Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/cursCHk__MUDPT44h9IOrNcVDIw.roa
File: cursCHk__MUDPT44h9IOrNcVDIw.roa (raw, json)
Hash identifier: 5tmDjRRJNDDEYU69JH+bm+nJPpDAXlHLPXXUJse7CA4=
Subject key identifier: 72:EA:EC:08:79:3F:FC:C5:03:3D:3E:38:87:D2:0E:AC:D7:15:0C:8C
Certificate issuer: /CN=c8003c979603f7cea12aca01ebc2057c36fd7f30
Certificate serial: 01889516B0444BA4376EEA986B179380BA77
Authority key identifier: C8:00:3C:97:96:03:F7:CE:A1:2A:CA:01:EB:C2:05:7C:36:FD:7F:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAA8l5YD986hKsoB68IFfDb9fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/cursCHk__MUDPT44h9IOrNcVDIw.roa
Signing time: Wed 07 Jun 2023 09:01:12 +0000
ROA not before: Wed 07 Jun 2023 09:01:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48645
IP address blocks: 2a02:27c8::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Jun 2023 11:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:16:b0:44:4b:a4:37:6e:ea:98:6b:17:93:80:ba:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8003c979603f7cea12aca01ebc2057c36fd7f30
Validity
Not Before: Jun 7 09:01:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72eaec08793ffcc5033d3e3887d20eacd7150c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:67:f8:e0:96:f4:d7:58:ef:21:5f:d4:b6:d8:
fb:a9:12:5d:b3:a0:f8:35:89:b0:4c:43:1b:03:06:
36:0d:e7:e7:10:5a:f6:16:2b:03:78:0a:0e:75:c6:
95:b1:33:4a:1e:d1:cb:00:e6:8a:e7:e8:e0:ba:71:
9a:f7:51:03:8f:7e:eb:89:04:95:ea:6f:47:60:d0:
bf:ae:7d:06:97:da:da:d0:b0:5d:0c:d9:13:88:3a:
fc:93:bd:92:40:b2:0a:cf:b8:29:7b:6f:3b:ba:4d:
b7:c5:69:3d:92:07:2c:73:07:66:ba:36:cf:52:1a:
a5:7a:f1:4c:ed:54:a7:f1:e9:04:d2:c4:e2:69:83:
92:d3:bb:62:5e:98:04:a7:d1:05:e3:74:c0:93:65:
cd:fd:c6:e2:ee:0c:f5:89:83:fc:e2:dd:bb:52:ba:
59:0a:1e:c4:d4:90:9c:10:97:30:a3:33:e3:a8:d1:
dc:ae:60:3c:32:32:da:d1:1c:e9:c8:e9:54:8d:39:
23:66:01:aa:8c:67:1a:62:ae:0b:de:5c:65:f7:2f:
0c:3b:8b:30:e5:63:43:17:da:66:59:7a:d4:06:97:
e3:62:f6:87:24:70:ca:26:48:be:85:51:c0:9a:f8:
5b:05:30:24:14:9a:d4:82:72:fd:23:da:d5:fc:9d:
a2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:EC:08:79:3F:FC:C5:03:3D:3E:38:87:D2:0E:AC:D7:15:0C:8C
X509v3 Authority Key Identifier:
keyid:C8:00:3C:97:96:03:F7:CE:A1:2A:CA:01:EB:C2:05:7C:36:FD:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAA8l5YD986hKsoB68IFfDb9fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/cursCHk__MUDPT44h9IOrNcVDIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/yAA8l5YD986hKsoB68IFfDb9fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:27c8::/32
Signature Algorithm: sha256WithRSAEncryption
09:e4:e8:ea:02:e3:9b:8e:20:ab:16:40:5f:52:8b:3f:d0:7a:
7f:6d:29:57:88:04:4e:f8:19:35:ff:87:77:d3:16:93:38:5b:
26:d3:d9:da:be:a4:86:db:67:cd:ae:d5:88:5a:9b:9b:67:51:
92:04:26:c4:d6:83:8f:58:fb:34:28:55:18:12:79:8d:cd:70:
ea:76:72:bf:7a:95:34:2a:67:e5:f7:3a:74:cf:7e:78:e1:75:
e1:8a:3e:63:81:7a:68:98:76:c3:40:d7:ad:b7:30:b4:e6:56:
ef:e9:cd:ce:4d:24:0d:9d:ad:2b:1a:d4:28:37:c4:5f:cf:77:
03:90:73:db:ea:ec:99:d6:dd:c2:38:e2:df:9e:6d:d2:a0:b4:
6c:e5:8e:7d:f1:be:18:7b:18:b9:7a:53:13:27:6e:61:4f:ef:
b1:f1:07:df:78:2c:3e:a4:44:66:c9:d2:8e:b9:d2:84:a6:b3:
f9:59:78:ce:f9:34:18:b3:2b:40:78:3f:55:d8:de:5f:2e:14:
4b:99:3f:cf:0b:98:a2:73:0a:f0:b5:29:3a:f8:46:38:eb:42:
04:11:ac:81:85:d6:b6:25:1d:8c:f2:3c:23:be:47:e7:1c:8c:
34:be:da:4e:69:bb:63:a2:99:d3:36:52:4e:cc:89:83:a8:f8:
5b:ba:bb:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:06 2024 by rpki-client on console-fra.rpki-client.org