Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/s-OUX8JaGvrUh-xpnUrlbqFuyyg.roa
File: s-OUX8JaGvrUh-xpnUrlbqFuyyg.roa (raw, json)
Hash identifier: x1ACaAyedPv4eVq6XfJgmO33hQ+OkaN/zQs+UFJGpGY=
Subject key identifier: B3:E3:94:5F:C2:5A:1A:FA:D4:87:EC:69:9D:4A:E5:6E:A1:6E:CB:28
Certificate issuer: /CN=c8003c979603f7cea12aca01ebc2057c36fd7f30
Certificate serial: 0188B9B938069A641D6C36750AFBF163D759
Authority key identifier: C8:00:3C:97:96:03:F7:CE:A1:2A:CA:01:EB:C2:05:7C:36:FD:7F:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAA8l5YD986hKsoB68IFfDb9fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/s-OUX8JaGvrUh-xpnUrlbqFuyyg.roa
Signing time: Wed 14 Jun 2023 11:45:03 +0000
ROA not before: Wed 14 Jun 2023 11:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29311
IP address blocks: 2a00:1558::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Jun 2023 08:47:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:b9:38:06:9a:64:1d:6c:36:75:0a:fb:f1:63:d7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8003c979603f7cea12aca01ebc2057c36fd7f30
Validity
Not Before: Jun 14 11:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3e3945fc25a1afad487ec699d4ae56ea16ecb28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f1:16:5f:9d:07:44:bf:48:56:fd:05:5d:77:
dc:5a:7e:15:bc:7b:c7:d2:96:87:0a:c8:d4:c3:67:
3a:e5:cb:05:e2:eb:18:77:c9:db:b5:7e:81:41:50:
be:f7:1e:e7:24:00:34:87:21:b4:66:aa:43:2d:f5:
eb:cc:b5:e6:e8:0a:3c:48:19:bd:08:44:36:71:a3:
78:f1:2f:3c:a1:ce:23:9b:3a:64:e9:b3:0b:68:05:
8b:2b:2f:eb:bb:44:f1:02:a7:17:1e:68:9c:33:72:
f9:d1:f8:16:91:9e:34:c9:6d:1a:56:20:be:61:68:
de:29:d2:3e:24:88:49:17:65:d5:e3:8c:d3:91:84:
f8:1c:e2:b2:f5:ef:24:fa:92:72:a3:f9:ab:23:7a:
de:02:1b:1a:19:ca:19:2e:2a:c6:74:90:f0:1b:47:
d7:d0:cf:5a:cf:94:68:aa:eb:38:6b:b5:3c:ff:76:
7b:67:e7:76:77:c2:0c:92:36:c3:3d:1f:81:98:96:
1b:5a:33:6d:ef:1e:b6:6d:e1:00:10:51:a3:0a:6b:
06:72:b6:f9:95:92:9b:68:e6:17:f8:f4:78:2e:2d:
69:37:bd:07:35:5c:1b:49:d7:aa:78:b5:83:e8:b8:
e4:1e:9b:68:ca:aa:3b:4a:88:b0:c8:64:04:e4:b8:
0f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E3:94:5F:C2:5A:1A:FA:D4:87:EC:69:9D:4A:E5:6E:A1:6E:CB:28
X509v3 Authority Key Identifier:
keyid:C8:00:3C:97:96:03:F7:CE:A1:2A:CA:01:EB:C2:05:7C:36:FD:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAA8l5YD986hKsoB68IFfDb9fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/s-OUX8JaGvrUh-xpnUrlbqFuyyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/03ca01-b959-41a6-8133-07228812d017/1/yAA8l5YD986hKsoB68IFfDb9fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1558::/32
Signature Algorithm: sha256WithRSAEncryption
38:8f:e9:bb:73:aa:fb:dc:2a:8e:37:18:bc:be:89:94:15:4d:
04:e5:d2:f2:8d:84:f5:2e:bb:11:52:c1:f6:d2:33:f3:72:dc:
bf:1d:ac:28:2a:43:88:d3:37:9c:46:d8:e0:6c:80:5f:e6:f3:
e2:37:67:65:df:11:44:3a:06:95:6a:23:35:4f:8a:83:a2:75:
22:98:53:92:46:27:97:31:3b:21:45:0d:f3:59:88:48:d2:d0:
2d:56:c3:0a:5f:02:22:9b:b5:d7:e3:bc:02:0f:ff:28:c7:0e:
19:b5:a7:eb:f4:9d:59:b1:48:a9:ab:b7:86:13:02:10:d4:e1:
43:a5:0e:0c:df:13:46:08:43:7d:bd:7d:d6:57:22:39:05:ab:
53:b4:a4:fb:72:e0:fa:ef:fd:b0:df:a4:2a:9a:68:f8:55:36:
55:94:af:b0:29:4d:47:5d:e8:44:5c:84:f5:0b:d9:57:3c:04:
3c:d2:e4:75:e1:7c:32:59:45:cc:e5:43:29:50:9e:dc:19:06:
9c:2a:0c:57:7c:26:96:37:49:00:1f:04:db:68:c5:67:a8:16:
38:87:89:2e:bb:93:80:28:b9:61:bf:b1:c9:7b:dd:f9:06:b5:
2e:fb:a8:e0:65:ac:9a:1b:19:e8:f1:14:7a:2c:04:14:3b:8e:
81:d6:5d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:48 2024 by rpki-client on console-ams.rpki-client.org