Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/THdK3I7iPGxV4r0nZhi-wVg2VCc.roa
File: THdK3I7iPGxV4r0nZhi-wVg2VCc.roa (raw, json)
Hash identifier: NrVxX/fFOly3BaAqQJsTxxYIWu2HnGB/F/hTZF2LAyk=
Subject key identifier: 4C:77:4A:DC:8E:E2:3C:6C:55:E2:BD:27:66:18:BE:C1:58:36:54:27
Certificate issuer: /CN=c8003c979603f7cea12aca01ebc2057c36fd7f30
Certificate serial: 01889516AFD2083EF28F68250409DA8DB166
Authority key identifier: C8:00:3C:97:96:03:F7:CE:A1:2A:CA:01:EB:C2:05:7C:36:FD:7F:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAA8l5YD986hKsoB68IFfDb9fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/THdK3I7iPGxV4r0nZhi-wVg2VCc.roa
Signing time: Wed 07 Jun 2023 09:01:11 +0000
ROA not before: Wed 07 Jun 2023 09:01:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 2a02:27c8::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Jun 2023 11:45:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:16:af:d2:08:3e:f2:8f:68:25:04:09:da:8d:b1:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8003c979603f7cea12aca01ebc2057c36fd7f30
Validity
Not Before: Jun 7 09:01:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c774adc8ee23c6c55e2bd276618bec158365427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:49:b5:e7:ac:1a:9d:40:12:a5:7a:6b:64:99:
a0:0a:01:e7:b1:10:1d:f5:9e:8d:98:70:5c:01:c7:
26:22:01:56:d3:6e:a1:89:60:d8:c3:27:1d:d2:ad:
c7:b7:26:d7:23:8e:8b:6c:48:93:07:ce:0e:fd:b8:
b3:74:1d:a5:ce:d4:32:35:f5:07:68:80:50:ea:eb:
fd:31:b3:ab:88:58:98:af:9e:b4:b7:6e:71:56:6f:
b2:8a:7f:10:ca:d9:46:bc:53:e3:14:73:68:ac:8e:
e5:50:d1:6e:1f:ee:f5:24:55:87:11:6a:0f:ed:85:
a5:3a:e4:9c:76:c5:28:3f:a4:f7:93:00:2a:ff:99:
1c:ab:9a:b3:76:fb:cd:41:d8:43:0b:82:6d:8f:28:
5f:b9:d1:0b:89:3e:ae:d7:e3:66:33:3d:37:93:f6:
d9:aa:f1:97:dc:48:f3:78:21:5d:6c:22:a8:78:ab:
e5:9e:94:46:96:d8:da:3a:ee:2d:90:e7:45:45:56:
f2:68:e4:d9:f5:6d:5d:9a:c5:3a:f2:f5:31:54:b6:
45:e6:57:cb:32:e3:8a:11:9e:5b:77:0a:e7:0c:34:
c8:fd:bc:66:f9:c3:77:b5:cb:2b:5b:d5:75:d9:d5:
e8:c3:75:21:4c:e2:fc:95:58:fb:50:dc:d6:1c:f6:
03:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:77:4A:DC:8E:E2:3C:6C:55:E2:BD:27:66:18:BE:C1:58:36:54:27
X509v3 Authority Key Identifier:
keyid:C8:00:3C:97:96:03:F7:CE:A1:2A:CA:01:EB:C2:05:7C:36:FD:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAA8l5YD986hKsoB68IFfDb9fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/THdK3I7iPGxV4r0nZhi-wVg2VCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/yAA8l5YD986hKsoB68IFfDb9fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:27c8::/32
Signature Algorithm: sha256WithRSAEncryption
35:15:64:df:0f:b1:70:15:31:d5:39:46:e5:3b:06:bb:d4:b2:
f2:c1:14:88:55:e1:ab:8b:44:ec:66:07:e3:70:bf:43:89:28:
b3:6c:5c:e4:e2:5a:dd:09:e9:07:f3:6b:50:ed:94:69:89:35:
1b:43:00:1c:dc:12:74:5d:ed:1c:da:f2:a8:13:41:45:68:0a:
2e:99:11:ad:80:60:6c:2c:c9:9e:08:0b:a0:d1:88:8b:3f:21:
5e:36:47:c0:36:37:b5:a3:9c:9b:61:26:0e:2e:bf:fa:98:cb:
2c:16:f3:07:a0:23:09:89:cc:38:c1:14:0b:c6:3d:f5:96:1e:
8d:0c:29:aa:54:f6:5e:e0:65:b1:9c:d8:05:c0:c8:6e:45:dc:
f3:1b:57:be:78:4e:b9:b9:29:6a:81:74:b2:d6:6a:68:bc:ff:
79:7a:9c:c9:08:fe:99:c6:c4:a9:45:98:2d:9e:c6:b9:1a:de:
31:6a:b9:93:bf:b5:ee:3d:92:38:aa:6e:ad:9a:38:11:01:3f:
65:44:9e:3a:7b:04:76:07:e5:a3:a5:e2:8c:ff:17:65:0f:e0:
2d:42:2b:b8:c9:3b:de:10:68:eb:d1:19:83:65:22:a6:8c:7a:
9e:7e:90:65:a8:46:04:41:3e:a4:9e:f2:8d:2f:2b:64:55:45:
c7:b0:dc:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:06 2024 by rpki-client on console-fra.rpki-client.org