Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/31c_cUjw2JNBxsXLpCux1iZCEcg.roa
File: 31c_cUjw2JNBxsXLpCux1iZCEcg.roa (raw, json)
Hash identifier: U0V+0mSfitlL8Rg1V3DMs8PLyFsGr8iGKc8K0OasxIA=
Subject key identifier: DF:57:3F:71:48:F0:D8:93:41:C6:C5:CB:A4:2B:B1:D6:26:42:11:C8
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 01857127615C4BD5A27A5D6F5EA6E1184F14
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/31c_cUjw2JNBxsXLpCux1iZCEcg.roa
Signing time: Mon 02 Jan 2023 06:24:44 +0000
ROA not before: Mon 02 Jan 2023 06:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 2a0c:6d40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 31 Jan 2023 15:03:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:61:5c:4b:d5:a2:7a:5d:6f:5e:a6:e1:18:4f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jan 2 06:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df573f7148f0d89341c6c5cba42bb1d6264211c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:77:56:61:ba:f9:f6:78:21:6d:76:8d:f5:1d:
1d:d7:be:94:07:1c:f5:85:ef:10:57:f0:b0:d5:30:
62:a3:0a:37:e8:c0:4d:a1:91:69:19:a8:2b:91:e7:
df:dc:8c:58:f4:d2:b0:4d:ce:7f:74:78:eb:81:3b:
98:4f:74:65:29:66:c1:f9:de:8e:a7:60:bc:d0:ff:
df:84:60:31:b7:a7:0e:24:80:65:ee:ba:12:2e:78:
30:82:5f:cb:32:0e:70:aa:e7:ed:91:ee:90:0c:00:
5e:8f:01:5b:e4:f9:c1:8b:05:4b:26:08:a3:7b:78:
4f:90:22:35:fc:29:5a:60:03:d1:68:e5:78:5b:17:
25:79:b5:a0:77:be:0a:e0:71:64:d6:23:89:a9:9a:
4d:42:de:84:1e:ab:62:48:68:b2:0c:53:d0:da:da:
dc:dd:8e:38:55:28:c6:1b:fb:21:9c:46:22:a3:d8:
53:76:88:7c:76:4c:ac:31:e2:dc:bd:74:62:9e:d7:
f9:3f:8e:16:e7:ba:17:db:a0:c8:cd:33:db:86:05:
3d:d2:74:10:e5:dc:21:3f:0a:6a:28:93:a7:7a:f3:
a4:7e:18:1a:33:d1:36:a9:24:14:b8:a9:13:97:d9:
76:19:e0:02:20:23:2a:6e:c9:63:b6:46:c3:58:a1:
27:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:57:3F:71:48:F0:D8:93:41:C6:C5:CB:A4:2B:B1:D6:26:42:11:C8
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/31c_cUjw2JNBxsXLpCux1iZCEcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
7e:e1:48:2f:78:4e:19:1e:0b:cd:df:98:cd:18:d4:14:4b:51:
5a:68:0b:e7:8b:6e:89:f6:2b:5d:c7:df:f4:33:14:7e:98:06:
a4:80:75:d5:3b:f6:ba:39:9d:f5:96:c5:cb:fe:5f:6c:a0:2e:
8f:1b:2c:fe:61:fa:e4:ad:f7:0d:44:0e:b6:60:67:22:7c:c5:
ce:82:7f:e7:d4:d5:39:7d:12:7c:73:1a:c5:ad:46:b4:aa:7f:
3d:2d:b8:a9:f8:37:8e:33:83:ed:07:ae:38:7f:ad:83:41:ed:
10:8b:9a:c0:8a:bb:81:52:2c:b7:61:16:74:3b:92:c5:26:b9:
bd:b1:fa:ab:5e:35:46:b9:dc:44:9b:14:88:70:60:7a:c4:91:
86:13:83:5a:20:ef:0d:4a:d6:28:a5:f7:ee:21:fd:f8:4b:38:
6a:ba:b5:93:5f:61:6b:c8:14:00:93:db:99:96:3c:8b:3f:86:
64:37:ae:5e:85:13:f1:7e:da:14:01:c9:9d:38:51:9a:52:a5:
29:90:bd:3f:7c:c8:0e:5f:09:a4:ce:72:bb:2f:e1:fb:24:8f:
0b:33:8a:35:a2:b1:e6:7a:1b:ab:62:63:d8:65:e4:34:f9:9e:
c0:4e:1a:ab:d5:e0:6b:1d:bc:55:19:48:16:41:74:cd:48:47:
a7:6c:c7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:46 2024 by rpki-client on console-fra.rpki-client.org