Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/DRKL-clolV03qCKTUv1lNLddjFE.roa
File: DRKL-clolV03qCKTUv1lNLddjFE.roa (raw, json)
Hash identifier: jLU3snAbJJIsiAm9Jsi+kPRW5WSglGbx3+I02o3APcY=
Subject key identifier: 0D:12:8B:F9:C9:68:95:5D:37:A8:22:93:52:FD:65:34:B7:5D:8C:51
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 01878FB5FD5C57B3728D2E3DCBDE9581C3A6
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/DRKL-clolV03qCKTUv1lNLddjFE.roa
Signing time: Mon 17 Apr 2023 14:54:41 +0000
ROA not before: Mon 17 Apr 2023 14:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202282
IP address blocks: 2a07:e400::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:b5:fd:5c:57:b3:72:8d:2e:3d:cb:de:95:81:c3:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Apr 17 14:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d128bf9c968955d37a8229352fd6534b75d8c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:08:b6:9c:00:7f:a8:6a:cd:ca:3f:6b:4c:c5:
0c:cf:e7:15:56:68:ce:9c:97:d4:f7:ef:09:05:60:
73:0d:ab:8d:96:dc:38:f6:cc:71:fc:ea:6e:f8:c4:
3c:67:37:b5:33:c6:17:98:ba:4f:8b:95:d6:c1:20:
c0:46:d0:f3:e3:85:46:1f:b0:ec:d6:fc:0b:7c:e5:
43:84:3a:34:8d:0a:7b:84:1d:8c:75:8f:4b:ed:2c:
de:f0:11:f3:43:96:3f:8a:26:0c:ce:fa:42:6f:49:
bd:1d:8c:ec:8a:1d:e6:9d:97:fc:08:4f:44:6c:a3:
3b:ed:b6:9d:dc:3b:6e:69:09:20:88:7a:67:41:09:
3e:df:1d:99:3e:d5:11:04:b3:27:e7:2e:f5:fd:c9:
e1:87:e7:56:ca:63:e5:af:55:a6:65:4d:b8:4e:5f:
0d:d4:c1:7a:e6:10:32:b3:04:d5:38:81:1d:21:1d:
1f:50:9f:56:fb:8c:7d:a2:e7:7c:27:2f:3d:f4:86:
d8:b4:9c:ee:e8:27:54:0a:90:24:04:95:61:a3:c3:
a3:9b:9a:35:f8:e5:11:bb:3b:e8:fb:2c:31:b3:22:
03:d9:7e:d9:6f:30:82:9f:e3:a8:ae:cf:b3:aa:61:
4a:fc:5b:dc:67:aa:02:1a:84:25:9c:5e:fa:06:d1:
f9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:12:8B:F9:C9:68:95:5D:37:A8:22:93:52:FD:65:34:B7:5D:8C:51
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/DRKL-clolV03qCKTUv1lNLddjFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e400::/29
Signature Algorithm: sha256WithRSAEncryption
b4:de:7a:51:10:89:f5:ad:55:81:05:06:12:ba:02:a6:63:cb:
43:98:6e:70:30:37:35:07:61:d8:26:b8:c5:3a:ab:21:62:e2:
0c:10:72:c8:bc:7c:0f:d8:8d:3d:36:da:f1:92:ef:f9:e5:71:
21:6b:ad:df:f0:f5:31:b2:f2:43:1f:e3:e3:64:cf:7c:3b:e0:
9c:bd:5d:11:1f:dd:4f:e0:5f:59:d4:94:2e:cb:a2:e9:59:48:
75:ed:c1:1f:76:a6:4f:a9:d5:81:16:c9:bb:fd:ed:30:f1:3a:
94:31:c5:ad:89:c6:e0:5a:f7:85:e0:6a:56:6b:bd:26:d6:5e:
3b:25:f3:76:73:65:bb:05:be:49:41:f0:8d:a4:df:a5:25:24:
1f:d4:05:08:d3:92:8f:79:0f:a7:17:0b:4d:87:c6:5e:6b:70:
2d:52:4f:c7:6e:1e:18:01:5f:15:97:c2:5c:e6:ef:d7:9b:46:
be:69:02:5f:32:50:02:c2:e3:1a:dc:aa:b5:d5:91:1f:89:6b:
84:1e:fa:d4:d8:6f:b6:ec:23:78:54:6e:f4:58:f3:83:62:73:
39:18:da:5e:d1:be:d2:83:70:71:41:86:72:c3:d2:31:70:f9:
1b:71:9f:a9:f3:b7:47:a3:51:02:4c:af:4b:4d:47:6a:4e:68:
a8:8e:e5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:21 2024 by rpki-client on console-fra.rpki-client.org