Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/5RBtgCD5tZprikJESmnpWPf5u6Q.roa
File: 5RBtgCD5tZprikJESmnpWPf5u6Q.roa (raw, json)
Hash identifier: siJqoIgYcZYE77UUYMMkR4Ji6iYDTQ1fzuySe2QawpQ=
Subject key identifier: E5:10:6D:80:20:F9:B5:9A:6B:8A:42:44:4A:69:E9:58:F7:F9:BB:A4
Certificate issuer: /CN=291f0b73e67d63c5a4c9046814166a9e21625f28
Certificate serial: 018573039CE624476A2421D018E2A1CD66AB
Authority key identifier: 29:1F:0B:73:E6:7D:63:C5:A4:C9:04:68:14:16:6A:9E:21:62:5F:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/5RBtgCD5tZprikJESmnpWPf5u6Q.roa
Signing time: Mon 02 Jan 2023 15:04:54 +0000
ROA not before: Mon 02 Jan 2023 15:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200747
IP address blocks: 2a04:5d00:10::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:9c:e6:24:47:6a:24:21:d0:18:e2:a1:cd:66:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291f0b73e67d63c5a4c9046814166a9e21625f28
Validity
Not Before: Jan 2 15:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5106d8020f9b59a6b8a42444a69e958f7f9bba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:b6:ef:71:bb:08:46:ec:ee:0a:6c:59:cb:
5a:53:31:63:1e:53:6a:2f:95:6e:6d:86:0f:2b:4a:
0d:e4:f0:57:82:03:14:bb:59:d8:3b:87:bc:a7:11:
ce:96:50:7a:76:75:1b:b0:4b:18:0c:dd:8f:7c:5e:
79:bd:91:5c:a3:5c:92:94:ea:27:e2:d8:6b:a0:63:
f1:05:70:e1:a7:34:65:e9:c4:96:c1:2c:c4:a1:f2:
86:4b:26:d7:9e:25:a9:36:e3:66:46:37:f7:1f:0f:
01:1a:ac:f0:f6:49:7a:e1:9a:92:1c:2e:8f:48:6f:
7e:88:e1:9a:43:7e:5d:67:d5:8e:b9:96:39:0f:94:
b6:a0:12:1d:a0:16:81:c8:4d:40:f9:43:30:7d:27:
be:12:1c:9c:0e:e4:35:f5:40:77:f9:18:e4:0e:06:
f3:26:3f:46:5d:31:73:a5:05:a5:00:6c:89:5e:27:
d3:49:ae:47:80:b0:d6:b0:bd:8c:45:bb:15:0b:f6:
61:97:ad:da:90:2e:15:75:be:53:0b:1d:bd:a3:08:
07:dc:10:07:62:83:7c:c6:5f:52:23:25:f7:6f:fc:
13:d2:ec:c4:2a:b8:68:c0:38:a4:5a:db:75:44:f6:
27:84:ce:d5:e6:82:a5:71:95:fd:a8:b7:18:c9:37:
3d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:10:6D:80:20:F9:B5:9A:6B:8A:42:44:4A:69:E9:58:F7:F9:BB:A4
X509v3 Authority Key Identifier:
keyid:29:1F:0B:73:E6:7D:63:C5:A4:C9:04:68:14:16:6A:9E:21:62:5F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/5RBtgCD5tZprikJESmnpWPf5u6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5d00:10::/44
Signature Algorithm: sha256WithRSAEncryption
90:dd:62:32:1f:17:4a:2d:5a:2d:25:3b:79:f6:0d:b4:5f:23:
ea:f4:91:03:ad:44:3e:46:3f:bb:99:35:03:e0:f2:37:7a:a3:
4a:df:fe:68:55:31:c3:1b:c7:d2:f4:cc:09:2e:dd:7e:ac:94:
b7:0f:7c:df:a7:61:77:9d:63:61:35:c3:56:5f:36:7a:18:c5:
8f:38:02:7f:1c:85:b8:b0:9d:c8:63:73:96:d8:28:f8:49:82:
f7:03:e5:d4:7d:50:b3:c0:2b:e3:34:21:77:72:bc:2b:f1:09:
1a:40:05:a8:5e:11:f1:1e:c4:e4:12:88:05:93:b8:ab:b0:e5:
c4:a6:eb:c3:3e:f7:a3:65:71:b4:32:60:de:27:6a:80:2b:66:
07:2c:2d:ec:7d:04:c2:58:6b:66:b0:b0:65:4b:7f:c5:1f:47:
90:c2:2d:8d:25:99:1f:e9:81:3a:85:2c:82:b8:dc:2d:a7:c3:
23:3e:d2:16:70:0f:70:b6:8a:b0:b5:4f:b7:f0:f4:65:ce:14:
f8:94:74:4f:87:eb:86:cd:89:e6:c9:0b:ca:ae:bf:9a:c6:44:
6a:26:89:4f:a0:f9:a7:ee:c9:e6:ff:36:d5:38:5e:ee:22:5d:
75:bd:e4:6b:cf:04:4f:81:40:18:a2:91:5c:57:2d:43:29:20:
a4:45:f3:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:30 2024 by rpki-client on console-fra.rpki-client.org