Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/oXA8NG5fgbP2GyOMDVY7JBrdPm8.roa
File: oXA8NG5fgbP2GyOMDVY7JBrdPm8.roa (raw, json)
Hash identifier: ipOh1pMnn7Fjs7dtbQZ0y+jhZkGD0RNmd7L9jfISaLs=
Subject key identifier: A1:70:3C:34:6E:5F:81:B3:F6:1B:23:8C:0D:56:3B:24:1A:DD:3E:6F
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01856C813E51AE0958690BA4C4AE49BCB5C5
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/oXA8NG5fgbP2GyOMDVY7JBrdPm8.roa
Signing time: Sun 01 Jan 2023 08:44:47 +0000
ROA not before: Sun 01 Jan 2023 08:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212914
IP address blocks: 2a01:4020:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3e:51:ae:09:58:69:0b:a4:c4:ae:49:bc:b5:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 08:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1703c346e5f81b3f61b238c0d563b241add3e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:63:be:54:09:83:7d:4b:64:86:33:ac:8e:08:
31:76:0d:af:1c:7f:44:0d:fe:38:f4:22:c3:72:69:
7a:88:54:fa:61:20:ee:a4:53:0b:28:0c:42:e0:4c:
6c:29:4a:01:ae:38:42:e6:1d:19:4d:a5:e6:bd:d6:
01:fd:83:ab:64:2e:b7:04:b0:6d:96:e2:2f:9a:e8:
de:80:02:aa:70:43:81:7c:e2:38:7b:8f:30:38:68:
d3:9b:3b:6c:54:18:38:3d:0e:d5:c4:65:07:6d:59:
51:2a:23:59:f1:5f:51:73:e4:02:4a:6b:c1:83:ba:
db:3d:5c:53:25:d6:98:33:83:2d:14:f7:17:62:1c:
85:dc:7a:fe:b7:e7:97:65:91:84:2f:ef:cf:18:f3:
ec:f9:86:bd:09:66:e9:35:c4:e4:4b:eb:4e:3c:61:
47:b3:4b:8c:67:b9:d3:3c:d8:50:62:ce:c7:88:17:
08:47:0a:96:4e:84:41:2b:0a:05:23:3f:6b:d0:a9:
44:dc:a4:94:93:32:cc:47:ae:70:5c:78:3a:f8:4f:
3c:7d:8b:6e:de:5a:6f:5a:87:64:9c:fd:72:39:dc:
1e:17:c3:20:35:5f:33:f7:40:74:2b:ef:98:94:c6:
b0:4a:85:7d:ef:e8:bd:c0:a0:eb:91:dd:12:5f:c4:
c9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:70:3C:34:6E:5F:81:B3:F6:1B:23:8C:0D:56:3B:24:1A:DD:3E:6F
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/oXA8NG5fgbP2GyOMDVY7JBrdPm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:4020:6::/48
Signature Algorithm: sha256WithRSAEncryption
88:d9:de:a1:a3:2c:77:5d:c3:bc:2d:47:68:db:b3:dd:29:3b:
e4:f2:6a:d3:c2:d1:f1:1e:c5:05:70:64:ef:9f:d0:0e:27:73:
bc:78:e4:01:90:78:8d:1d:8c:5a:90:2d:f7:09:82:63:9e:99:
a0:07:7b:02:da:5d:9d:ad:d6:3d:8b:fd:c1:43:39:82:60:80:
44:2a:74:d5:98:2b:18:b6:c9:82:91:7d:f4:99:7d:33:01:62:
36:63:f5:fc:a9:8d:fa:ae:d1:5d:51:a1:f0:f4:d5:e2:01:33:
d0:5d:d3:a1:e7:e5:d4:57:14:f3:23:ce:f6:b9:0b:e7:5d:43:
ce:84:b6:81:1c:29:0e:0b:30:4c:1f:6e:91:35:a0:37:15:29:
9e:8a:9e:ed:45:f9:ca:c9:ee:7a:09:8e:06:a2:c3:77:68:3e:
cc:0f:26:b7:45:35:25:0e:a0:dd:58:86:1f:6b:43:b5:be:67:
0e:0c:35:58:2c:a7:aa:f3:50:d7:0d:60:f7:b3:fe:81:f2:17:
eb:da:95:fe:21:83:4a:a4:de:27:9f:e8:db:55:2c:7f:1b:16:
36:34:ea:b4:c4:4a:f1:f6:93:aa:c1:fc:84:3e:99:68:2a:24:
14:12:1c:9e:65:35:ca:f5:be:38:d5:31:21:a3:fa:ed:71:29:
ea:77:8b:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org