Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/0S-mEMMyEzWmT2-sDh8HBB0-Hyk.roa
File: 0S-mEMMyEzWmT2-sDh8HBB0-Hyk.roa (raw, json)
Hash identifier: fiMv1bSBAxaPjKT6evKt3vxzJSEGxMfC+rW/CwGhTSM=
Subject key identifier: D1:2F:A6:10:C3:32:13:35:A6:4F:6F:AC:0E:1F:07:04:1D:3E:1F:29
Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4
Certificate serial: 0185C2356F2D63FF237E9808413F7F249F70
Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/0S-mEMMyEzWmT2-sDh8HBB0-Hyk.roa
Signing time: Wed 18 Jan 2023 00:09:19 +0000
ROA not before: Wed 18 Jan 2023 00:09:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39511
IP address blocks: 2a05:91c3:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c2:35:6f:2d:63:ff:23:7e:98:08:41:3f:7f:24:9f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4
Validity
Not Before: Jan 18 00:09:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d12fa610c3321335a64f6fac0e1f07041d3e1f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f4:e7:50:52:37:0e:63:cf:16:08:ec:3a:d3:
c1:5b:f6:09:bd:04:ff:78:e5:bf:e1:00:00:88:3a:
fb:70:18:4c:75:70:ff:42:05:6f:8c:3a:3e:ad:00:
35:88:a5:76:9e:2c:3b:b3:f4:19:fc:6a:6c:83:89:
f7:a8:c4:cc:12:fc:0a:62:9e:9c:ca:ba:67:06:0c:
b8:3a:74:90:3a:aa:45:38:d8:01:9b:26:d1:aa:bd:
9d:6f:16:cc:b5:a4:a4:a5:69:de:26:d2:3e:eb:8b:
94:4f:86:2e:a9:eb:57:dd:23:b4:63:68:ab:ef:5f:
78:77:76:cd:48:73:82:fd:2b:0d:1e:9e:9c:f4:ec:
0f:34:20:65:dd:09:9f:11:f3:ba:25:70:e6:4d:01:
e6:e2:71:fd:42:0d:0d:c5:35:cf:3d:e7:80:b1:99:
00:cc:85:d6:c7:fa:e5:ec:2b:98:72:26:ac:48:05:
20:28:f6:7d:ce:9b:ed:38:23:70:18:04:92:42:a0:
a8:85:f3:07:46:dc:f9:6c:ed:47:31:a3:c5:18:3f:
75:a6:34:6d:a2:65:16:3f:34:6a:a8:45:b3:20:83:
14:39:a6:0b:34:7e:8d:8b:06:ab:c4:4c:b9:10:3b:
92:31:3b:7e:a1:0b:17:64:01:2a:00:b7:24:d0:9e:
ef:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2F:A6:10:C3:32:13:35:A6:4F:6F:AC:0E:1F:07:04:1D:3E:1F:29
X509v3 Authority Key Identifier:
keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/0S-mEMMyEzWmT2-sDh8HBB0-Hyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:91c3:1::/48
Signature Algorithm: sha256WithRSAEncryption
a9:d9:3f:dc:f0:8a:32:8f:78:7a:d7:42:37:d5:95:c3:d8:06:
18:42:83:94:db:62:15:71:59:51:5c:1f:87:3c:10:1d:37:3a:
dd:2d:5d:6c:49:75:76:68:5a:20:c5:60:10:b8:1a:d3:c1:77:
64:d8:fe:51:ea:a8:00:af:54:4a:ce:7f:c4:f6:e7:13:b9:04:
f2:12:49:9f:9a:16:1f:b6:e2:1a:4a:74:d2:23:7a:73:ef:57:
dc:48:a3:c8:bd:48:d9:06:c0:27:aa:5a:99:f2:86:ff:0f:37:
ae:e4:53:54:ac:c7:8f:0e:71:14:76:8a:00:1e:68:7b:d5:49:
a8:22:97:90:60:90:83:42:ba:44:44:10:e5:3c:90:ee:86:53:
af:14:1c:18:d4:97:fe:43:40:b5:0b:b2:ed:15:0d:a7:2a:fa:
ad:46:df:18:6c:ec:6f:97:f5:d7:d5:e5:f2:07:35:71:97:41:
0c:f4:87:d9:d3:21:fc:06:6d:ef:e3:43:8d:94:a3:98:33:a1:
e1:c2:21:84:65:9e:b7:42:8f:4b:b7:bd:ea:ff:03:f6:3a:52:
7f:f4:ab:37:ad:6f:89:a0:bd:0a:d1:ce:96:7e:35:8b:70:e7:
c8:ac:ad:dd:8e:fa:42:47:77:f2:1f:a2:de:0d:b1:19:ba:a5:
59:03:a5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:27 2024 by rpki-client on console-fra.rpki-client.org