Subject key identifier: A0:D8:6B:06:6E:30:1C:52:78:0F:75:95:B2:25:B4:57:AB:70:D9:28
Certificate issuer: /CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Certificate serial: 01856B93686517A88FAD2420F094CC744F7C
Authority key identifier: CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/oNhrBm4wHFJ4D3WVsiW0V6tw2Sg.roa
Signing time: Sun 01 Jan 2023 04:25:00 +0000
ROA not before: Sun 01 Jan 2023 04:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64445
IP address blocks: 2a00:8c60:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:68:65:17:a8:8f:ad:24:20:f0:94:cc:74:4f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Validity
Not Before: Jan 1 04:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0d86b066e301c52780f7595b225b457ab70d928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3f:bf:c6:63:4a:01:3f:2d:b6:3a:29:f4:61:
e9:7f:08:db:4a:c1:83:d2:ce:7c:24:94:c4:aa:5d:
0b:29:60:31:ae:b0:15:09:f4:e3:a9:65:cd:12:de:
9e:ef:10:11:3f:91:5f:0c:60:f2:bc:88:f4:f5:16:
39:8d:27:d0:76:43:b3:6c:3e:1e:1f:4e:7b:3b:b2:
5a:a6:78:2c:a4:b3:72:a3:d2:fa:37:b2:77:81:42:
f6:21:2c:c7:fa:1c:a2:36:5b:37:3b:cd:65:17:dd:
75:93:fe:73:a3:19:3c:7e:f6:59:cf:bc:81:7e:22:
16:c4:01:aa:3f:ed:9b:8e:4c:9b:2f:08:c3:4d:ff:
e9:66:f5:7f:76:eb:b1:47:6a:d8:70:e8:3f:d8:dc:
95:19:85:d1:fc:59:9e:c3:84:f2:32:9f:8a:a5:e0:
c4:97:4c:71:fe:df:45:84:e2:22:2b:6c:b6:8c:d9:
97:67:8c:28:3d:a5:66:dc:b0:1f:92:8a:8b:5c:ee:
91:4d:1d:17:fd:83:0b:f5:28:60:06:09:8e:c6:b8:
6e:29:a0:69:e3:cb:c7:83:6b:b3:69:78:14:ad:de:
5a:8e:13:b0:95:0d:54:a3:d3:9a:0d:c0:26:07:e5:
37:f4:bb:d5:1d:3e:e7:76:c6:60:95:98:02:4f:bb:
64:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D8:6B:06:6E:30:1C:52:78:0F:75:95:B2:25:B4:57:AB:70:D9:28
X509v3 Authority Key Identifier:
keyid:CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/oNhrBm4wHFJ4D3WVsiW0V6tw2Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8c60:c::/48
Signature Algorithm: sha256WithRSAEncryption
3c:d6:33:70:79:83:36:8a:eb:35:0a:29:fd:69:5d:81:c7:4c:
e7:8e:f0:9d:51:3f:8f:e1:03:8c:28:1c:18:45:05:08:a7:49:
69:e3:25:e1:78:f5:fb:f7:fb:2e:cf:eb:70:d5:5f:ff:60:ff:
51:12:6f:0f:30:65:b3:60:85:63:bc:37:10:06:80:12:0c:3d:
38:1c:78:d2:ff:1d:64:e9:23:8b:46:33:f3:cb:d9:61:63:4d:
71:08:1c:00:77:be:b2:d9:9b:2f:cf:d4:d4:f3:c3:05:8f:32:
08:c8:f7:94:56:49:68:14:1d:62:5e:8e:95:a6:1b:58:29:e1:
1b:f4:54:1b:38:5c:d1:77:d3:5d:41:61:3f:8d:7a:be:b4:ce:
76:21:77:c4:bb:d0:1b:92:4c:fc:16:1e:26:29:f5:22:97:b0:
62:83:b8:2e:87:c5:de:84:1c:ec:9f:42:72:4d:e5:43:57:1b:
ad:d4:9b:dc:a1:9c:80:bd:9e:8b:90:9c:3d:c5:9b:49:4e:43:
3b:50:69:86:e2:f4:87:06:5a:95:00:26:a1:ac:eb:67:e6:0e:
e4:bf:a8:aa:26:ea:37:1f:8c:ad:23:7e:a9:79:f5:d8:e9:6b:
30:2b:fa:d7:8f:98:10:32:a6:e4:38:2c:d3:59:62:fe:30:9f:
40:e5:8e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:15 2024 by rpki-client on console-fra.rpki-client.org