Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/cACB2zKWOygZluctTohtEWXqhmc.roa
File: cACB2zKWOygZluctTohtEWXqhmc.roa (raw, json)
Hash identifier: Wj9GtWTA/6Zu8dI23S9Rz3v85WDrnvr4v1eJELLC74I=
Subject key identifier: 70:00:81:DB:32:96:3B:28:19:96:E7:2D:4E:88:6D:11:65:EA:86:67
Certificate issuer: /CN=aac223fb1942115e48a9754207292d00a082ecdf
Certificate serial: 018CE44D1E59E1ACF628491D6CDE192D7662
Authority key identifier: AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/cACB2zKWOygZluctTohtEWXqhmc.roa
Signing time: Sun 07 Jan 2024 14:21:48 +0000
ROA not before: Sun 07 Jan 2024 14:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202685
IP address blocks: 2a03:e640::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 29 Jan 2024 09:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e4:4d:1e:59:e1:ac:f6:28:49:1d:6c:de:19:2d:76:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac223fb1942115e48a9754207292d00a082ecdf
Validity
Not Before: Jan 7 14:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=700081db32963b281996e72d4e886d1165ea8667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ca:9e:8c:74:2a:42:4b:6f:d9:03:eb:0e:ee:
af:7b:5b:be:bb:78:9a:91:2c:5b:0b:f6:62:02:5b:
ad:e6:29:c8:c7:1a:b0:78:d5:7a:09:c4:40:fd:5d:
01:70:d7:8d:cb:6b:11:a2:a8:e5:f0:2e:83:b4:b0:
07:de:f8:eb:e4:3a:c1:ab:4a:be:52:26:38:ba:d4:
35:39:4f:d2:8c:29:56:62:91:fb:0b:9d:0e:ba:9c:
ca:11:9a:10:bc:22:89:c2:8c:91:cc:5c:02:f0:e1:
9a:e2:f4:2a:87:a8:ec:e7:d4:4e:33:8f:61:8b:93:
a0:05:1f:45:24:cb:98:3c:bc:c7:ba:1e:1a:74:5e:
f3:d5:b9:af:06:aa:23:84:e6:27:94:b1:e1:6e:c9:
9b:4b:3a:01:63:9d:3b:d7:d0:4f:aa:14:34:1f:35:
29:f9:b3:e0:ec:49:ef:1c:f5:7c:e0:3d:f5:5f:3b:
84:8f:a5:e9:6c:fa:db:55:ed:50:11:bf:61:e4:22:
85:bc:80:89:46:07:04:c9:07:66:69:f6:8a:8d:86:
71:8d:8e:29:3d:53:95:bb:ea:4a:34:d6:4d:d6:ea:
67:d7:c8:60:fd:1e:7e:15:b6:6b:3c:c4:ef:ea:4a:
8e:f4:10:ab:5c:9f:28:f2:2a:1c:96:be:e5:05:49:
43:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:00:81:DB:32:96:3B:28:19:96:E7:2D:4E:88:6D:11:65:EA:86:67
X509v3 Authority Key Identifier:
keyid:AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/cACB2zKWOygZluctTohtEWXqhmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:e640::/32
Signature Algorithm: sha256WithRSAEncryption
21:c8:dd:b2:5b:8a:3e:c4:de:43:d4:4d:a9:3e:e4:e2:84:54:
93:c4:ac:d2:a7:2d:55:4f:05:ca:70:7c:c3:ee:bd:69:3a:50:
d0:0c:29:17:56:fa:b5:00:c5:9f:e2:22:a8:e4:bf:51:62:7c:
9d:22:cd:f7:ae:db:50:e8:20:df:b2:7c:e7:97:54:ef:07:1a:
6d:cd:fc:7d:4f:b3:df:ef:6d:8c:d6:ba:89:82:08:75:33:c0:
6f:0d:d3:85:5f:e8:cd:95:44:26:6a:b6:16:d3:2c:ab:94:53:
91:5a:7d:d1:96:bc:46:f3:42:6c:a9:4d:28:5d:3c:b2:44:00:
b9:a3:8a:28:a8:8e:33:73:80:d4:6f:3a:5b:2d:ae:d0:77:04:
53:00:d4:5d:cb:98:e2:1f:ed:8d:ea:b3:59:2a:ac:42:e0:29:
bd:76:59:a1:de:b1:c1:a7:40:a2:c3:d4:8f:83:7a:38:98:d0:
89:ea:d2:3b:a3:62:2e:82:85:03:61:b9:04:a8:47:aa:eb:ce:
48:42:03:49:5b:47:7b:41:48:9d:1f:39:f3:77:dd:e6:5f:12:
d4:ba:75:b6:92:ae:ac:df:e7:35:14:37:17:54:b4:8d:6b:36:
86:b1:64:7b:ca:37:67:19:2c:2b:0f:1d:d2:99:59:e4:5c:e2:
75:65:0d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org